Strata
Strata provides AI ecosystem intelligence and MCP server trust/security analysis for developers building with AI agents.
Find MCP Servers (
find_mcp_servers): Search for MCP servers by use case or keyword using semantic similarity. Returns trust scores (security_scorefor repo health,runtime_scorefor tool behavior), capability flags (e.g.shell_exec,fs_write,dynamic_eval,secret_read), and supports filters to exclude dangerous capabilities or require hosted endpoints. Includes a 3-layer injection scanner.Get Best Practices (
get_best_practices): Retrieve AI-verified, production-ready best practices for a given AI ecosystem and optional category, with freshness metadata and source URLs.Get Latest News (
get_latest_news): Fetch the latest news for a specific AI ecosystem (real-time for Pro tier, 24h+ delay for Free tier).Get Top Integrations (
get_top_integrations): Get ranked MCP servers and integrations for a given AI ecosystem, optionally filtered by use case.Search Ecosystem (
search_ecosystem): Full-text/semantic search across all verified AI ecosystem content, optionally scoped to a specific ecosystem.List Ecosystems (
list_ecosystems): Discover all available AI ecosystem slugs accessible on your current subscription tier, for use as inputs to other tools.
Strata
The trust layer for AI agents.
Strata scores every MCP server for security and behavioral risk — so your agents know what they're connecting to before they connect.
What it does
Every MCP server gets two trust scores:
security_score (0–100) — repo health: stars, license, maintenance, archive status
runtime_score (0–100) — behavioral analysis: what tools the server actually exposes
Plus capability flags:
shell_exec dynamic_eval fs_write arbitrary_sql
net_egress secret_read process_spawn
And a 3-layer injection scanner.
We scanned 2,179 MCP servers across 22 AI ecosystems. Found shell_exec in 340+ servers, dynamic_eval in 180+, and one server with active prompt injection (now quarantined).
Quick start
Scan your Claude Desktop config
npx @strata-ai/sdk scanVerify any MCP server
npx @strata-ai/sdk verify github.com/owner/repoGitHub Action — gate every PR
- uses: PThrower/strata-mcp-check@v1
with:
strata_api_key: ${{ secrets.STRATA_API_KEY }}
fail_on: criticalREST API
curl -H "X-API-Key: your_key" \
"https://usestrata.dev/api/v1/mcp/verify?url=github.com/owner/repo"MCP Server (use inside Claude Code, Cursor, etc.)
Ecosystems
Claude · OpenAI · Gemini · Cursor · Copilot · LangChain · Ollama · Groq · Codex · Windsurf · Perplexity · Together AI · Replicate · Fireworks · Exa · Cody · YouCom · Bolt · V0 · Manus · Higgsfield · Cohere
Tier | Price | Calls | Ecosystems |
Free | $0 | 100/month | 5 core |
Pro | $29/month | 10,000/month | All 22 |
Founder | $100 one-time | 10,000/month forever | All 22, forever |
Links
License
MIT
Latest Blog Posts
MCP directory API
We provide all the information about MCP servers via our MCP API.
curl -X GET 'https://glama.ai/api/mcp/v1/servers/PThrower/Strata'
If you have feedback or need assistance with the MCP directory API, please join our Discord server