check_mcp_registry_risk
Identify red flags in MCP server URLs or package names, including known malicious IOCs, typosquatting, and domain registration age. Use before an agent connects to an unfamiliar server. Absence of findings means unknown, not verified safe.
Instructions
Check an MCP server URL or package name for red flags: known-malicious IOC match, typosquat/near-miss against well-known MCP ecosystem domains, and domain registration age. Part of RelayShield's Agentic Attack Surface bundle — early coverage for an ecosystem with minimal dedicated security tooling as of 2026. Use before an agent connects to or installs a new, unfamiliar MCP server. Absence of findings means 'unknown,' not 'verified safe.' Pay-as-you-go: $0.35 USDC per check (x402 on Base). Subscription: rapidapi.com/relayshield
Input Schema
| Name | Required | Description | Default |
|---|---|---|---|
| server_url | No | MCP server URL to check (e.g. https://example-mcp-server.com) | |
| package_name | No | Package name to check if no server_url is available (limited coverage — no dedicated MCP package registry yet) |