Risk Scorer

Risk Scorer

Rates the inherent capability risk of MCP tools on a 0–100 scale. Unlike the Injection Scanner which detects malicious intent, the Risk Scorer measures how dangerous a tool's structural design is — regardless of intent. A well-meaning tool with shell execution params and credential fields is still a high-risk tool.

100% client-side, deterministic, zero network calls.

Risk signals (13 checks)

Each signal has a point value: Shell/command execution (+40), process spawning (+40), file write capability (+35), file deletion (+30), credentials in schema (+30), network/HTTP calls (+25), database writes (+25), environment access (+25), missing description (+20), all params required (+15), unconstrained object (+15), missing param descriptions (+10), generic tool name (+5). Each signal includes a remediation hint.

Scoring bands

0–25 Low — Safe to deploy. 26–50 Medium — Review parameter design. 51–75 High — Restrict access. 76–100 Critical — Block until remediated. The score is capped at 100. Per-tool results show a visual bar, triggered signals, and passed checks.