{"attribution":"MCP Queen — the evidence layer for MCP (https://mcpqueen.com)","license":"CC BY 4.0 — free to use with attribution and a link to mcpqueen.com","methodology":"https://mcpqueen.com/registry#methodology","docs":"https://mcpqueen.com/api","generated_at":"2026-07-18T02:01:31.859Z","server":{"name":"ai.finestructure/fine-structure","title":"Fine Structure","description":"Remote MCP server for agents that create, edit, validate, and publish Fine Structure apps.","version":"1.0.0","remote_url":"https://finestructure.ai/api/mcp","repo_url":null},"operational_grade":{"grade":"A","score":97,"provisional":0,"reachable":1,"auth_state":"open","latency_ms":391,"tool_count":92,"probed_at":"2026-07-17T22:15:51.074Z","evidence":[{"criterion":"reachability","points":25,"max":25,"evidence":"HTTP 200, initialize accepted in 391ms"},{"criterion":"protocol","points":15,"max":15,"evidence":"valid JSON-RPC initialize result, protocolVersion 2024-11-05, serverInfo fine-structure-mcp@1.0.0"},{"criterion":"tooling","points":35,"max":35,"evidence":"tools/list OK: 92 tools e.g. \"create_app\"; 92/92 described, 92/92 fully-typed schemas, median description 107 chars"},{"criterion":"latency","points":10,"max":10,"evidence":"initialize round-trip 391ms"},{"criterion":"provenance","points":12,"max":15,"evidence":"description present; no repository URL; version 1.0.0; namespace ai.finestructure matches endpoint/repo"}],"protocol_access":"open"},"field_semantics":{"auth_state":"Deprecated name retained for compatibility. It means protocol handshake/discovery access only, not tool-level data entitlement.","protocol_access":"Preferred name for auth_state."},"audit_state":"observations_published","observations":[{"dimension":"citation_quality","metric":"citation_capability_advertised","status":"unverified","value_text":null,"evidence":"Metadata/tool descriptions advertise citation or evidence capability: validate_entity_relationships Validate entity relationship metadata and *_id references against existing entity schemas. No response-level citation benchmark has verified this claim yet.","source_type":"live_probe","sample_size":null,"observed_at":"2026-07-17T22:15:51.074Z","methodology_version":"trust-v1"},{"dimension":"security","metric":"sensitive_capabilities_declared","status":"concern","value_text":"read_app_file, read_app_files, write_app_file, rename_app_file, add_file_change, list_secret_keys, set_secret, delete_secret, configure_integration, delete_ab_test","evidence":"10 discovered tool(s) advertise potentially state-changing or privileged capabilities. Tool names: read_app_file, read_app_files, write_app_file, rename_app_file, add_file_change, list_secret_keys, set_secret, delete_secret, configure_integration, delete_ab_test. Classification is description-based and does not prove exploitability.","source_type":"live_probe","sample_size":10,"observed_at":"2026-07-17T22:15:51.074Z","methodology_version":"trust-v1"},{"dimension":"security","metric":"authentication_boundary","status":"observed","value_text":"open","evidence":"Live protocol probe observed auth_state=open. This describes discovery/access behavior; it is not by itself a vulnerability finding.","source_type":"live_probe","sample_size":null,"observed_at":"2026-07-17T22:15:51.074Z","methodology_version":"trust-v1"}],"response_benchmarks":[],"reviewed_field_reports":[],"interpretation":"Dimensions are independent; missing evidence is not a pass; field reports are qualitative, moderated and never votes."}