{"attribution":"MCP Queen — the evidence layer for MCP (https://mcpqueen.com)","license":"CC BY 4.0 — free to use with attribution and a link to mcpqueen.com","methodology":"https://mcpqueen.com/registry#methodology","docs":"https://mcpqueen.com/api","generated_at":"2026-07-17T04:15:42.499Z","server":{"name":"net.apisecurityscan/securityscan","title":"SecurityScan","description":"Scan GitHub-hosted AI skills for vulnerabilities: prompt injection, malware, OWASP LLM Top 10.","version":"1.0.0","remote_url":"https://apisecurityscan.net/mcp","repo_url":"https://github.com/securityscan-api/securityscan-api"},"operational_grade":{"grade":"A","score":100,"provisional":0,"reachable":1,"auth_state":"open","latency_ms":60,"tool_count":3,"probed_at":"2026-07-15T02:30:34.806Z","evidence":[{"criterion":"reachability","points":25,"max":25,"evidence":"HTTP 200, initialize accepted in 60ms"},{"criterion":"protocol","points":15,"max":15,"evidence":"valid JSON-RPC initialize result, protocolVersion 2025-06-18, serverInfo SecurityScan@1.27.0"},{"criterion":"tooling","points":35,"max":35,"evidence":"tools/list OK: 3 tools e.g. \"scan_skill\"; 3/3 described, 3/3 fully-typed schemas, median description 554 chars"},{"criterion":"latency","points":10,"max":10,"evidence":"initialize round-trip 60ms"},{"criterion":"provenance","points":15,"max":15,"evidence":"description present; repository linked; version 1.0.0; namespace net.apisecurityscan matches endpoint/repo"}],"protocol_access":"open"},"field_semantics":{"auth_state":"Deprecated name retained for compatibility. It means protocol handshake/discovery access only, not tool-level data entitlement.","protocol_access":"Preferred name for auth_state."},"audit_state":"unaudited","observations":[],"response_benchmarks":[],"reviewed_field_reports":[],"interpretation":"Dimensions are independent; missing evidence is not a pass; field reports are qualitative, moderated and never votes."}