Back to home
MCPShield Verified
The trust signal for MCP servers. Three certification tiers based on security scan results.
Platinum Verified
- ✓Grade A (score 90+)
- ✓Zero non-info findings
- ✓Passed LLM semantic analysis (two-pass scan)
- ✓The highest level of trust — this server has been analyzed by both regex rules and an AI judge with zero issues found
Gold Verified
- ✓Grade A (score 90+)
- ✓No critical or high severity findings
- ✓May have medium or low findings (informational issues)
- ✓Strong security posture — safe for production use
Silver Verified
- ✓Grade B or better (score 80+)
- ✓No critical findings
- ✓May have high, medium, or low findings
- ✓Good baseline security — some improvements recommended
How It Works
Automatic computation
Certification tiers are computed automatically from your latest scan results. No manual application needed. Every server in our database is evaluated.
Two-pass analysis
Our scanner runs 91 regex rules followed by an LLM semantic judge. Platinum certification requires passing both passes with zero findings.
Always up to date
Certification updates every time your server is re-scanned. Fix issues and your tier improves automatically. No waiting for manual review.
How to Improve Your Tier
- Fix critical findings first. No certification is possible with critical issues. These are usually hardcoded credentials, command injection, or active exfiltration patterns.
- Fix high findings for Gold. Gold requires zero critical AND zero high severity findings. High findings include missing authentication, unrestricted file access, and dangerous capability combinations.
- Fix everything for Platinum. Platinum requires zero non-info findings plus passing the LLM semantic judge. This means clean tool descriptions with no manipulation patterns.
- Re-scan after fixes. Open a PR (if you have the GitHub App installed) or run a scan at mcpshield.co to update your tier.
Check your certification tier
Search the database to see your server's current grade and certification status.