Back to browse
GitHub Repository
0 starsPython

I ran 70 MCP servers in a sandbox and logged what they do

by bthapar·Jul 8, 2026·2 points·1 comment

AI Analysis

●●SolidShip ItSolve My Problem

Runtime syscall tracing catches behavior static analysis misses on 70 MCP servers.

Strengths
  • strace + Docker isolation captures actual runtime behavior, not just source code
  • Seeded credential canary detects data exfiltration attempts automatically
  • Found 3 servers phoning home at startup that static scans would miss
Weaknesses
  • Only captures startup behavior — tool-call tracing still on the roadmap
  • MCP ecosystem is nascent, limiting immediate audience and urgency
Category
Target Audience

Developers building or consuming MCP servers

Similar To

Socket.dev · Snyk · Aqua Security

Similar Projects