Autonomous Security
Back to Blog
March 2, 2026
Richard Bloor

The app catalog

The MCPTotal app catalog lists the MCP servers you can add to a space. This guide describes when and where the catalog is accessed, and the information it provides about MCP servers.

Open the app catalog

You access the app catalog from the main menu.

The MCPTotal user home page shows the side bar menu and tiles for a message, quick start, and spaces. On the menu, the catalog option is highlighted.

The app catalog is also displayed when you click Add in a space.

A space tile shows three apps with the add button in the header menu bar highlighted.

The app catalog

The main catalog (opened from the main menu) consists of:

  1. A tile to enable the addition of a custom MCP server.
  2. Tiles for custom apps.
  3. A search bar.
  4. A category list that filters the catalog. You can use this in combination with a search.
  5. Tiles for MCP servers.

The app catalog with numbered highlights indicating key features of the catalog.

The catalog view opens when you add an app to a space containing the search bar and app tiles. It doesn't include a category selector or support adding a custom app.

The app catalog opened from the add button on a space, showing the search bar and app titles.

The app tile

The app tile in both catalog views includes:

  1. The app's icon, name, and provider.
  2. A badge indicating:
    1. A white tick on a blue background. An MCP server developed and hosted by MCPTotal.
    2. A blue tick on a white background. An MCP server developed and hosted by a service provider (first-party).
    3. The absence of a badge indicates that an MCP server is hosted by MCPTotal but developed by a third party.
  3. Badges indicating the status of non-MCPTotal developed servers:
    1. A lozenge containing the word verified. The server is either an official provider's server or has been scanned and verified as safe for hosted development by MCPTotal.
    2. A lozenge with an icon and the word PII. The server may handle personally identifiable information.
    3. A lozenge with an icon and the term Apache 2.0.A lozenge with an icon and the term COO 1.0.A lozenge with an icon and the term MIT. The license governing use of the server.
    4. A lozenge with an icon and the word state. The server is open-source, and the developers haven't updated it in more than 3 months.
    5. A lozenge with an icon and the words excessive access.Scans by MCPTotal indicate the server may request or expose more data than expected.
    6. A lozenge with an icon and the word unsafe. Scans by MCPTotal have identified critical vulnerabilities.
  4. A description of the app.
  5. Badges indicating the tools offered by the server.
  6. A button to add the app to an existing or new space.

An app tile for DeepWiki with highlights indicating the app icon, source badge, status badge, description, tool badges, and add button.

In the main catalog, clicking on an app tile opens a full description of the server. In the catalog opened from the Add button in a space, clicking an app tile opens the add app dialog.

App information page

The app information page provides:

  1. Basic information about the app, such as its name and badge details as provided on its tile, and a button to add the app to an existing or new space.
    The app information header showing an icon, app name, developer, verified lozenge, and add button.
  2. Tabs provide an expandable description of the MCP server (Description) and details about the server (Security), including package information, deployment safety, vulnerabilities, and more. For more details on the security tab content, see the App information page security tab.
    A tabbed section with options for display description and security details shows the server's tagline and link to see details.
  3. Details of any spaces where you have installed the app.
    A list of spaces an app is installed in shows a space named My space with a lozenge indicating it contains 2 apps along with a hamburger menu.
  4. A summary of the MCP server's security details.
    1. For a server developed by MCPTotal.
      Security details for an MCPTotal developed server show it has secure credentials handling, doesn't collect data, is sandboxed, & gets security updates.
    2. For servers by other developers, a summary of the details provided in the security tab.
      A summary of security scans for malicious activity, domain and URL reputation, vulnerabilities, and dependencies along with the date of the last scan.
  5. A list of the tools provided by the MCP server. Where the server includes several tools, the interface provides a search bar. You can expand each tool listing to reveal additional details about the capability it provides.
    A list of the tools available in an MCP server shows a search bar and one tool expanded to show its description.

App information security tab

The app information security page provides information about an app's safety. The information presented depends on whether the app is:

  • Developed by MCPTotal.
  • An official server hosted by the provider.
  • A third-party server.

Note: The MCPTotal AI agent scanner generates the information in this section. Be aware that the scanner can make mistakes.

MCPTotal developed servers

For an MCP server developed by MCPTotal, the app information security tab contains details about the server package, including:

  • Package details, including the package name, a link to the MCPTotal website, and confirmation that MCPTotal developed the package.
    Details of a package name, its source, and confirmation that it was developed by MCPTotal.
  • Confirmation that MCPTotal developed the server, along with a summary of the server's safety features and activities undertaken to maintain those safety features.
    Security details for an MCPTotal developed server shows it has secure credentials handling, doesn't collect data, is sandboxed, & gets security updates.

Official providers' servers

For an MCP server developed and hosted by a service provider, the app information security tab includes:

  • Server details, including the server name, server URL, provider name, and confirmation that it is a remote MCP server.
    Details of an MCP server showing its URL, provider, and confirmation it's remote from MCPTotal.
  • Confirmation that the server is a provider's official server, along with a summary of information on the server's hosting and how MCPTotal connects to that server.
    Details confirming an official server including details of the provider, source URL, and how connection is established.
  • Details of the verifications performed by the MCPTotal AI agent.
    A list of verifications for domain ownership, connection type, third-party code execution, and credentials handling.

Third-party servers

For third-party-developed MCP servers, the security tab includes a detailed summary of information gathered from scans of the MCP server performed by the MCPTotal AI agent.

Note: MCPTotal hosts each server in a space in an isolated, single-tenant sandbox, so the server doesn't have access to anything else you install in MCPTotal. Each server also runs as a private instance, so unless you share a space, no one else can access it and exploit any vulnerabilities in the source code or created by its dependencies.
However, if you share a space, those you share it with could exploit a vulnerability. Therefore, only share a space with people you trust.

  • Package details, including the package name (and an icon indicating the package source, if any), a link to the source code, and confirmation of the scanning performed on the package.
    Details of a server package show its name, source, and confirmation it has been scanned by the MCPTotal security agent.
  • Deployment safety details
    Details of deployment safety for hosted and local deployment, with descriptions for the verified status.
    Details about excessive access
    Details for a hosted server exhibiting excessive access, including description and list of concerns.
  • Results of a scan for malicious code by MCPTotal.
    Note: MCPTotal won't host a server that includes malicious code. This section confirms that MCPTotal has performed malicious code scans and detected no issues.
    Details for a malicious code analysis indicates that no malicious patterns were detected.
  • Information about vulnerabilities discovered during scans performed by MCPTotal.
    Details on each vulnerability include:
    • A lozenge indicating the severity of the vulnerability: critical, high, medium, low, or info.
    • A reference code and sequential number for the item.
    • An AI-generated summary description of the vulnerability.
    • The location of the vulnerability in the source code.
    • An expandable section containing an AI-generated description of the vulnerability.
      example oA detected vulnerability with a description and details of the source location.
  • Information on PII exposure discovered during scans performed by MCPTotal. Details on each PII exposure include:
    • A reference code and sequential number for the item.
    • An AI-generated summary description of the PII exposure.
    • The location of the PII exposure in the source code.
    • An expandable section containing an AI-generated description of the PII exposure.
      An example of a PII exposure with a description and details of source code location.
  • Non-human identities discovered during MCPTotal scans. Details on each non-human identity include:
    • A reference and sequential number for the item.
    • An AI-generated summary description of the non-human identity.
    • The location of the non-human identity's definition in the source code.
    • An expandable section containing an AI-generated description of the non-human identity.

  • Endpoints scanned by the MCPTotal AI agent.
    A list of scanned endpoints including package details.
  • Dependencies discovered during scans performed by MCPTotal. Details on each dependency include:
    • A lozenge indicating the potential for dependency to create a vulnerability, with levels: critical, high, medium, low, and info.
    • A reference code and sequential number for the item.
    • An AI-generated name for the dependency.
    • The location of the dependency in the source code.
    • An expandable section containing an AI-generated description of the dependency.
      An example of a dependency detected with a description indicating its impact and any patches to address the issue.
Last updated: April 14, 2026
Back to Blog