Skip to content

new active script to detect open mcp servers #499

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
wants to merge 1 commit into
base: main
Choose a base branch
from
Open

new active script to detect open mcp servers #499

wants to merge 1 commit into from

Conversation

@bananabr
Copy link

@bananabr bananabr commented Oct 30, 2025

This script detects potentially exposed MCP servers by sending MCP initialization requests

@psiinon
Copy link
Member

psiinon commented Oct 30, 2025

Logo
Checkmarx One – Scan Summary & Details99b5fcf5-0b49-40d0-a37b-2d6c08d61cf9

Great job! No new security vulnerabilities introduced in this pull request

Use @Checkmarx to reach out to us for assistance.

Just send a PR comment with @Checkmarx followed by a natural language request.

Examples: @Checkmarx how are you able to help me? @Checkmarx rescan this PR

@psiinon
Copy link
Member

psiinon commented Nov 11, 2025

@bananabr thanks for this PR!

Am I right in thinking that the paths you're checking should be absolute, ie https://www.example.com/mcp or should they be relative (and therefore recurse through the tree), e.g. https://www.example.com/a/mcp, https://www.example.com/a/b/mcp?

Do you have any links to example MCP servers which this rule detects so we can test it?

The build is failing, but it looks like you can fix that with ./gradlew :spotlessApply

@kingthorin
Copy link
Member

kingthorin commented Nov 11, 2025

The file name and code link don't match.

They should also follow the naming guidance: https://github.com/zaproxy/community-scripts/blob/main/CONTRIBUTING.md#naming-scripts

kingthorin
kingthorin reviewed Nov 11, 2025
View reviewed changes
active/open_mcp.js

function getMetadata() {
return ScanRuleMetadata.fromYaml(`
id: 100030
Copy link
Member

@kingthorin kingthorin Nov 11, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Please reserve an ID by opening a PR against: https://github.com/zaproxy/zaproxy/blob/main/docs/scanners.md

active/open_mcp.js
category: server
risk: medium
confidence: medium
cweId: 200 # CWE-200: Information Exposure
Copy link
Member

@kingthorin kingthorin Nov 11, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

200 should not be mapped, please use something more specific.

image

active/open_mcp.js
Comment on lines +340 to +341
.setCweId(200)
.setWascId(13)
Copy link
Member

@kingthorin kingthorin Nov 11, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Details that are set/common in the metadata block don't need to be re-set here.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@kingthorin kingthorin kingthorin left review comments

At least 2 approving reviews are required to merge this pull request.

Assignees

No one assigned

Labels

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

3 participants

@bananabr @psiinon @kingthorin