74
/ 100
10 days ago
glama

bounded-systems/bounded-tools-mcp

Local, read-only MCP server that provides verified access to bounded.tools' signed static API, including the Web-Build Conformance report and SPDX SBOM, with byte-for-byte verification against a Sigstore-signed manifest.

Is this your MCP?

Claim it to get a verified publisher badge, a free copy of our full audit findings, and direct contact for any high-priority issues we find.

Install from

M8ven verifies MCPs across every public registry — install directly from whichever one you prefer.

// key findings
No credential exfiltration, no sensitive file access, no obfuscation
Static analysis found nothing flowing your secrets to unexpected places.
Open source with a license and README
Anyone can audit the code, the license is declared, and the publisher documents what it does.
// full audit trail
The full breakdown of what we checked, the deductions that landed, the network hosts, the dependency advisories, and concrete fix guidance is available to verified publishers.
// embed badge in your README
[![M8ven Score](https://m8ven.ai/badge/mcp/bounded-systems-bounded-tools-mcp-179aks)](https://m8ven.ai/mcp/bounded-systems-bounded-tools-mcp-179aks)
commit: ca7f894c2d41debb6f9dbd351c90db2b16503d2e
code hash: 172e280b8709a2c9269c5c52042dfedc378464d315153fb9fad8c0e7f91cedad
verified: 6/29/2026, 11:24:40 AM
view raw JSON →