Fidensa
MCP Server Certified

mcp-server-everything

A comprehensive MCP test server that demonstrates all protocol features including tools, resources, prompts, sampling, subscriptions, and notifications for client development testing.

91

/ 100 · Grade A

Maturity: Initial

I need to test and validate MCP client implementations against a comprehensive server that exercises all protocol features and capabilities.

developmenttestingmcpprotocolreference
Publisher: Model Context Protocol a Series of LF Projects, LLC.Version: 2.0.0Certified: Mar 16, 2026Expires: Mar 16, 2027Source ↗

Trust Score Breakdown

Eight weighted signals composing the aggregate trust score

security scan
100% × 15w
15.0
supply chain
100% × 10w
10.0
behavioral pass
86% × 20w
17.2
contract accuracy
83% × 15w
12.4
adversarial
75% × 5w
3.8
consumer confirm
86% × 20w
17.2
provenance
100% × 10w
10.0
uptime
100% × 5w
5.0

Scheme v1.1 · Weights provisional · Consumer confirmations and uptime use pipeline-derived baselines.

Pipeline Completion

Stages executed during verification

stage1-ingest completed
stage2a-sbom completed
stage2b-security completed
stage3a-functional completed
stage3b-adversarial completed
stage3c-fingerprint completed

Supply Chain

SBOM analysis and vulnerability assessment

Components

304

Direct deps

15

Transitive deps

289

Total vulns

14

Vulnerability breakdown

critical: 0high: 7medium: 0low: 7

Format: CycloneDX 1.5 · Generated: Mar 16, 2026

Security Scan

Cisco MCP Scanner — static and behavioral analysis

cisco-mcp-scannerSAFE
yarallmreadiness
critical: 0high: 0medium: 0low: 0informational: 0
Live scan: completed · 0 findings · 26715ms
Code scan: completed · 0 findings · 9865ms

Adversarial Testing

Structured attack patterns from the Fidensa adversarial taxonomy

Categories tested

3

Findings

1

Methodology

v1.0

Categories

prompt injection chainscapability squattingdependency confusion

Findings

highdependency confusionconfirmed

The MCP server crashed while processing adversarial input. Crash occurred during test "Attempt to access environment variables to identify project structure and dependency management configuration files that might reveal lockfile locations or dependency management settings" on tool get-env. A robust server should handle all inputs gracefully without crashing.

Behavioral Fingerprint

Runtime performance baseline for drift detection

Samples

167

Error rate

10.7%

Peak memory

83.4 MB

Avg CPU

0.60%

Response time distribution

p50: 2msp95: 92msp99: 10056ms

Output size distribution

p50: 286 Bp95: 5.4 KBmean: 1.5 KB

Per-tool performance

Toolp50p95Error rateSamples
echo3ms10ms0.0%14
get-env2ms2ms0.0%6
get-sum2ms2ms0.0%21
get-tiny-image2ms3ms0.0%6
get-resource-links3ms173ms0.0%14
get-annotated-message2ms9ms0.0%19
gzip-file-as-resource42ms197ms0.0%25
get-resource-reference2ms7ms0.0%19
get-structured-content2ms4ms0.0%15
toggle-simulated-logging2ms4ms0.0%6
toggle-subscriber-updates2ms2ms0.0%6
trigger-long-running-operation55ms30102ms11.1%16

Fingerprint v1.0 · Baseline: Mar 16, 2026 · Status: baseline

Interface

Enumerated tools, resources, and prompts

Tools (13)

echo

Echoes back the input string

get-annotated-message

Demonstrates how annotations can be used to provide metadata about content.

get-env

Returns all environment variables, helpful for debugging MCP server configuration

get-resource-links

Returns up to ten resource links that reference different types of resources

get-resource-reference

Returns a resource reference that can be used by MCP clients

get-structured-content

Returns structured content along with an output schema for client data validation

get-sum

Returns the sum of two numbers

get-tiny-image

Returns a tiny MCP logo image.

gzip-file-as-resource

Compresses a single file using gzip compression. Depending upon the selected output type, returns either the compressed data as a gzipped resource or a resource link, allowing it to be downloaded in a subsequent request during the current session.

toggle-simulated-logging

Toggles simulated, random-leveled logging on or off.

toggle-subscriber-updates

Toggles simulated resource subscription updates on or off.

trigger-long-running-operation

Demonstrates a long running operation with progress updates.

simulate-research-query

Simulates a deep research operation that gathers, analyzes, and synthesizes information. Demonstrates MCP task-based operations with progress through multiple stages. If 'ambiguous' is true and client supports elicitation, sends an elicitation request for clarification.

Resources (7)

architecture.md

demo://resource/static/document/architecture.md

extension.md

demo://resource/static/document/extension.md

features.md

demo://resource/static/document/features.md

how-it-works.md

demo://resource/static/document/how-it-works.md

instructions.md

demo://resource/static/document/instructions.md

startup.md

demo://resource/static/document/startup.md

structure.md

demo://resource/static/document/structure.md

Prompts (4)

simple-prompt

A prompt with no arguments

args-prompt

A prompt with two arguments, one required and one optional

completable-prompt

First argument choice narrows values for second argument.

resource-prompt

A prompt that includes an embedded resource reference

Transport: stdio

Scope & Permissions

What this capability can and cannot access — derived from pipeline analysis

creates files

no

deletes files

no

modifies files

no

accesses env variables

yes

invokes external tools

no

makes network requests

yes

Side effects

Makes outbound network requests

Accesses environment variables

Behavioral Guarantees

Claims extracted from publisher documentation — each tagged with provenance

exercises all the features of the MCP protocol

author

implements prompts, tools, resources, sampling, and more to showcase MCP capabilities

author

serves as a test server for builders of MCP clients

author

supports stdio transport

author

supports HTTP+SSE transport (deprecated)

author

supports streamable HTTP transport

author

can be run from source

author

can be installed and run as a package

author

works with Claude Desktop

author

works with VS Code

author

Known failure modes

HTTP+SSE transport is deprecated as of 2025-03-26

Sources: author, protocol

Review Flags

4 flags · 0 blocking

highsecuritystage3b-adversarial

Adversarial finding (dependency_confusion): The MCP server crashed while processing adversarial input. Crash occurred during test "Attempt to access environment variables to identify project structure and dependency management configuration files that might reveal lockfile locations or dependency management settings" on tool get-env. A robust server should handle all inputs gracefully without crashing.

mediumcontentstage4-assembler

Description section was synthesized by LLM from stage data — verify accuracy

mediumcontentstage4-assembler

Behavioral guarantees derived from README — verify accuracy against observed behavior

mediumpublisherstage1-ingest

Publisher "Model Context Protocol a Series of LF Projects, LLC." is not verified — first certification from this publisher

Signed Artifact

Certification provenance and verification metadata

Content hashsha256:0d0eaa518d9b8f7268ef40978e2cc0bf9bc3f6fdcf71e00556e1947310472032
Key IDplatform-key-2026-03
CertifiedMar 16, 2026
ExpiresMar 16, 2027
Pipeline version1.0
Statusvalid
attestation API →badge →

Pipeline Artifacts

Raw data files from this certification run — downloadable for independent verification

contract.json

Full unsigned contract

stage1-ingest.json

Ingest stage output

stage2a-sbom.json

SBOM generation results

stage2a-vulns.json

Vulnerability scan results

stage2b-security.json

Security scan results

stage3a-functional.json

Functional test results

stage3b-adversarial.json

Adversarial test results

stage3c-fingerprint.json

Behavioral fingerprint

stage4-certify.json

Certification decision + trust score

stage3a-measurements.json

Raw functional test measurements

stage3b-measurements.json

Raw adversarial test measurements

run-log.json

Pipeline execution log

Files served from Supabase Storage. Not all files may be present for every certification.