50+ MCP Security Statistics (2026)

Based on automated scanning of 15,674 MCP servers. Source: SpiderRating. Last updated: 2026-04-07.

Ecosystem Overview

  1. 1.15,674 MCP servers have been scanned and rated by SpiderRating.
  2. 2.MCP servers span 15 canonical categories.
  3. 3.The average security score across all servers is 5.3/10.
  4. 4.The median security score is 5.7/10 (p95: 6.8).
  5. 5.12,018 servers (77%) have at least one security issue.
  6. 6.A total of 33,594 security issues have been identified across all servers.
  7. 7.3,634 critical-severity issues and 19,731 high-severity issues were detected.

Decision Verdicts

  1. 8.Only 11.8% of MCP servers earn a RECOMMENDED verdict (1,855 servers).
  2. 9.49.0% are rated CONSIDER — usable but with caveats (7,687 servers).
  3. 10.25.5% are rated ALLOW_WITH_RISK (3,998 servers).
  4. 11.13.6% are rated NOT_RECOMMENDED (2,132 servers).

Security Findings

  1. 12._skill_clean detection has a 100% true positive rate (TP: 3550, FP: 0).
  2. 13.child_process_injection detection has a 50.3% true positive rate (TP: 557, FP: 550).
  3. 14.sql_injection detection has a 66% true positive rate (TP: 676, FP: 348).
  4. 15.ssrf detection has a 66.2% true positive rate (TP: 569, FP: 290).
  5. 16.sandbox.not_configured detection has a 100% true positive rate (TP: 798, FP: 0).
  6. 17.fs.permissions detection has a 100% true positive rate (TP: 798, FP: 0).
  7. 18.Security-themed MCP servers (scanners, firewalls, CTF tools) have 2.05x higher false positive rate than regular servers.

Ground Truth & Calibration

  1. 19.17,666 security observations have been recorded in SpiderRating's observation database.
  2. 20.10,970 observations (62%) have been verified as TP or FP.
  3. 21.Overall verified true positive rate: 71.9%.
  4. 22.6 security fix PRs have been merged by upstream MCP projects.
  5. 23.35.3% of submitted security PRs are accepted by maintainers (6/17).

Decision Quality

  1. 24.16,675 risk flags (96.5%) carry high confidence based on historical TP rate.
  2. 25.341 risk flags are marked low confidence (broken scanner rules, tagged for AI consumers).
  3. 26.170 risk flags across 151 servers are Ground Truth-verified false positives (auto-suppressed).

Frequently Asked Questions

How many MCP servers has SpiderRating scanned?

SpiderRating has scanned and rated 15,674 MCP servers across 15 categories as of 2026.

What percentage of MCP servers are safe to use?

Only 11.8% of MCP servers earn a RECOMMENDED verdict. 49.0% are rated CONSIDER (usable with caveats).

How accurate is SpiderRating's security scanning?

SpiderRating's Ground Truth database contains 17,666 observations, of which 10,970 (62%) have been verified as true positive or false positive. The path_traversal rule has the highest accuracy at 76.1% true positive rate.

All statistics are based on SpiderRating's automated security scan (46+ rules, YARA supply chain analysis, description quality assessment). Data is updated daily. Full methodology. For API access: Decision API.