drop mcp server audit log · detect over-permissioned tool exposure · runs locally
mcp server audit · permission scope · local only
heuristic screener · vendor schema varies · not definitive proof