‹ directory
69MCP SCORE
D
Broker as a Service
https://chainflip-broker.io/mcp
6 tools1 prompts~1.6k tok/req100% annot.proto 2024-11-05
⚠️ Score capped — floor: SECURITY_RISK (a hard risk limited the grade).
Score by pillar
Security ·2075
Tool design ·18100
Schemas / desc ·1680
Reliability ·14100
Context-cost ·1264
Compliance ·1286
Coverage ·860
reliability: LOW (T1 single-shot, not credited - requires T3 >=24h)
Context-cost
1.6ktokens for
tools/listPaid on every request. Lean footprint for 6 tools.
ecosystem median ≈ 3k
MCP primitive coverage
the quality score covers tools6
Tools
0
Resources · none
1
Prompts
Why this score — causal attribution
Each penalty: measure → mechanism → effect → Δscore.
Security · CRITICAL−5
[MCP03] injected instruction (poisoning) in description/schema/output → MCP security flaw → tool: start_swap
Compliance · MEDIUM−1.6
proto 2024-11-05 (4 rev. behind 2025-11-25) → outdated protocol version → recent features unavailable, recent clients weakened
Compliance · LOW−0.6
no OAuth discovery (.well-known missing) → RFC 9728/8414 not exposed → auth not auto-discoverable by clients
Security — OWASP MCP Top 10
MCP03CRITICAL
start_swapBadge — paste it in your README
[](https://checkmcp.dev/report?url=https%3A%2F%2Fchainflip-broker.io%2Fmcp)About Broker as a Service — FAQ
Is the Broker as a Service MCP server safe to use?+
CheckMCP audited Broker as a Service and gave it an MCP Score of 69/100 (grade D) — weak — significant issues; review the findings before trusting it with sensitive data or tools. The audit runs an OWASP MCP Top 10 security pass (tool poisoning, hardcoded secrets, command injection, the lethal trifecta) against the live endpoint; see the per-pillar breakdown and the "why this score" attribution on this page, and re-audit anytime at checkmcp.dev.
What is the MCP Score of Broker as a Service?+
Broker as a Service scores 69/100 (grade D) on CheckMCP's vendor-neutral audit across six weighted pillars — security, tool design, schemas, context-cost, compliance and coverage — with reliability measured and shown but not yet credited.
How many tools does Broker as a Service expose, and what is its context cost?+
Broker as a Service exposes 6 tools, and its tools/list response costs roughly 1.6k tokens — paid on every request your agent makes to it. Lower is better for your context budget.
How was Broker as a Service scored?+
By probing the live MCP endpoint (https://chainflip-broker.io/mcp), inspecting its tools, schemas and protocol compliance, running an OWASP MCP Top 10 security pass, and measuring the token cost of tools/list — then attributing every penalty as measure → mechanism → effect. The methodology is open: checkmcp.dev/#methodology.