Blog

News, insights, and ecosystem reports on MCP server security.

March 9, 2026·7 min read

We Scanned 200+ OpenClaw Skills. Here's What We Found.

The first independent security audit of the OpenClaw skill ecosystem. Most skills score C or below -- missing sandboxing, shell access, and unclear scope are systemic issues.

OpenClawSkillsSecurityAudit

March 8, 2026·4 min read

Introducing SpiderRating: Independent Security Ratings for MCP Servers

Today we launch SpiderRating, an open-source security rating system for the MCP ecosystem. Every server gets a transparent, reproducible score across three dimensions.

AnnouncementMCPSecurity

March 7, 2026·6 min read

How We Score MCP Servers: A Deep Dive into the SpiderScore Model

A detailed look at our 3-layer scoring model: what we measure, why it matters, and how we calibrate scores to be fair and actionable.

MethodologySecurityScoring

March 6, 2026·5 min read

The State of MCP Security in 2026

Our first ecosystem report: grade distribution, most common security issues, and what the data tells us about the health of the MCP ecosystem.

ReportEcosystemSecurity