app.flaim/mcp
Flaim Fantasy
Read-only fantasy analysis for ESPN, Yahoo, and Sleeper leagues via MCP
Status
Healthy
Score
77.7
Transport
streamable-http
Tools
9
Production readiness
Verdict
Needs remediation
Current validation evidence shows operational or discovery gaps that should be fixed first.
Critical alerts
1
Production verdicts degrade quickly when critical alerts are active.
Evidence confidence
Confidence score
65.0
Based on 20 recent validations, 26 captured checks, and validation age of 602.7 hours.
Live checks captured
26
More direct checks increase trust in the current verdict.
Validation age
602.7h
Lower age means fresher evidence.
Recommended for
OpenAI connectors
OpenAI connectors is marked compatible with score 100.
Claude Desktop
Claude Desktop is marked compatible with score 100.
Smithery
Smithery is marked compatible with score 80.
Generic Streamable HTTP
Generic Streamable HTTP is marked compatible with score 100.
Client readiness verdicts
Ready for ChatGPT custom connector
Ready
No major blockers detected.
Confidence: medium (65.0)
Evidence provenance
Winner: live_validation
Supporting sources: live_validation, history, server_card
Disagreements: none
initialize• OKtools_list• OKtransport_compliance_probe• Warningstep_up_auth_probe• OKconnector_replay_probe• OK — Frozen tool snapshots must survive refresh.request_association_probe• Missing — Roots, sampling, and elicitation should stay request-scoped.
Ready for Claude remote MCP
Ready
No major blockers detected.
Confidence: medium (65.0)
Evidence provenance
Winner: live_validation
Supporting sources: live_validation, history, server_card
Disagreements: none
initialize• OKtools_list• OKtransport_compliance_probe• Warning
Unsafe for write actions
No
Current write surface is bounded enough for cautious review.
Confidence: medium (65.0)
Evidence provenance
Winner: live_validation
Supporting sources: live_validation, history
Disagreements: none
action_safety_probe• Warning
Snapshot churn risk
Low
No material tool-surface churn detected in the latest comparison.
Confidence: medium (65.0)
Evidence provenance
Winner: history
Supporting sources: history, live_validation
Disagreements: none
tool_snapshot_probe• OKconnector_replay_probe• OK
Why not ready by client
ChatGPT custom connector
Ready
Remediation checklist
- No explicit blockers recorded.
Claude remote MCP
Ready
Remediation checklist
- No explicit blockers recorded.
Write-safe publishing
Ready
Remediation checklist
- No explicit blockers recorded.
Verdict traces
Production verdict
Needs remediation
Current validation evidence shows operational or discovery gaps that should be fixed first.
Confidence: medium (65.0)
Winning source: live_validation
Triggering alerts
validation_stale• medium • Validation evidence is stalewrite_action_surface_expanded• high • Write-action surface expanded
Client verdict trace table
| Verdict | Status | Checks | Winning source | Conflicts |
|---|---|---|---|---|
openai_connectors |
Ready | initialize, tools_list, transport_compliance_probe, step_up_auth_probe, connector_replay_probe, request_association_probe | live_validation | none |
claude_desktop |
Ready | initialize, tools_list, transport_compliance_probe | live_validation | none |
unsafe_for_write_actions |
No | action_safety_probe | live_validation | none |
snapshot_churn_risk |
Low | tool_snapshot_probe, connector_replay_probe | history | none |
Publishability policy profiles
ChatGPT custom connector publishability
Ready
Remote MCP, auth, transport, and tool-surface checks are in acceptable shape.
- Search Fetch Only: No
- Write Actions Present: Yes
- Oauth Configured: Yes
- Admin Refresh Required: No
- Safe For Company Knowledge: No
- Safe For Messages Api Remote Mcp: No
Claude remote MCP publishability
Ready
Transport, discovery, and remote-MCP assumptions are satisfied.
- Search Fetch Only: No
- Write Actions Present: Yes
- Oauth Configured: Yes
- Admin Refresh Required: No
- Safe For Company Knowledge: No
- Safe For Messages Api Remote Mcp: No
Compatibility fixtures
ChatGPT custom connector fixture
Passes
Live checks line up with current ChatGPT connector assumptions.
- remote_http_endpoint: Passes
- oauth_discovery: Passes
- frozen_tool_snapshot_refresh: Passes
- request_association: Passes
Anthropic remote MCP fixture
Passes
Remote MCP transport and discovery assumptions are satisfied.
- remote_transport: Passes
- tool_discovery: Passes
- auth_connect: Passes
- safe_write_review: Passes
Authenticated validation sessions
Latest profile
remote_mcp
Authenticated session used
Public score isolation
Preview endpoint
/v1/verifyCI preview endpoint
/v1/ci/previewPublic server reputation
Validation success 7d
n/a
Validation success 30d
1.0
Mean time to recover
n/a
Breaking diffs 30d
1
Registry drift frequency 30d
0
Snapshot changes 30d
0
Incident & change feed
| Timestamp | Event | Details |
|---|---|---|
| Apr 09, 2026 12:27:10 AM UTC | Latest validation: healthy | Score 77.7 with status healthy. |
| Apr 07, 2026 12:24:40 AM UTC | Score changed | Score delta +0.5 versus the previous run. |
Capabilities
- OAuth:
- DCR/CIMD:
- Prompts:
- Homepage: https://flaim.app
- Docs: none
- Support: none
- Icon: none
- Remote endpoint: https://api.flaim.app/mcp
- Server card: none
Use-case taxonomy
development search communication productivity
Security posture
Tools analyzed
9
High-risk tools
3
Destructive tools
1
Exec tools
1
Egress tools
0
Secret tools
9
Bulk-access tools
1
Risk distribution
medium:6, high:3
Tool capability & risk inventory
| Tool | Capabilities | Risk | Findings | Notes |
|---|---|---|---|---|
get_user_session |
read admin secrets | Medium | secret material access | Safeguards hinted in metadata. |
get_ancient_history |
read admin secrets | Medium | secret material access | Safeguards hinted in metadata. |
get_league_info |
read write admin secrets | Medium | secret material access admin mutation | Safeguards hinted in metadata. |
get_standings |
read write admin secrets export | High | bulk data access secret material access admin mutation | Safeguards hinted in metadata. |
get_matchups |
read admin secrets | Medium | secret material access | Safeguards hinted in metadata. |
get_roster |
read write admin secrets | Medium | secret material access admin mutation | Safeguards hinted in metadata. |
get_free_agents |
read admin secrets | Medium | secret material access | Safeguards hinted in metadata. |
get_players |
read exec admin secrets | High | command execution secret material access freeform input surface | Safeguards hinted in metadata. |
get_transactions |
read write delete admin secrets | High | destructive operation secret material access admin mutation | Safeguards hinted in metadata. |
Write-action governance
Governance status
Warning
Safe to publish
Auth boundary
oauth_or_auth_required
Blast radius
High
High-risk tools
3
Confirmation signals
none
Safeguard count
9
Status detail: 3 high-risk tool(s), 1 destructive tool(s), 1 exec-capable tool(s); auth boundary is oauth or auth required with 9 safeguard(s) and 0 confirmation signal(s).
| Tool | Risk | Flags | Safeguards |
|---|---|---|---|
get_standings |
High | bulk data access secret material access admin mutation | yes |
get_players |
High | command execution secret material access freeform input surface | yes |
get_transactions |
High | destructive operation secret material access admin mutation | yes |
Action-controls diff
Snapshot changed
no
Disabled-by-default candidates
none
Manual review candidates
none
New actions
| Action | Risk | Flags |
|---|---|---|
| No newly added actions. | ||
Changed actions
| Action | Change types | Risk |
|---|---|---|
| No materially changed actions. | ||
Why this score?
Access & Protocol
38/44
Connectivity, auth, and transport expectations for common clients.
Interface Quality
38.2/56
How well the tool/resource interface communicates and behaves under automation.
Security Posture
26.5/36
How safely the exposed tool surface handles destructive actions, egress, execution, secrets, and risky inputs.
Reliability & Trust
21/24
Operational stability, consistency, and trustworthiness over time.
Discovery & Governance
22.5/28
How well the server is documented, listed, and governed in public registries.
Adoption & Market
6/8
Adoption clues and public evidence that the server is intended for external use.
Algorithmic score breakdown
Auth Operability
4/4
Measures whether auth discovery and protected access behave predictably for clients.
Error Contract Quality
1.2/4
Grades machine-readable error structure, status alignment, and remediation hints.
Rate-Limit Semantics
2/4
Checks whether quota/throttle responses are deterministic and automation-friendly.
Schema Completeness
3/4
Completeness of tool descriptions, parameter docs, examples, and schema shape.
Backward Compatibility
3/4
Stability score across tool schema/name drift relative to prior validations.
SLO Health
3/4
Availability, latency, and burst-failure profile across recent validation history.
Security Hygiene
3.5/4
HTTPS posture, endpoint hygiene, and response-surface hardening checks.
Task Success
4/4
Can an agent reliably initialize, enumerate tools, and execute core MCP flows?
Trust Confidence
4/4
Confidence-adjusted reliability score that penalizes low evidence volume.
Abuse/Noise Resilience
3/4
How well the server preserves core behavior in the presence of noisy traffic patterns.
Prompt Contract
2/4
Quality of prompt metadata, argument shape, and prompt discoverability for clients.
Resource Contract
2/4
How completely resources and resource templates describe URIs, types, and usage shape.
Discovery Metadata
4/4
Homepage, docs, icon, repository, support, and license coverage for directory consumers.
Registry Consistency
2/4
Agreement between stored registry metadata, live server-card data, and current validation output.
Installability
4/4
How cleanly a real client can connect, initialize, enumerate tools, and proceed through auth.
Session Semantics
4/4
Determinism and state behavior across repeated MCP calls, including sticky-session surprises.
Tool Surface Design
3/4
Naming clarity, schema ergonomics, and parameter complexity across the tool surface.
Result Shape Stability
3/4
Stability of declared output schemas across validations, with penalties for drift or missing shapes.
OAuth Interop
4/4
Depth and client compatibility of OAuth/OIDC metadata beyond the minimal protected-resource check.
Recovery Semantics
1/4
Whether failures include actionable machine-readable next steps such as retry or upgrade guidance.
Maintenance Signal
4/4
Versioning, update recency, and historical validation cadence that indicate active stewardship.
Adoption Signal
3/4
Directory presence and distribution clues that suggest the server is intended for external use.
Freshness Confidence
4/4
Confidence that recent validations are current enough and dense enough to trust operationally.
Transport Fidelity
4/4
Whether declared transport metadata matches the observed endpoint behavior and response formats.
Spec Recency
2/4
How close the server’s claimed MCP protocol version is to the latest known public revision.
Session Resume
3/4
Whether Streamable HTTP session identifiers and resumed requests behave cleanly for real clients.
Step-Up Auth
4/4
Whether OAuth metadata and WWW-Authenticate challenges support granular, incremental consent instead of broad upfront scopes.
Transport Compliance
2/4
Checks session headers, protocol-version enforcement, session teardown, and expired-session behavior.
Utility Coverage
2/4
Signals support for completions, pagination, and task-oriented utility surfaces that larger clients increasingly expect.
Advanced Capability Coverage
3/4
Coverage of newer MCP surfaces like roots, sampling, elicitation, structured output, and related metadata.
Connector Publishability
3/4
How ready the server looks for client catalogs and managed connector programs.
Tool Snapshot Churn
4/4
Stability of the tool surface across recent validations, including add/remove and output-shape drift.
Connector Replay
4/4
Whether a previously published frozen connector snapshot would remain backward compatible after the latest tool refresh.
Request Association
3/4
Whether roots, sampling, and elicitation appear tied to active client requests instead of arriving unsolicited on idle sessions.
Interactive Flow Safety
3/4
Whether prompts and docs steer users toward safe auth flows instead of pasting secrets directly.
Action Safety
2/4
Risk-weighted view of destructive, exec, egress, and confirmation semantics across the tool surface.
Official Registry Presence
4/4
Whether the server appears directly or indirectly in the official MCP registry.
Provenance Divergence
4/4
How closely official registry metadata, the live server card, and public repo/package signals agree with each other.
Safety Transparency
2/4
Clarity of docs, auth disclosure, support links, and other trust signals visible to integrators.
Tool Capability Clarity
4/4
How clearly the tool surface communicates whether each action reads, writes, deletes, executes, or exports data.
Destructive Operation Safety
4/4
Penalizes delete/revoke/destroy style tools unless auth and safeguards reduce blast radius.
Egress / SSRF Resilience
3/4
Assesses arbitrary URL fetch, crawl, webhook, and remote-request exposure on the tool surface.
Execution / Sandbox Safety
3/4
Evaluates shell, code, script, and command-execution exposure and whether that surface appears contained.
Data Exfiltration Resilience
3/4
Assesses export, dump, backup, and bulk-read behavior against the surrounding auth and safeguard signals.
Least Privilege Scope
4/4
Rewards scoped auth metadata and penalizes broad or missing scopes around privileged tools.
Secret Handling Hygiene
2/4
Assesses secret-bearing tools, token leakage risk, and whether the public surface avoids obvious secret exposure.
Supply Chain Signal
2.5/4
Public metadata signal for repository, changelog, license, versioning, and recency that supports supply-chain trust.
Input Sanitization Safety
3/4
Penalizes risky freeform string inputs when schemas do not constrain URLs, code, paths, queries, or templates.
Tool Namespace Clarity
4/4
Measures naming uniqueness and ambiguity across the tool namespace to reduce collision and confusion risk.
Compatibility profiles
OpenAI Connectors
100.0
compatible
No major blockers detected.
Connector URL: https://api.flaim.app/mcp # Complete OAuth in the client when prompted. # Server: app.flaim/mcp
Claude Desktop
100.0
compatible
No major blockers detected.
{
"mcpServers": {
"mcp": {
"command": "npx",
"args": ["mcp-remote", "https://api.flaim.app/mcp"]
}
}
}
Smithery
80.0
compatible
Machine-readable failure semantics should be present.
smithery mcp add "https://api.flaim.app/mcp"
Generic Streamable HTTP
100.0
compatible
No major blockers detected.
curl -sS https://api.flaim.app/mcp -H 'content-type: application/json' -d '{"jsonrpc":"2.0","id":1,"method":"initialize","params":{"protocolVersion":"2025-03-26","capabilities":{},"clientInfo":{"name":"mcp-verify","version":"0.1.0"}}}'
Actionable remediation
| Severity | Remediation | Why it matters | Recommended action |
|---|---|---|---|
| High | Add confirmation and dry-run semantics for risky actions | High-risk write, delete, exec, or egress tools should communicate safeguards clearly. | Inspect the latest validation evidence and resolve the client-visible regression.Playbook
|
| High | Align session and protocol behavior with Streamable HTTP expectations | Clients increasingly rely on MCP-Protocol-Version, session teardown, and expired-session semantics. | Align MCP-Protocol-Version, MCP-Session-Id, DELETE teardown, and expired-session handling with the transport spec.Playbook
|
| High | Associate roots, sampling, and elicitation with active client requests | Modern MCP guidance expects roots, sampling, and elicitation traffic to be tied to an active client request instead of arriving unsolicited on idle sessions. | Inspect the latest validation evidence and resolve the client-visible regression.Playbook
|
| High | Publish a complete server card | Missing or incomplete server-card metadata weakens discovery, documentation, and trust signals. | Serve /.well-known/mcp/server-card.json and include tools, prompts/resources, homepage, and support links.Playbook
|
| High | Respond to write-action surface expanded | The number of high-risk write, delete, exec, or bulk-access tools increased on the latest run. | Review the newly exposed write and destructive actions before publishing them broadly.Playbook
|
| Medium | Adopt a current MCP protocol revision | Older protocol revisions reduce compatibility with newer clients and registry programs. | Inspect the latest validation evidence and resolve the client-visible regression.Playbook
|
| Medium | Close connector-publishing gaps | Connector catalogs care about protocol recency, session behavior, auth clarity, and tool-surface stability. | Inspect the latest validation evidence and resolve the client-visible regression.Playbook
|
| Medium | Publish OpenID configuration | OIDC metadata improves token validation and client compatibility. | Expose /.well-known/openid-configuration with issuer, jwks_uri, and supported grants.Playbook
|
| Medium | Repair prompts/list or stop advertising prompts | Prompt metadata should either work live or be removed from the advertised capability set. | Only advertise prompts if prompts/list works and prompt arguments are documented.Playbook
|
| Medium | Repair resources/list or stop advertising resources | Resource metadata should either work live or be removed from the advertised capability set. | Only advertise resources if resources/list works and resources expose stable URIs/types.Playbook
|
| Medium | Respond to validation evidence is stale | Latest validation is 602.7 hours old. | Trigger a fresh validation run or increase scheduler priority for this server.Playbook
|
| Medium | Support resumable HTTP sessions cleanly | Modern MCP clients increasingly expect resumable session behavior on streamable HTTP transports. | Inspect the latest validation evidence and resolve the client-visible regression.Playbook
|
| Low | Harden generic GET handling | Simple probe requests should not surface server instability or noisy failures. | Harden generic GET handlers around the origin of https://api.flaim.app/mcp so incidental traffic does not produce noisy failures.Playbook
|
| Low | Publish newer MCP capability signals | Roots, sampling, elicitation, structured outputs, and related metadata improve client understanding and ranking. | Inspect the latest validation evidence and resolve the client-visible regression.Playbook
|
Point loss breakdown
| Component | Current | Points missing |
|---|---|---|
| Recovery Semantics | 1/4 | -3.0 |
| Error Contract | 1.2/4 | -2.8 |
| Utility Coverage | 2/4 | -2.0 |
| Transport Compliance | 2/4 | -2.0 |
| Spec Recency | 2/4 | -2.0 |
| Secret Handling Hygiene | 2/4 | -2.0 |
| Safety Transparency | 2/4 | -2.0 |
| Resource Contract | 2/4 | -2.0 |
| Registry Consistency | 2/4 | -2.0 |
| Rate Limit Semantics | 2/4 | -2.0 |
| Prompt Contract | 2/4 | -2.0 |
| Action Safety | 2/4 | -2.0 |
Validation diff
Score delta
0
Summary changed
no
Tool delta
0
Prompt delta
0
Auth mode changed
no
Write surface expanded
yes
Protocol regressed
no
Registry drift changed
no
Regressed checks: none
Improved checks: none
| Component | Previous | Latest | Delta |
|---|---|---|---|
| No component deltas between the latest two runs. | |||
Tool snapshot diff & changelog
Snapshot changed
no
Added tools
none
Removed tools
none
Required-argument changes
| Tool | Added required args | Removed required args |
|---|---|---|
| No required-argument changes detected. | ||
Output-schema drift
| Tool | Previous properties | Latest properties |
|---|---|---|
| No output-schema drift detected. | ||
Connector replay
Status
OK
Backward compatible
Would break after refresh
Added tools
none
Removed tools
none
Additive output changes
none
Required-argument replay breaks
| Tool | Added required args | Removed required args |
|---|---|---|
| No required-argument replay breaks detected. | ||
Output-schema replay breaks
| Tool | Removed properties | Added properties |
|---|---|---|
| No output-schema replay breaks detected. | ||
Transport compliance drilldown
Probe status
Warning
Transport
streamable-http
Session header
no
Protocol header
no
Bad protocol response
400
DELETE teardown
n/a
Expired session retry
n/a
Last-Event-ID visible
no
Issues: missing_session_id, missing_protocol_header
Request association
Status
Missing
Advertised capabilities
none
Observed idle methods
none
Violating methods
none
Probe HTTP status
n/a
Issues
none
Utility coverage
Probe status
OK
Completions
not detected
Completion probe target: none
Pagination
not detected
No nextCursor evidence.
Tasks
Auth Required
Advertised: no
Benchmark tasks
| Benchmark task | Status | Evidence |
|---|---|---|
| Discover tools | Passes |
|
| Read-only fetch flow | Likely to fail |
|
| OAuth-required connect | Passes |
|
| Safe write flow with confirmation | Degraded |
|
Registry & provenance divergence
Probe status
OK
Direct official match
yes
Drift fields
none
| Field | Registry | Live server card |
|---|---|---|
| Title | n/a | n/a |
| Version | n/a | n/a |
| Homepage | n/a | n/a |
Active alerts
- Validation evidence is stale (medium)
Latest validation is 602.7 hours old. - Write-action surface expanded (high)
The number of high-risk write, delete, exec, or bulk-access tools increased on the latest run.
Aliases & registry graph
| Identifier | Source | Canonical | Score |
|---|---|---|---|
app.flaim/mcp |
official_registry | yes | 77.65 |
github-jdguggs10/flaim |
github_topic_registry | no | 44.6 |
Alias consolidation
Canonical identifier
app.flaim/mcp
Duplicate aliases
1
Registry sources
github_topic_registry official_registry
Remote URLs
Homepages
Source disagreements
| Field | What differs | Observed values |
|---|---|---|
| Registry source | Multiple registries or registry sync paths claim this same canonical server. | github_topic_registry official_registry |
| Homepage | Registry entries disagree on the primary homepage for this server. | https://flaim.app https://flaim.app/ |
| Registry identifier | Different registry-specific identifiers resolve to the same canonical server record here. | app.flaim/mcp github_topic_registry:jdguggs10/flaim |
Install snippets
Openai Connectors
Connector URL: https://api.flaim.app/mcp # Complete OAuth in the client when prompted. # Server: app.flaim/mcp
Claude Desktop
{
"mcpServers": {
"mcp": {
"command": "npx",
"args": ["mcp-remote", "https://api.flaim.app/mcp"]
}
}
}
Smithery
smithery mcp add "https://api.flaim.app/mcp"
Generic Http
curl -sS https://api.flaim.app/mcp -H 'content-type: application/json' -d '{"jsonrpc":"2.0","id":1,"method":"initialize","params":{"protocolVersion":"2025-03-26","capabilities":{},"clientInfo":{"name":"mcp-verify","version":"0.1.0"}}}'
Agent access & tool surface
Live server tools
get_user_session get_ancient_history get_league_info get_standings get_matchups get_roster get_free_agents get_players
Observed from the latest live validation against https://api.flaim.app/mcp. This is the target server surface, not Verify's own inspection tools.
Live capability counts
9 tools • 0 prompts • 0 resources
Counts come from the latest
tools/list, prompts/list, and resources/list checks.Inspect with Verify
search_servers recommend_servers get_server_report compare_servers
Use Verify itself to search, recommend, compare, and fetch the full report for
app.flaim/mcp.Direct machine links
Claims & monitoring
Server ownership
No verified maintainer claim recorded.
Watch subscriptions
0
Teams: none
Alert routing
Active watches
0
Generic webhooks
0
Slack routes
0
Teams routes
0
Email routes
0
| Watch | Team | Channels | Minimum severity |
|---|---|---|---|
| No active watch destinations. | |||
Maintainer analytics
Validation Run Count
20
Average Latency Ms
10622.04
Healthy Run Ratio Recent
1.0
Registry Presence Count
2
Active Alert Count
2
Watcher Count
0
Verified Claim
False
Taxonomy Tags
development, search, communication, productivity
Score Trend
77.65, 77.65, 77.65, 77.14, 77.14, 77.14, 77.14, 77.14, 77.14, 77.14
Remediation Count
14
High Risk Tool Count
3
Destructive Tool Count
1
Exec Tool Count
1
Maintainer response quality
Score
16.67
Verified claim
Support contact
Changelog present
Incident notes present
Tool changes documented
Annotation history
Annotation count
0
Maintainer annotations
No maintainer annotations have been recorded yet.
Maintainer rebuttals & expected behavior
No maintainer rebuttals or expected-behavior overrides are recorded yet.
Latest validation evidence
Latest summary
Healthy
Validation profile
remote_mcp
Started
Apr 09, 2026 12:26:59 AM UTC
Latency
10928.6 ms
Failures
openid_configurationClient error '404 Not Found' for url 'https://api.flaim.app/.well-known/openid-configuration' For more information check: https://developer.mozilla.org/en-US/docs/Web/HTTP/Status/404probe_noise_resilienceThe read operation timed outserver_cardClient error '404 Not Found' for url 'https://api.flaim.app/.well-known/mcp/server-card.json' For more information check: https://developer.mozilla.org/en-US/docs/Web/HTTP/Status/404
Checks
| Check | Status | Latency | Evidence |
|---|---|---|---|
action_safety_probe |
Warning | n/a | 3 high-risk, 1 destructive, 1 exec-capable tool(s); auth present; safeguards=9; confirmation=none. |
advanced_capabilities_probe |
Warning | n/a | Only 2 capability signal(s): prompts, resources. |
connector_publishability_probe |
Warning | n/a | Publishability blockers: server card. |
connector_replay_probe |
OK | n/a | Backward compatible with no breaking tool-surface changes. |
determinism_probe |
OK | 48.5 ms | Check completed |
initialize |
OK | 163.2 ms | Protocol 2025-03-26 |
interactive_flow_probe |
OK | n/a | Check completed |
oauth_authorization_server |
OK | 10.8 ms | authorization_endpoint, code_challenge_methods_supported, grant_types_supported, issuer |
oauth_protected_resource |
OK | 37.0 ms | 1 authorization server(s) |
official_registry_probe |
OK | n/a | Check completed |
openid_configuration |
Error | 10.0 ms | Client error '404 Not Found' for url 'https://api.flaim.app/.well-known/openid-configuration' For more information check: https://developer.mozilla.org/en-US/docs/Web/HTTP/Status/404 |
probe_noise_resilience |
Error | 10014.7 ms | The read operation timed out |
prompt_get |
Missing | n/a | not advertised |
prompts_list |
Auth Required | 27.5 ms | Client error '401 Unauthorized' for url 'https://api.flaim.app/mcp' For more information check: https://developer.mozilla.org/en-US/docs/Web/HTTP/Status/401 |
protocol_version_probe |
Warning | n/a | Claims 2025-03-26; 2 release(s) behind 2025-11-25. |
provenance_divergence_probe |
OK | n/a | Check completed |
request_association_probe |
Missing | n/a | No request-association capabilities were advertised. |
resource_read |
Missing | n/a | not advertised |
resources_list |
Auth Required | 30.3 ms | Client error '401 Unauthorized' for url 'https://api.flaim.app/mcp' For more information check: https://developer.mozilla.org/en-US/docs/Web/HTTP/Status/401 |
server_card |
Error | 262.7 ms | Client error '404 Not Found' for url 'https://api.flaim.app/.well-known/mcp/server-card.json' For more information check: https://developer.mozilla.org/en-US/docs/Web/HTTP/Status/404 |
session_resume_probe |
Warning | n/a | no session id |
step_up_auth_probe |
OK | n/a | Scopes=mcp:read; step-up challenge hints present. |
tool_snapshot_probe |
OK | n/a | Check completed |
tools_list |
OK | 171.3 ms | 9 tool(s) exposed |
transport_compliance_probe |
Warning | 45.6 ms | Issues: missing session id, missing protocol header (bad protocol=400). |
utility_coverage_probe |
OK | 19.1 ms | No completions evidence; no pagination evidence; tasks auth required. |
Raw evidence view
Show raw JSON evidence
{
"checks": {
"action_safety_probe": {
"details": {
"auth_present": true,
"confirmation_signals": [],
"safeguard_count": 9,
"summary": {
"bulk_access_tools": 1,
"capability_distribution": {
"admin": 9,
"delete": 1,
"exec": 1,
"export": 1,
"read": 9,
"secrets": 9,
"write": 4
},
"destructive_tools": 1,
"egress_tools": 0,
"exec_tools": 1,
"high_risk_tools": 3,
"risk_distribution": {
"critical": 0,
"high": 3,
"low": 0,
"medium": 6
},
"secret_tools": 9,
"tool_count": 9
}
},
"latency_ms": null,
"status": "warning"
},
"advanced_capabilities_probe": {
"details": {
"capabilities": {
"completions": false,
"elicitation": false,
"prompts": true,
"resource_links": false,
"resources": true,
"roots": false,
"sampling": false,
"structured_outputs": false
},
"enabled": [
"prompts",
"resources"
],
"enabled_count": 2,
"initialize_capability_keys": [
"resources",
"tools"
]
},
"latency_ms": null,
"status": "warning"
},
"connector_publishability_probe": {
"details": {
"blockers": [
"server_card"
],
"criteria": {
"action_safety": true,
"auth_flow": true,
"connector_replay": true,
"initialize": true,
"protocol_version": true,
"remote_transport": true,
"request_association": true,
"server_card": false,
"session_resume": true,
"step_up_auth": true,
"tool_surface": true,
"tools_list": true,
"transport_compliance": true
},
"high_risk_tools": 3,
"tool_count": 9,
"transport": "streamable-http"
},
"latency_ms": null,
"status": "warning"
},
"connector_replay_probe": {
"details": {
"added_tools": [],
"additive_output_changes": [],
"backward_compatible": true,
"output_breaks": [],
"removed_tools": [],
"required_arg_breaks": [],
"would_break_after_refresh": false
},
"latency_ms": null,
"status": "ok"
},
"determinism_probe": {
"details": {
"attempts": 2,
"baseline_signature": "f2e03250dec669594bce973abe83db56a4cead6282aa4a32d0a8a8eafc476083",
"errors": [],
"matches": 2,
"stable_ratio": 1.0,
"successful": 2
},
"latency_ms": 48.52,
"status": "ok"
},
"initialize": {
"details": {
"headers": {
"content-type": "text/event-stream"
},
"http_status": 200,
"payload": {
"id": 1,
"jsonrpc": "2.0",
"result": {
"capabilities": {
"resources": {
"listChanged": true
},
"tools": {
"listChanged": true
}
},
"protocolVersion": "2025-03-26",
"serverInfo": {
"icons": [
{
"mimeType": "image/png",
"src": "https://flaim.app/icon-light.png"
}
],
"name": "fantasy-mcp",
"version": "1.0.0"
}
}
},
"url": "https://api.flaim.app/mcp"
},
"latency_ms": 163.22,
"status": "ok"
},
"interactive_flow_probe": {
"details": {
"oauth_supported": true,
"prompt_available": false,
"risk_hits": [],
"safe_hits": []
},
"latency_ms": null,
"status": "ok"
},
"oauth_authorization_server": {
"details": {
"headers": {
"content-type": "application/json"
},
"http_status": 200,
"payload": {
"authorization_endpoint": "https://api.flaim.app/auth/authorize",
"code_challenge_methods_supported": [
"S256"
],
"grant_types_supported": [
"authorization_code",
"refresh_token"
],
"issuer": "https://api.flaim.app",
"registration_endpoint": "https://api.flaim.app/auth/register",
"response_types_supported": [
"code"
],
"revocation_endpoint": "https://api.flaim.app/auth/revoke",
"scopes_supported": [
"mcp:read"
],
"service_documentation": "https://flaim.app/docs/oauth",
"token_endpoint": "https://api.flaim.app/auth/token",
"token_endpoint_auth_methods_supported": [
"none",
"client_secret_post"
]
},
"url": "https://api.flaim.app/.well-known/oauth-authorization-server"
},
"latency_ms": 10.81,
"status": "ok"
},
"oauth_protected_resource": {
"details": {
"headers": {
"content-type": "application/json"
},
"http_status": 200,
"payload": {
"authorization_servers": [
"https://api.flaim.app"
],
"bearer_methods_supported": [
"header"
],
"resource": "https://api.flaim.app/mcp",
"scopes_supported": [
"mcp:read"
]
},
"url": "https://api.flaim.app/.well-known/oauth-protected-resource"
},
"latency_ms": 36.99,
"status": "ok"
},
"official_registry_probe": {
"details": {
"direct_match": true,
"official_peer_count": 1,
"registry_identifier": "app.flaim/mcp",
"registry_source": "official_registry"
},
"latency_ms": null,
"status": "ok"
},
"openid_configuration": {
"details": {
"error": "Client error '404 Not Found' for url 'https://api.flaim.app/.well-known/openid-configuration'\nFor more information check: https://developer.mozilla.org/en-US/docs/Web/HTTP/Status/404",
"url": "https://api.flaim.app/.well-known/openid-configuration"
},
"latency_ms": 9.97,
"status": "error"
},
"probe_noise_resilience": {
"details": {
"error": "The read operation timed out",
"url": "https://api.flaim.app/robots.txt"
},
"latency_ms": 10014.73,
"status": "error"
},
"prompt_get": {
"details": {
"reason": "not_advertised"
},
"latency_ms": null,
"status": "missing"
},
"prompts_list": {
"details": {
"error": "Client error '401 Unauthorized' for url 'https://api.flaim.app/mcp'\nFor more information check: https://developer.mozilla.org/en-US/docs/Web/HTTP/Status/401",
"headers": {
"content-type": "application/json",
"www-authenticate": "Bearer realm=\"fantasy-mcp\", resource=\"https://api.flaim.app/mcp\", resource_metadata=\"https://api.flaim.app/.well-known/oauth-protected-resource\""
},
"http_status": 401,
"payload": {},
"reason": "auth_required",
"url": "https://api.flaim.app/mcp"
},
"latency_ms": 27.5,
"status": "auth_required"
},
"protocol_version_probe": {
"details": {
"claimed_version": "2025-03-26",
"lag_days": 244,
"latest_known_version": "2025-11-25",
"releases_behind": 2,
"validator_protocol_version": "2025-03-26"
},
"latency_ms": null,
"status": "warning"
},
"provenance_divergence_probe": {
"details": {
"direct_official_match": true,
"drift_fields": [],
"metadata_document_count": 2,
"registry_homepage": null,
"registry_repository": null,
"registry_title": null,
"registry_version": null,
"server_card_homepage": null,
"server_card_repository": null,
"server_card_title": null,
"server_card_version": null
},
"latency_ms": null,
"status": "ok"
},
"request_association_probe": {
"details": {
"reason": "no_request_association_capabilities_advertised"
},
"latency_ms": null,
"status": "missing"
},
"resource_read": {
"details": {
"reason": "not_advertised"
},
"latency_ms": null,
"status": "missing"
},
"resources_list": {
"details": {
"error": "Client error '401 Unauthorized' for url 'https://api.flaim.app/mcp'\nFor more information check: https://developer.mozilla.org/en-US/docs/Web/HTTP/Status/401",
"headers": {
"content-type": "application/json",
"www-authenticate": "Bearer realm=\"fantasy-mcp\", resource=\"https://api.flaim.app/mcp\", resource_metadata=\"https://api.flaim.app/.well-known/oauth-protected-resource\""
},
"http_status": 401,
"payload": {},
"reason": "auth_required",
"url": "https://api.flaim.app/mcp"
},
"latency_ms": 30.26,
"status": "auth_required"
},
"server_card": {
"details": {
"error": "Client error '404 Not Found' for url 'https://api.flaim.app/.well-known/mcp/server-card.json'\nFor more information check: https://developer.mozilla.org/en-US/docs/Web/HTTP/Status/404",
"url": "https://api.flaim.app/.well-known/mcp/server-card.json"
},
"latency_ms": 262.67,
"status": "error"
},
"session_resume_probe": {
"details": {
"protocol_version": "2025-03-26",
"reason": "no_session_id",
"resume_expected": true,
"transport": "streamable-http"
},
"latency_ms": null,
"status": "warning"
},
"step_up_auth_probe": {
"details": {
"auth_required_checks": [
"prompts_list",
"resources_list"
],
"broad_scopes": [],
"challenge_headers": [
"Bearer realm=\"fantasy-mcp\", resource=\"https://api.flaim.app/mcp\", resource_metadata=\"https://api.flaim.app/.well-known/oauth-protected-resource\"",
"Bearer realm=\"fantasy-mcp\", resource=\"https://api.flaim.app/mcp\", resource_metadata=\"https://api.flaim.app/.well-known/oauth-protected-resource\""
],
"minimal_scope_documented": true,
"oauth_present": true,
"scope_specificity_ratio": 1.0,
"step_up_signals": [
"Bearer realm=\"fantasy-mcp\", resource=\"https://api.flaim.app/mcp\", resource_metadata=\"https://api.flaim.app/.well-known/oauth-protected-resource\"",
"Bearer realm=\"fantasy-mcp\", resource=\"https://api.flaim.app/mcp\", resource_metadata=\"https://api.flaim.app/.well-known/oauth-protected-resource\""
],
"supported_scopes": [
"mcp:read"
]
},
"latency_ms": null,
"status": "ok"
},
"tool_snapshot_probe": {
"details": {
"added": [],
"changed_outputs": [],
"current_tool_count": 9,
"previous_tool_count": 9,
"removed": [],
"similarity": 1.0
},
"latency_ms": null,
"status": "ok"
},
"tools_list": {
"details": {
"headers": {
"content-type": "text/event-stream"
},
"http_status": 200,
"payload": {
"id": 2,
"jsonrpc": "2.0",
"result": {
"tools": [
{
"_meta": {
"openai/outputTemplate": "ui://widget/user-session.html",
"openai/resultCanProduceWidget": true,
"openai/toolInvocation/invoked": "Leagues loaded",
"openai/toolInvocation/invoking": "Loading your leagues\u2026",
"openai/widgetAccessible": true,
"securitySchemes": [
{
"scopes": [
"mcp:read"
],
"type": "oauth2"
}
]
},
"annotations": {
"destructiveHint": false,
"idempotentHint": true,
"openWorldHint": true,
"readOnlyHint": true
},
"description": "Call this exactly once at the start of each chat before any other Flaim tool. It establishes the chat's working league context by discovering the user's available leagues and defaults, and returns the platform, sport, leagueId, teamId, and seasonYear values needed for subsequent tool calls. In normal chat flows, do not skip this first step. After this, strongly consider calling get_league_info as the second call for the selected league. season_year always represents the start year of the season. Read-only and safe to retry.",
"execution": {
"taskSupport": "forbidden"
},
"inputSchema": {
"$schema": "http://json-schema.org/draft-07/schema#",
"properties": {},
"type": "object"
},
"name": "get_user_session",
"title": "User Session"
},
{
"_meta": {
"openai/toolInvocation/invoked": "History loaded",
"openai/toolInvocation/invoking": "Searching old seasons\u2026",
"securitySchemes": [
{
"scopes": [
"mcp:read"
],
"type": "oauth2"
}
]
},
"annotations": {
"destructiveHint": false,
"idempotentHint": true,
"openWorldHint": true,
"readOnlyHint": true
},
"description": "Use this only after get_user_session, and only when the user is clearly asking about a non-current season or an inactive league. This is the historical branch: it returns past seasons and historical leagues outside the current season view. Use for last season, older seasons, inactive leagues, or historical performance. Read-only and safe to retry.",
"execution": {
"taskSupport": "forbidden"
},
"inputSchema": {
"$schema": "http://json-schema.org/draft-07/schema#",
"additionalProperties": false,
"properties": {
"platform": {
"description": "Optional: filter to specific platform",
"enum": [
"espn",
"yahoo",
"sleeper"
],
"type": "string"
}
},
"type": "object"
},
"name": "get_ancient_history",
"title": "Ancient History"
},
{
"_meta": {
"openai/toolInvocation/invoked": "League info ready",
"openai/toolInvocation/invoking": "Fetching league info\u2026",
"securitySchemes": [
{
"scopes": [
"mcp:read"
],
"type": "oauth2"
}
]
},
"annotations": {
"destructiveHint": false,
"idempotentHint": true,
"openWorldHint": true,
"readOnlyHint": true
},
"description": "Strongly encouraged as the second call after get_user_session for the selected league. This provides the baseline league context for analysis: league name, settings, scoring type, roster configuration, and team/owner context, plus schedule or season-window metadata when the platform provides it. Use it liberally before standings, matchups, roster, free-agent, player, or transaction analysis so team names are resolved and the model has league-type, scoring, and roster context. The exact team fields vary by platform but all include ownerName. Use values from get_user_session. Read-only and safe to retry. Current date is 2026-04-09.",
"execution": {
"taskSupport": "forbidden"
},
"inputSchema": {
"$schema": "http://json-schema.org/draft-07/schema#",
"additionalProperties": false,
"properties": {
"league_id": {
"description": "League ID (get from get_user_session)",
"type": "string"
},
"platform": {
"description": "Fantasy platform (e.g., \"espn\", \"yahoo\", \"sleeper\")",
"enum": [
"espn",
"yahoo",
"sleeper"
],
"type": "string"
},
"season_year": {
"description": "Season start year (e.g., 2025 for MLB 2025, 2024 for NBA 2024-25)",
"type": "number"
},
"sport": {
"description": "Sport type (e.g., \"football\", \"baseball\")",
"enum": [
"football",
"baseball",
"basketball",
"hockey"
],
"type": "string"
}
},
"required": [
"platform",
"sport",
"league_id",
"season_year"
],
"type": "object"
},
"name": "get_league_info",
"title": "League Context"
},
{
"_meta": {
"openai/toolInvocation/invoked": "Standings ready",
"openai/toolInvocation/invoking": "Fetching standings\u2026",
"securitySchemes": [
{
"scopes": [
"mcp:read"
],
"type": "oauth2"
}
]
},
"annotations": {
"destructiveHint": false,
"idempotentHint": true,
"openWorldHint": true,
"readOnlyHint": true
},
"description": "Get season standings and outcome snapshot; includes verified season-outcome fields when available. Returns team records, rankings, and points summaries. The rank field is a standings sort position (1 = best): on ESPN and Sleeper it is computed by Flaim from win percentage; on Yahoo it is passed through from Yahoo's own standings API. It is NOT a verified postseason finish. For verified postseason outcome, use finalRank and championshipWon instead. Also returns seasonPhase (regular_season/playoffs_in_progress/season_complete), seasonComplete, and per-team outcome fields: finalRank, championshipWon, playoffOutcome, outcomeConfidence, madePlayoffs, playoffSeed. Outcome fields are null when not verifiable \u2014 do not infer championship from rank or team name. Note: playoffOutcome returns 'in_progress' on Sleeper for teams in active playoffs; ESPN and Yahoo return null for that state. ESPN may also include projected-rank fields. Best used after get_user_session and, in most league-specific chats, after get_league_info so team names and league context are already established. For historical finish questions, call get_ancient_history first to discover seasons, then call this tool per season for verified outcomes. Read-only and safe to retry. Current date is 2026-04-09.",
"execution": {
"taskSupport": "forbidden"
},
"inputSchema": {
"$schema": "http://json-schema.org/draft-07/schema#",
"additionalProperties": false,
"properties": {
"league_id": {
"description": "League ID (get from get_user_session)",
"type": "string"
},
"platform": {
"description": "Fantasy platform (e.g., \"espn\", \"yahoo\", \"sleeper\")",
"enum": [
"espn",
"yahoo",
"sleeper"
],
"type": "string"
},
"season_year": {
"description": "Season start year (e.g., 2025 for MLB 2025, 2024 for NBA 2024-25)",
"type": "number"
},
"sport": {
"description": "Sport type (e.g., \"football\", \"baseball\")",
"enum": [
"football",
"baseball",
"basketball",
"hockey"
],
"type": "string"
}
},
"required": [
"platform",
"sport",
"league_id",
"season_year"
],
"type": "object"
},
"name": "get_standings",
"title": "League Standings"
},
{
"_meta": {
"openai/toolInvocation/invoked": "Matchups ready",
"openai/toolInvocation/invoking": "Fetching matchups\u2026",
"securitySchemes": [
{
"scopes": [
"mcp:read"
],
"type": "oauth2"
}
]
},
"annotations": {
"destructiveHint": false,
"idempotentHint": true,
"openWorldHint": true,
"readOnlyHint": true
},
"description": "Get matchups/scoreboard for a specific week or the current week. Best used after get_user_session and, in most league-specific chats, after get_league_info so the model already knows the league's team names, owner/team mapping, and league context before interpreting the matchup. Read-only and safe to retry. Current date is 2026-04-09.",
"execution": {
"taskSupport": "forbidden"
},
"inputSchema": {
"$schema": "http://json-schema.org/draft-07/schema#",
"additionalProperties": false,
"properties": {
"league_id": {
"description": "League ID (get from get_user_session)",
"type": "string"
},
"platform": {
"description": "Fantasy platform (e.g., \"espn\", \"yahoo\", \"sleeper\")",
"enum": [
"espn",
"yahoo",
"sleeper"
],
"type": "string"
},
"season_year": {
"description": "Season start year (e.g., 2025 for MLB 2025, 2024 for NBA 2024-25)",
"type": "number"
},
"sport": {
"description": "Sport type (e.g., \"football\", \"baseball\")",
"enum": [
"football",
"baseball",
"basketball",
"hockey"
],
"type": "string"
},
"week": {
"description": "Week number (optional, must be \u2265 1, defaults to current week)",
"minimum": 1,
"type": "integer"
}
},
"required": [
"platform",
"sport",
"league_id",
"season_year"
],
"type": "object"
},
"name": "get_matchups",
"title": "League Matchups"
},
{
"_meta": {
"openai/toolInvocation/invoked": "Roster ready",
"openai/toolInvocation/invoking": "Fetching roster\u2026",
"securitySchemes": [
{
"scopes": [
"mcp:read"
],
"type": "oauth2"
}
]
},
"annotations": {
"destructiveHint": false,
"idempotentHint": true,
"openWorldHint": true,
"readOnlyHint": true
},
"description": "Get roster details for a specific team. Exact payload varies by platform: ESPN and Yahoo return player entries with lineup/position context, while Sleeper returns starters, bench, reserve, and record metadata for the selected roster. Best used after get_user_session and, in most league-specific chats, after get_league_info so the model already knows the league's team names, owner/team mapping, league settings, and roster context before interpreting this roster. Requires authentication except on Sleeper's public API. Read-only and safe to retry. Current date is 2026-04-09.",
"execution": {
"taskSupport": "forbidden"
},
"inputSchema": {
"$schema": "http://json-schema.org/draft-07/schema#",
"additionalProperties": false,
"properties": {
"league_id": {
"description": "League ID (get from get_user_session)",
"type": "string"
},
"platform": {
"description": "Fantasy platform (e.g., \"espn\", \"yahoo\", \"sleeper\")",
"enum": [
"espn",
"yahoo",
"sleeper"
],
"type": "string"
},
"season_year": {
"description": "Season start year (e.g., 2025 for MLB 2025, 2024 for NBA 2024-25)",
"type": "number"
},
"sport": {
"description": "Sport type (e.g., \"football\", \"baseball\")",
"enum": [
"football",
"baseball",
"basketball",
"hockey"
],
"type": "string"
},
"team_id": {
"description": "Team ID for the target roster. Recommended for all platforms; required on Yahoo. If omitted, platform behavior varies and may not resolve to the user's team.",
"type": "string"
},
"week": {
"description": "Week number (optional, must be \u2265 1, defaults to current week)",
"minimum": 1,
"type": "integer"
}
},
"required": [
"platform",
"sport",
"league_id",
"season_year"
],
"type": "object"
},
"name": "get_roster",
"title": "Team Roster"
},
{
"_meta": {
"openai/toolInvocation/invoked": "Free agents ready",
"openai/toolInvocation/invoking": "Searching free agents\u2026",
"securitySchemes": [
{
"scopes": [
"mcp:read"
],
"type": "oauth2"
}
]
},
"annotations": {
"destructiveHint": false,
"idempotentHint": true,
"openWorldHint": true,
"readOnlyHint": true
},
"description": "Get currently available players for the selected league, optionally filtered by position. Exact payload varies by platform: ESPN and Yahoo include ownership percentages and sort by ownership, while Sleeper returns available-player identities from the public player index without ownership percentages. Best used after get_user_session and usually after get_league_info so team names, owner/team mapping, scoring context, and roster-slot context are already established before giving pickup advice. Use this for player availability only. Do not use percentOwned or market ownership to infer who owns a player in the user's league; for ownership questions, use get_league_info (returns teams with ownerName) and get_roster. Requires authentication on ESPN and Yahoo; Sleeper uses the public API. Use values from get_user_session. Read-only and safe to retry. Current date is 2026-04-09.",
"execution": {
"taskSupport": "forbidden"
},
"inputSchema": {
"$schema": "http://json-schema.org/draft-07/schema#",
"additionalProperties": false,
"properties": {
"count": {
"description": "Maximum number of players to return (default: 25, max: 100)",
"type": "number"
},
"league_id": {
"description": "League ID (get from get_user_session)",
"type": "string"
},
"platform": {
"description": "Fantasy platform \u2014 \"espn\", \"yahoo\", or \"sleeper\"",
"enum": [
"espn",
"yahoo",
"sleeper"
],
"type": "string"
},
"position": {
"description": "Filter by position (e.g., \"QB\", \"RB\", \"SP\", \"C\"). Default: ALL",
"type": "string"
},
"season_year": {
"description": "Season start year (e.g., 2025 for MLB 2025, 2024 for NBA 2024-25)",
"type": "number"
},
"sport": {
"description": "Sport type (e.g., \"football\", \"baseball\")",
"enum": [
"football",
"baseball",
"basketball",
"hockey"
],
"type": "string"
}
},
"required": [
"platform",
"sport",
"league_id",
"season_year"
],
"type": "object"
},
"name": "get_free_agents",
"title": "Free Agents"
},
{
"_meta": {
"openai/toolInvocation/invoked": "Players ready",
"openai/toolInvocation/invoking": "Searching players\u2026",
"securitySchemes": [
{
"scopes": [
"mcp:read"
],
"type": "oauth2"
}
]
},
"annotations": {
"destructiveHint": false,
"idempotentHint": true,
"openWorldHint": true,
"readOnlyHint": true
},
"description": "Search for player identity by name. Always returns identity fields, but ownership context varies by platform. ESPN and Yahoo return market/global ownership and can also populate league ownership fields when credentials and league context are available. Sleeper returns identity plus ownership_scope=\"unavailable\" with market_percent_owned=null. Best used after get_user_session and often after get_league_info when the user cares about league-specific ownership or team-name resolution. League ownership fields: league_status (\"ROSTERED\" = on a team, \"FREE_AGENT\" = available, null = unavailable), league_team_name (fantasy team name if rostered), league_owner_name (team owner if rostered). When those league fields are absent, null, or unavailable, fall back to get_league_info + get_roster to verify manually. Use values from get_user_session. Read-only and safe to retry. Current date is 2026-04-09.",
"execution": {
"taskSupport": "forbidden"
},
"inputSchema": {
"$schema": "http://json-schema.org/draft-07/schema#",
"additionalProperties": false,
"properties": {
"count": {
"description": "Maximum number of players to return (default: 10, max: 25)",
"type": "number"
},
"league_id": {
"description": "League ID (get from get_user_session)",
"type": "string"
},
"platform": {
"description": "Fantasy platform (e.g., \"espn\", \"yahoo\", \"sleeper\")",
"enum": [
"espn",
"yahoo",
"sleeper"
],
"type": "string"
},
"position": {
"description": "Filter by position (e.g., \"QB\", \"RB\", \"SP\", \"C\"). Default: ALL",
"type": "string"
},
"query": {
"description": "Player name search string (minimum 2 characters)",
"minLength": 2,
"type": "string"
},
"season_year": {
"description": "Season start year (e.g., 2025 for MLB 2025, 2024 for NBA 2024-25)",
"type": "number"
},
"sport": {
"description": "Sport type (e.g., \"football\", \"baseball\")",
"enum": [
"football",
"baseball",
"basketball",
"hockey"
],
"type": "string"
}
},
"required": [
"query",
"platform",
"sport",
"league_id",
"season_year"
],
"type": "object"
},
"name": "get_players",
"title": "Search Players"
},
{
"_meta": {
"openai/toolInvocation/invoked": "Transactions ready",
"openai/toolInvocation/invoking": "Fetching transactions\u2026",
"securitySchemes": [
{
"scopes": [
"mcp:read"
],
"type": "oauth2"
}
]
},
"annotations": {
"destructiveHint": false,
"idempotentHint": true,
"openWorldHint": true,
"readOnlyHint": true
},
"description": "Get recent league transactions including adds, drops, waivers, and trades. Best used after get_user_session and usually after get_league_info so the model already knows the league's team names and owner/team mapping before summarizing activity. Each normalized transaction includes a date field (YYYY-MM-DD), type, status, week, and optional team_ids. When presenting results, organize by time period (today, yesterday, this week, older) AND by team within each period so the user can see both when moves happened and what each team did. Week handling is platform-specific: ESPN/Sleeper use week windows (default current + previous week), while Yahoo uses a recent 14-day timestamp window and ignores explicit week. Type support is also platform-specific: Sleeper supports add/drop/trade/waiver; Yahoo supports add/drop/trade plus pending waiver/pending_trade views for the authenticated user's own items; ESPN also supports failed_bid and trade lifecycle types (trade_proposal, trade_decline, trade_veto, trade_uphold). ESPN uses mTransactions2 for structured transaction data, and accepted trade player details are supplemented from the activity feed. ESPN responses include a \"teams\" map (team ID \u2192 display name) to resolve the numeric team_ids on each transaction, while Yahoo and Sleeper generally rely on get_league_info for team-name resolution. Use values from get_user_session. Read-only and safe to retry. Current date is 2026-04-09.",
"execution": {
"taskSupport": "forbidden"
},
"inputSchema": {
"$schema": "http://json-schema.org/draft-07/schema#",
"additionalProperties": false,
"properties": {
"count": {
"description": "Maximum transactions to return (default: 25, max: 100)",
"type": "number"
},
"league_id": {
"description": "League ID (get from get_user_session)",
"type": "string"
},
"platform": {
"description": "Fantasy platform (e.g., \"espn\", \"yahoo\", \"sleeper\")",
"enum": [
"espn",
"yahoo",
"sleeper"
],
"type": "string"
},
"season_year": {
"description": "Season start year (e.g., 2025 for MLB 2025, 2024 for NBA 2024-25)",
"type": "number"
},
"sport": {
"description": "Sport type (e.g., \"football\", \"baseball\")",
"enum": [
"football",
"baseball",
"basketball",
"hockey"
],
"type": "string"
},
"type": {
"description": "Optional transaction type filter. Platform support varies: Sleeper supports add/drop/trade/waiver; Yahoo supports add/drop/trade plus waiver/pending_trade for the authenticated user's own pending items; ESPN also supports trade_proposal/trade_decline/trade_veto/trade_uphold/failed_bid.",
"enum": [
"add",
"drop",
"trade",
"waiver",
"pending_trade",
"trade_proposal",
"trade_decline",
"trade_veto",
"trade_uphold",
"failed_bid"
],
"type": "string"
},
"week": {
"description": "Week/scoring-period number (optional, 0 = preseason). ESPN/Sleeper support explicit week; Yahoo ignores week and uses a recent 14-day timestamp window",
"minimum": 0,
"type": "integer"
}
},
"required": [
"platform",
"sport",
"league_id",
"season_year"
],
"type": "object"
},
"name": "get_transactions",
"title": "League Transactions"
}
]
}
},
"url": "https://api.flaim.app/mcp"
},
"latency_ms": 171.28,
"status": "ok"
},
"transport_compliance_probe": {
"details": {
"bad_protocol_error": null,
"bad_protocol_headers": {
"content-type": "application/json"
},
"bad_protocol_payload": {
"error": {
"code": -32000,
"message": "Bad Request: Unsupported protocol version: 1999-99-99 (supported versions: 2025-11-25, 2025-06-18, 2025-03-26, 2024-11-05, 2024-10-07)"
},
"id": null,
"jsonrpc": "2.0"
},
"bad_protocol_status_code": 400,
"delete_error": null,
"delete_status_code": null,
"expired_session_error": null,
"expired_session_status_code": null,
"issues": [
"missing_session_id",
"missing_protocol_header"
],
"last_event_id_visible": false,
"protocol_header_present": false,
"requested_protocol_version": "2025-03-26",
"session_id_present": false,
"transport": "streamable-http"
},
"latency_ms": 45.59,
"status": "warning"
},
"utility_coverage_probe": {
"details": {
"completions": {
"advertised": false,
"live_probe": "not_executed",
"sample_target": null
},
"initialize_capability_keys": [
"resources",
"tools"
],
"pagination": {
"metadata_signal": false,
"next_cursor_methods": [],
"supported": false
},
"tasks": {
"advertised": false,
"http_status": 401,
"probe_status": "auth_required"
}
},
"latency_ms": 19.12,
"status": "ok"
}
},
"failures": {
"openid_configuration": {
"error": "Client error '404 Not Found' for url 'https://api.flaim.app/.well-known/openid-configuration'\nFor more information check: https://developer.mozilla.org/en-US/docs/Web/HTTP/Status/404",
"url": "https://api.flaim.app/.well-known/openid-configuration"
},
"probe_noise_resilience": {
"error": "The read operation timed out",
"url": "https://api.flaim.app/robots.txt"
},
"server_card": {
"error": "Client error '404 Not Found' for url 'https://api.flaim.app/.well-known/mcp/server-card.json'\nFor more information check: https://developer.mozilla.org/en-US/docs/Web/HTTP/Status/404",
"url": "https://api.flaim.app/.well-known/mcp/server-card.json"
}
},
"remote_url": "https://api.flaim.app/mcp",
"server_card_payload": null,
"server_identifier": "app.flaim/mcp"
}
Known versions
1.0.1
Validation history
7 day score delta
+0.0
30 day score delta
+0.5
Recent healthy ratio
100%
Freshness
602.7h
| Timestamp | Status | Score | Latency | Tools |
|---|---|---|---|---|
| Apr 09, 2026 12:27:10 AM UTC | Healthy | 77.7 | 10928.6 ms | 9 |
| Apr 08, 2026 12:26:21 AM UTC | Healthy | 77.7 | 11274.6 ms | 9 |
| Apr 07, 2026 12:24:40 AM UTC | Healthy | 77.7 | 10658.0 ms | 9 |
| Apr 06, 2026 12:23:41 AM UTC | Healthy | 77.1 | 10560.2 ms | 9 |
| Apr 05, 2026 12:22:33 AM UTC | Healthy | 77.1 | 10431.5 ms | 9 |
| Apr 04, 2026 12:21:24 AM UTC | Healthy | 77.1 | 10506.1 ms | 9 |
| Apr 03, 2026 12:20:01 AM UTC | Healthy | 77.1 | 10553.4 ms | 9 |
| Apr 02, 2026 12:10:13 AM UTC | Healthy | 77.1 | 10519.5 ms | 9 |
Validation timeline
| Validated | Summary | Score | Protocol | Auth mode | Tools | High-risk tools | Changes |
|---|---|---|---|---|---|---|---|
| Apr 09, 2026 12:27:10 AM UTC | Healthy | 77.7 | 2025-03-26 | oauth_supported | 9 | 3 | write_surface_expanded |
| Apr 08, 2026 12:26:21 AM UTC | Healthy | 77.7 | 2025-03-26 | oauth_supported | 9 | 2 | none |
| Apr 07, 2026 12:24:40 AM UTC | Healthy | 77.7 | 2025-03-26 | oauth_supported | 9 | 2 | none |
| Apr 06, 2026 12:23:41 AM UTC | Healthy | 77.1 | 2025-03-26 | oauth_supported | 9 | 2 | none |
| Apr 05, 2026 12:22:33 AM UTC | Healthy | 77.1 | 2025-03-26 | oauth_supported | 9 | 2 | none |
| Apr 04, 2026 12:21:24 AM UTC | Healthy | 77.1 | 2025-03-26 | oauth_supported | 9 | 2 | none |
| Apr 03, 2026 12:20:01 AM UTC | Healthy | 77.1 | 2025-03-26 | oauth_supported | 9 | 2 | none |
| Apr 02, 2026 12:10:13 AM UTC | Healthy | 77.1 | 2025-03-26 | oauth_supported | 9 | 2 | none |
| Mar 31, 2026 11:32:41 PM UTC | Healthy | 77.1 | 2025-03-26 | oauth_supported | 9 | 2 | none |
| Mar 30, 2026 11:25:00 PM UTC | Healthy | 77.1 | 2025-03-26 | oauth_supported | 9 | 2 | none |
| Mar 29, 2026 11:17:15 PM UTC | Healthy | 77.1 | 2025-03-26 | oauth_supported | 9 | 2 | none |
| Mar 28, 2026 09:07:52 PM UTC | Healthy | 77.1 | 2025-03-26 | oauth_supported | 9 | 2 | none |
Recent validation runs
| Started | Status | Summary | Latency | Checks |
|---|---|---|---|---|
| Apr 09, 2026 12:26:59 AM UTC | Completed | Healthy | 10928.6 ms | action_safety_probe, advanced_capabilities_probe, connector_publishability_probe, connector_replay_probe, determinism_probe, initialize, interactive_flow_probe, oauth_authorization_server, oauth_protected_resource, official_registry_probe, openid_configuration, probe_noise_resilience, prompt_get, prompts_list, protocol_version_probe, provenance_divergence_probe, request_association_probe, resource_read, resources_list, server_card, session_resume_probe, step_up_auth_probe, tool_snapshot_probe, tools_list, transport_compliance_probe, utility_coverage_probe |
| Apr 08, 2026 12:26:10 AM UTC | Completed | Healthy | 11274.6 ms | action_safety_probe, advanced_capabilities_probe, connector_publishability_probe, connector_replay_probe, determinism_probe, initialize, interactive_flow_probe, oauth_authorization_server, oauth_protected_resource, official_registry_probe, openid_configuration, probe_noise_resilience, prompt_get, prompts_list, protocol_version_probe, provenance_divergence_probe, request_association_probe, resource_read, resources_list, server_card, session_resume_probe, step_up_auth_probe, tool_snapshot_probe, tools_list, transport_compliance_probe, utility_coverage_probe |
| Apr 07, 2026 12:24:30 AM UTC | Completed | Healthy | 10658.0 ms | action_safety_probe, advanced_capabilities_probe, connector_publishability_probe, connector_replay_probe, determinism_probe, initialize, interactive_flow_probe, oauth_authorization_server, oauth_protected_resource, official_registry_probe, openid_configuration, probe_noise_resilience, prompt_get, prompts_list, protocol_version_probe, provenance_divergence_probe, request_association_probe, resource_read, resources_list, server_card, session_resume_probe, step_up_auth_probe, tool_snapshot_probe, tools_list, transport_compliance_probe, utility_coverage_probe |
| Apr 06, 2026 12:23:31 AM UTC | Completed | Healthy | 10560.2 ms | action_safety_probe, advanced_capabilities_probe, connector_publishability_probe, connector_replay_probe, determinism_probe, initialize, interactive_flow_probe, oauth_authorization_server, oauth_protected_resource, official_registry_probe, openid_configuration, probe_noise_resilience, prompt_get, prompts_list, protocol_version_probe, provenance_divergence_probe, request_association_probe, resource_read, resources_list, server_card, session_resume_probe, step_up_auth_probe, tool_snapshot_probe, tools_list, transport_compliance_probe, utility_coverage_probe |
| Apr 05, 2026 12:22:23 AM UTC | Completed | Healthy | 10431.5 ms | action_safety_probe, advanced_capabilities_probe, connector_publishability_probe, connector_replay_probe, determinism_probe, initialize, interactive_flow_probe, oauth_authorization_server, oauth_protected_resource, official_registry_probe, openid_configuration, probe_noise_resilience, prompt_get, prompts_list, protocol_version_probe, provenance_divergence_probe, request_association_probe, resource_read, resources_list, server_card, session_resume_probe, step_up_auth_probe, tool_snapshot_probe, tools_list, transport_compliance_probe, utility_coverage_probe |
| Apr 04, 2026 12:21:13 AM UTC | Completed | Healthy | 10506.1 ms | action_safety_probe, advanced_capabilities_probe, connector_publishability_probe, connector_replay_probe, determinism_probe, initialize, interactive_flow_probe, oauth_authorization_server, oauth_protected_resource, official_registry_probe, openid_configuration, probe_noise_resilience, prompt_get, prompts_list, protocol_version_probe, provenance_divergence_probe, request_association_probe, resource_read, resources_list, server_card, session_resume_probe, step_up_auth_probe, tool_snapshot_probe, tools_list, transport_compliance_probe, utility_coverage_probe |
| Apr 03, 2026 12:19:51 AM UTC | Completed | Healthy | 10553.4 ms | action_safety_probe, advanced_capabilities_probe, connector_publishability_probe, connector_replay_probe, determinism_probe, initialize, interactive_flow_probe, oauth_authorization_server, oauth_protected_resource, official_registry_probe, openid_configuration, probe_noise_resilience, prompt_get, prompts_list, protocol_version_probe, provenance_divergence_probe, request_association_probe, resource_read, resources_list, server_card, session_resume_probe, step_up_auth_probe, tool_snapshot_probe, tools_list, transport_compliance_probe, utility_coverage_probe |
| Apr 02, 2026 12:10:02 AM UTC | Completed | Healthy | 10519.5 ms | action_safety_probe, advanced_capabilities_probe, connector_publishability_probe, connector_replay_probe, determinism_probe, initialize, interactive_flow_probe, oauth_authorization_server, oauth_protected_resource, official_registry_probe, openid_configuration, probe_noise_resilience, prompt_get, prompts_list, protocol_version_probe, provenance_divergence_probe, request_association_probe, resource_read, resources_list, server_card, session_resume_probe, step_up_auth_probe, tool_snapshot_probe, tools_list, transport_compliance_probe, utility_coverage_probe |
| Mar 31, 2026 11:32:31 PM UTC | Completed | Healthy | 10454.9 ms | action_safety_probe, advanced_capabilities_probe, connector_publishability_probe, connector_replay_probe, determinism_probe, initialize, interactive_flow_probe, oauth_authorization_server, oauth_protected_resource, official_registry_probe, openid_configuration, probe_noise_resilience, prompt_get, prompts_list, protocol_version_probe, provenance_divergence_probe, request_association_probe, resource_read, resources_list, server_card, session_resume_probe, step_up_auth_probe, tool_snapshot_probe, tools_list, transport_compliance_probe, utility_coverage_probe |
| Mar 30, 2026 11:24:49 PM UTC | Completed | Healthy | 10709.7 ms | action_safety_probe, advanced_capabilities_probe, connector_publishability_probe, connector_replay_probe, determinism_probe, initialize, interactive_flow_probe, oauth_authorization_server, oauth_protected_resource, official_registry_probe, openid_configuration, probe_noise_resilience, prompt_get, prompts_list, protocol_version_probe, provenance_divergence_probe, request_association_probe, resource_read, resources_list, server_card, session_resume_probe, step_up_auth_probe, tool_snapshot_probe, tools_list, transport_compliance_probe, utility_coverage_probe |