{"schema_version":"verify.report.v1","generated_at":"2026-06-10T04:50:34.735813+00:00","snapshot_id":"trustsnap_f0fb13a0c6d6f1d4","server":{"namespace":"github-saputrauta","name":"lgtm-oncall-mcp","title":"SaputraUta/lgtm-oncall-mcp","description":"Typed, auditable on-call MCP server for LLM agents on top of the LGTM stack (Grafana/Mimir/Loki/Tempo) + your VCS.","homepage_url":"https://github.com/SaputraUta/lgtm-oncall-mcp","docs_url":"https://github.com/SaputraUta/lgtm-oncall-mcp","icon_url":"https://avatars.githubusercontent.com/u/65081151?v=4","support_url":"https://github.com/SaputraUta/lgtm-oncall-mcp","remote_url":null,"server_card_url":null,"latest_version":null,"current_status":"failing","current_score":45.67,"transport_type":null,"has_oauth":false,"has_dcr":false,"has_prompts":false,"tool_count":0,"current_validation_schema_version":"16d1d270090d6c8f","last_validated_at":"2026-06-10T00:30:45.088648+00:00","registry_source":"github_topic_registry","registry_identifier":"github_topic_registry:SaputraUta/lgtm-oncall-mcp","canonical_identifier":"github-saputrauta/lgtm-oncall-mcp","current_score_components":{"auth_operability_score":0.0,"error_contract_score":0.0,"rate_limit_semantics_score":2.0,"schema_completeness_score":0.0,"backward_compatibility_score":4.0,"slo_health_score":3.0,"security_hygiene_score":1.5,"task_success_score":1.67,"trust_confidence_score":1.0,"abuse_noise_ratio_score":3.0,"prompt_contract_score":2.0,"resource_contract_score":2.0,"discovery_metadata_score":3.0,"registry_consistency_score":3.0,"installability_score":2.0,"session_semantics_score":0.0,"tool_surface_design_score":0.0,"result_shape_stability_score":0.0,"oauth_interop_score":0.0,"recovery_semantics_score":0.0,"maintenance_signal_score":3.25,"adoption_signal_score":3.6,"freshness_confidence_score":3.0,"transport_fidelity_score":0.0,"spec_recency_score":2.0,"session_resume_score":0.0,"step_up_auth_score":3.0,"transport_compliance_score":1.0,"utility_coverage_score":2.0,"advanced_capability_coverage_score":2.0,"connector_publishability_score":0.0,"tool_snapshot_churn_score":0.0,"connector_replay_score":3.0,"request_association_score":3.0,"interactive_flow_safety_score":3.0,"action_safety_score":3.0,"official_registry_presence_score":3.0,"provenance_divergence_score":4.0,"safety_transparency_score":4.0,"tool_capability_clarity_score":0.0,"destructive_operation_safety_score":3.0,"egress_ssrf_resilience_score":3.0,"execution_sandbox_safety_score":4.0,"data_exfiltration_resilience_score":3.0,"least_privilege_scope_score":2.0,"secret_handling_hygiene_score":3.0,"dependency_supply_chain_signal_score":0.5,"input_sanitization_safety_score":0.0,"tool_namespace_clarity_score":0.0},"capability_taxonomy":["development","automation","monitoring"],"machine_summary":{"verdict":"needs_remediation","best_for":[],"avoid_if":["You need a production-approved server today.","Latest validation is failing"],"requires_auth":false,"supports_oauth":false,"risk_level":"low"},"taxonomy_tags":["development","automation","monitoring"],"score_decomposition":[{"key":"access_protocol","label":"Access & Protocol","score":13.0,"max_score":44.0,"hint":"Connectivity, auth, and transport expectations for common clients.","components":[{"key":"auth_operability_score","score":0.0},{"key":"installability_score","score":2.0},{"key":"session_semantics_score","score":0.0},{"key":"transport_fidelity_score","score":0.0},{"key":"spec_recency_score","score":2.0},{"key":"session_resume_score","score":0.0},{"key":"step_up_auth_score","score":3.0},{"key":"transport_compliance_score","score":1.0},{"key":"request_association_score","score":3.0},{"key":"oauth_interop_score","score":0.0},{"key":"least_privilege_scope_score","score":2.0}]},{"key":"interface_quality","label":"Interface Quality","score":13.0,"max_score":56.0,"hint":"How well the tool/resource interface communicates and behaves under automation.","components":[{"key":"error_contract_score","score":0.0},{"key":"rate_limit_semantics_score","score":2.0},{"key":"schema_completeness_score","score":0.0},{"key":"prompt_contract_score","score":2.0},{"key":"resource_contract_score","score":2.0},{"key":"tool_surface_design_score","score":0.0},{"key":"tool_capability_clarity_score","score":0.0},{"key":"tool_namespace_clarity_score","score":0.0},{"key":"result_shape_stability_score","score":0.0},{"key":"utility_coverage_score","score":2.0},{"key":"advanced_capability_coverage_score","score":2.0},{"key":"tool_snapshot_churn_score","score":0.0},{"key":"connector_replay_score","score":3.0},{"key":"recovery_semantics_score","score":0.0}]},{"key":"security_posture","label":"Security Posture","score":23.5,"max_score":36.0,"hint":"How safely the exposed tool surface handles destructive actions, egress, execution, secrets, and risky inputs.","components":[{"key":"security_hygiene_score","score":1.5},{"key":"destructive_operation_safety_score","score":3.0},{"key":"egress_ssrf_resilience_score","score":3.0},{"key":"execution_sandbox_safety_score","score":4.0},{"key":"data_exfiltration_resilience_score","score":3.0},{"key":"secret_handling_hygiene_score","score":3.0},{"key":"input_sanitization_safety_score","score":0.0},{"key":"interactive_flow_safety_score","score":3.0},{"key":"action_safety_score","score":3.0}]},{"key":"reliability_trust","label":"Reliability & Trust","score":15.67,"max_score":24.0,"hint":"Operational stability, consistency, and trustworthiness over time.","components":[{"key":"backward_compatibility_score","score":4.0},{"key":"slo_health_score","score":3.0},{"key":"task_success_score","score":1.67},{"key":"trust_confidence_score","score":1.0},{"key":"abuse_noise_ratio_score","score":3.0},{"key":"freshness_confidence_score","score":3.0}]},{"key":"discovery_governance","label":"Discovery & Governance","score":20.75,"max_score":28.0,"hint":"How well the server is documented, listed, and governed in public registries.","components":[{"key":"discovery_metadata_score","score":3.0},{"key":"registry_consistency_score","score":3.0},{"key":"maintenance_signal_score","score":3.25},{"key":"safety_transparency_score","score":4.0},{"key":"dependency_supply_chain_signal_score","score":0.5},{"key":"official_registry_presence_score","score":3.0},{"key":"provenance_divergence_score","score":4.0}]},{"key":"adoption_market","label":"Adoption & Market","score":3.6,"max_score":8.0,"hint":"Adoption clues and public evidence that the server is intended for external use.","components":[{"key":"adoption_signal_score","score":3.6},{"key":"connector_publishability_score","score":0.0}]}],"validation_diff":{"latest_score":45.67,"previous_score":45.52,"score_delta":0.15,"latest_summary":"failing","previous_summary":"failing","summary_changed":false,"tool_count_delta":0,"prompt_count_delta":0,"resource_count_delta":0,"component_deltas":[{"key":"maintenance_signal_score","latest":3.25,"previous":3.05,"delta":0.2},{"key":"trust_confidence_score","latest":1.0,"previous":0.9,"delta":0.1}],"regressed_checks":[],"improved_checks":[],"tool_snapshot_diff":null,"auth_mode_changed":false,"latest_auth_mode":"unknown","previous_auth_mode":"unknown","write_action_surface_expanded":false,"latest_high_risk_tools":0,"previous_high_risk_tools":0,"protocol_regressed":false,"latest_protocol_version":null,"previous_protocol_version":null,"registry_drift_changed":false,"latest_registry_drift":[],"previous_registry_drift":[],"connector_refresh_breaking":false,"previous_connector_refresh_breaking":false,"request_association_violation":false,"previous_request_association_violation":false},"tool_snapshot_diff":null,"connector_replay":{"status":"missing","backward_compatible":false,"would_break_after_refresh":false,"added_tools":[],"removed_tools":[],"required_arg_breaks":[],"output_breaks":[],"additive_output_changes":[]},"request_association":{"status":"missing","advertised_capabilities":[],"session_id_present":false,"protocol_version":null,"observed_methods":[],"violating_methods":[],"http_status":null,"issues":[]},"production_readiness":{"code":"needs_remediation","label":"Needs remediation","reason":"Current validation evidence shows operational or discovery gaps that should be fixed first.","badge":"score-low","critical_alerts":1},"recommended_for":[],"history_summary":{"points":[{"timestamp":"2026-06-06T06:16:33.909111+00:00","score":41.49,"status":"failing","latency_ms":10.41,"tool_count":0,"prompt_count":0,"resource_count":0},{"timestamp":"2026-06-06T15:07:41.167554+00:00","score":43.81,"status":"failing","latency_ms":8.74,"tool_count":0,"prompt_count":0,"resource_count":0},{"timestamp":"2026-06-06T23:08:43.253449+00:00","score":44.03,"status":"failing","latency_ms":10.17,"tool_count":0,"prompt_count":0,"resource_count":0},{"timestamp":"2026-06-07T10:12:44.768909+00:00","score":44.24,"status":"failing","latency_ms":11.49,"tool_count":0,"prompt_count":0,"resource_count":0},{"timestamp":"2026-06-07T21:43:54.100002+00:00","score":44.65,"status":"failing","latency_ms":11.17,"tool_count":0,"prompt_count":0,"resource_count":0},{"timestamp":"2026-06-08T10:09:40.070707+00:00","score":45.06,"status":"failing","latency_ms":9.22,"tool_count":0,"prompt_count":0,"resource_count":0},{"timestamp":"2026-06-08T18:26:23.884425+00:00","score":45.21,"status":"failing","latency_ms":9.85,"tool_count":0,"prompt_count":0,"resource_count":0},{"timestamp":"2026-06-09T03:41:35.410836+00:00","score":45.37,"status":"failing","latency_ms":10.08,"tool_count":0,"prompt_count":0,"resource_count":0},{"timestamp":"2026-06-09T13:09:11.816015+00:00","score":45.52,"status":"failing","latency_ms":10.15,"tool_count":0,"prompt_count":0,"resource_count":0},{"timestamp":"2026-06-10T00:30:45.088648+00:00","score":45.67,"status":"failing","latency_ms":12.35,"tool_count":0,"prompt_count":0,"resource_count":0}],"status_counts":{"failing":10},"score_delta_7d":null,"score_delta_30d":null,"avg_latency_ms":10.36,"healthy_ratio_recent":0.0,"freshness_hours":4.33,"latest_status":"failing"},"validation_timeline":[{"timestamp":"2026-06-10T00:30:45.088648+00:00","summary_status":"failing","score":45.67,"protocol_version":null,"auth_mode":"unknown","tool_count":0,"prompt_count":0,"resource_count":0,"high_risk_tools":0,"safe_to_publish":true,"change_flags":[]},{"timestamp":"2026-06-09T13:09:11.816015+00:00","summary_status":"failing","score":45.52,"protocol_version":null,"auth_mode":"unknown","tool_count":0,"prompt_count":0,"resource_count":0,"high_risk_tools":0,"safe_to_publish":true,"change_flags":[]},{"timestamp":"2026-06-09T03:41:35.410836+00:00","summary_status":"failing","score":45.37,"protocol_version":null,"auth_mode":"unknown","tool_count":0,"prompt_count":0,"resource_count":0,"high_risk_tools":0,"safe_to_publish":false,"change_flags":[]},{"timestamp":"2026-06-08T18:26:23.884425+00:00","summary_status":"failing","score":45.21,"protocol_version":null,"auth_mode":"unknown","tool_count":0,"prompt_count":0,"resource_count":0,"high_risk_tools":0,"safe_to_publish":false,"change_flags":[]},{"timestamp":"2026-06-08T10:09:40.070707+00:00","summary_status":"failing","score":45.06,"protocol_version":null,"auth_mode":"unknown","tool_count":0,"prompt_count":0,"resource_count":0,"high_risk_tools":0,"safe_to_publish":false,"change_flags":[]},{"timestamp":"2026-06-07T21:43:54.100002+00:00","summary_status":"failing","score":44.65,"protocol_version":null,"auth_mode":"unknown","tool_count":0,"prompt_count":0,"resource_count":0,"high_risk_tools":0,"safe_to_publish":false,"change_flags":[]},{"timestamp":"2026-06-07T10:12:44.768909+00:00","summary_status":"failing","score":44.24,"protocol_version":null,"auth_mode":"unknown","tool_count":0,"prompt_count":0,"resource_count":0,"high_risk_tools":0,"safe_to_publish":false,"change_flags":[]},{"timestamp":"2026-06-06T23:08:43.253449+00:00","summary_status":"failing","score":44.03,"protocol_version":null,"auth_mode":"unknown","tool_count":0,"prompt_count":0,"resource_count":0,"high_risk_tools":0,"safe_to_publish":false,"change_flags":[]},{"timestamp":"2026-06-06T15:07:41.167554+00:00","summary_status":"failing","score":43.81,"protocol_version":null,"auth_mode":"unknown","tool_count":0,"prompt_count":0,"resource_count":0,"high_risk_tools":0,"safe_to_publish":false,"change_flags":[]},{"timestamp":"2026-06-06T06:16:33.909111+00:00","summary_status":"failing","score":41.49,"protocol_version":null,"auth_mode":"unknown","tool_count":0,"prompt_count":0,"resource_count":0,"high_risk_tools":0,"safe_to_publish":false,"change_flags":[]}],"evidence_confidence":{"score":77.5,"label":"high","reason":"Based on 10 recent validations, 26 captured checks, and validation age of 4.3 hours.","live_check_count":26,"validation_age_hours":4.33},"incident_feed":[{"type":"validation_snapshot","timestamp":"2026-06-10T00:30:45.088648+00:00","title":"Latest validation: failing","message":"Score 45.7 with status failing."},{"type":"score_change","timestamp":"2026-06-10T00:30:45.088648+00:00","title":"Score changed","message":"Score delta +0.1 versus the previous run."},{"type":"score_change","timestamp":"2026-06-09T13:09:11.816015+00:00","title":"Score changed","message":"Score delta +0.1 versus the previous run."},{"type":"score_change","timestamp":"2026-06-09T03:41:35.410836+00:00","title":"Score changed","message":"Score delta +0.2 versus the previous run."}],"remediations":[{"code":"fix_tools_list","severity":"critical","title":"Ensure tools/list succeeds consistently","why":"Tools discovery is the minimum viable contract for most MCP clients and directories.","action":"Make tools/list succeed unauthenticated when possible, or document the auth flow in the server card.","playbook":["Make `tools/list` deterministic across repeated calls.","Document or relax auth requirements for discovery routes.","Check that tool names, descriptions, and schemas remain stable across deploys."],"maintainer_context":null},{"code":"fix_initialize_flow","severity":"critical","title":"Make initialize deterministic and client-friendly","why":"If initialize fails or requires undocumented auth, many MCP clients cannot connect.","action":"Allow initialize to succeed consistently, or return a deterministic auth-required response with clear metadata.","playbook":["Allow `initialize` to succeed unauthenticated when possible.","If auth is required, return a deterministic auth-required response and matching metadata.","Retest against `your remote MCP URL` from a clean client session."],"maintainer_context":null},{"code":"respond_server_failing","severity":"critical","title":"Respond to latest validation is failing","why":"Core MCP flows did not validate successfully on the latest run.","action":"Fix the failing checks first, then revalidate to confirm the recovery path.","playbook":["Fix the failing checks first.","Review the latest incident feed and validation diff for the first regression.","Revalidate once the remediation lands."]},{"code":"fix_transport_compliance","severity":"high","title":"Align session and protocol behavior with Streamable HTTP expectations","why":"Clients increasingly rely on MCP-Protocol-Version, session teardown, and expired-session semantics.","action":"Align MCP-Protocol-Version, MCP-Session-Id, DELETE teardown, and expired-session handling with the transport spec.","playbook":["Return `Mcp-Session-Id` and `Mcp-Protocol-Version` headers consistently on streamable HTTP responses.","Honor `DELETE` session teardown and return `404` when a deleted session is reused.","Reject invalid protocol-version headers with `400 Bad Request`."],"maintainer_context":null},{"code":"enforce_request_association","severity":"high","title":"Associate roots, sampling, and elicitation with active client requests","why":"Modern MCP guidance expects roots, sampling, and elicitation traffic to be tied to an active client request instead of arriving unsolicited on idle sessions.","action":"Inspect the latest validation evidence and resolve the client-visible regression.","playbook":["Inspect the latest validation evidence.","Resolve the highest-severity client-facing gap first.","Revalidate and confirm the score and verdict improve."],"maintainer_context":null},{"code":"publish_oauth_protected_resource","severity":"high","title":"Expose /.well-known/oauth-protected-resource","why":"Without a protected-resource document, OAuth clients cannot discover auth requirements reliably.","action":"Serve /.well-known/oauth-protected-resource and point it at your authorization server metadata.","playbook":["Serve `/.well-known/oauth-protected-resource` from the same host as the MCP endpoint.","Point it at the authorization server metadata URL.","Confirm clients receive consistent auth hints before tool execution."],"maintainer_context":null},{"code":"protect_connector_refreshes","severity":"high","title":"Keep connector refreshes backward compatible","why":"Managed connector clients freeze tool snapshots, so removed tools, new required args, and breaking output changes can break published integrations after refresh.","action":"Inspect the latest validation evidence and resolve the client-visible regression.","playbook":["Inspect the latest validation evidence.","Resolve the highest-severity client-facing gap first.","Revalidate and confirm the score and verdict improve."],"maintainer_context":null},{"code":"publish_oauth_authorization_server","severity":"high","title":"Publish OAuth authorization-server metadata","why":"Clients need authorization-server metadata to discover issuer, endpoints, and DCR support.","action":"Publish /.well-known/oauth-authorization-server from your issuer and include registration_endpoint when supported.","playbook":["Publish `/.well-known/oauth-authorization-server` from the issuer.","Add `registration_endpoint` if DCR is supported.","Verify issuer, authorization, token, and jwks metadata are all reachable."],"maintainer_context":null},{"code":"publish_server_card","severity":"high","title":"Publish a complete server card","why":"Missing or incomplete server-card metadata weakens discovery, documentation, and trust signals.","action":"Serve /.well-known/mcp/server-card.json and include tools, prompts/resources, homepage, and support links.","playbook":["Publish `/.well-known/mcp/server-card.json`.","Include homepage, repository, support, tools, prompts/resources, and auth metadata.","Revalidate the server after publishing the card."],"maintainer_context":null},{"code":"harden_interactive_flows","severity":"high","title":"Stop asking users to paste secrets directly","why":"Public MCP servers should prefer OAuth or browser-based auth guidance over in-band secret collection.","action":"Inspect the latest validation evidence and resolve the client-visible regression.","playbook":["Inspect the latest validation evidence.","Resolve the highest-severity client-facing gap first.","Revalidate and confirm the score and verdict improve."],"maintainer_context":null},{"code":"update_protocol_version","severity":"medium","title":"Adopt a current MCP protocol revision","why":"Older protocol revisions reduce compatibility with newer clients and registry programs.","action":"Inspect the latest validation evidence and resolve the client-visible regression.","playbook":["Inspect the latest validation evidence.","Resolve the highest-severity client-facing gap first.","Revalidate and confirm the score and verdict improve."],"maintainer_context":null},{"code":"improve_connector_publishability","severity":"medium","title":"Close connector-publishing gaps","why":"Connector catalogs care about protocol recency, session behavior, auth clarity, and tool-surface stability.","action":"Inspect the latest validation evidence and resolve the client-visible regression.","playbook":["Inspect the latest validation evidence.","Resolve the highest-severity client-facing gap first.","Revalidate and confirm the score and verdict improve."],"maintainer_context":null},{"code":"tighten_step_up_auth","severity":"medium","title":"Document minimal scopes and return cleaner auth challenges","why":"Modern clients expect granular scopes and step-up auth signals such as WWW-Authenticate scope hints.","action":"Return granular scopes and WWW-Authenticate challenge hints instead of forcing overly broad auth upfront.","playbook":["Advertise the narrowest viable scopes in OAuth metadata.","Return `WWW-Authenticate` challenges with scope or insufficient-scope hints when additional consent is needed.","Revalidate with both public discovery and auth-required flows."],"maintainer_context":null},{"code":"publish_openid_configuration","severity":"medium","title":"Publish OpenID configuration","why":"OIDC metadata improves token validation and client compatibility.","action":"Expose /.well-known/openid-configuration with issuer, jwks_uri, and supported grants.","playbook":["Inspect the latest validation evidence.","Resolve the highest-severity client-facing gap first.","Revalidate and confirm the score and verdict improve."],"maintainer_context":null},{"code":"improve_access_protocol","severity":"medium","title":"Raise Access & Protocol score","why":"Connectivity, auth, and transport expectations for common clients.","action":"Tighten auth discovery, session behavior, and transport metadata until remote clients can connect without guesswork.","playbook":["Inspect the latest validation evidence.","Resolve the highest-severity client-facing gap first.","Revalidate and confirm the score and verdict improve."]},{"code":"improve_adoption_market","severity":"medium","title":"Raise Adoption & Market score","why":"Adoption clues and public evidence that the server is intended for external use.","action":"Increase external documentation and directory coverage so users can discover and evaluate the server.","playbook":["Inspect the latest validation evidence.","Resolve the highest-severity client-facing gap first.","Revalidate and confirm the score and verdict improve."]},{"code":"improve_interface_quality","severity":"medium","title":"Raise Interface Quality score","why":"How well the tool/resource interface communicates and behaves under automation.","action":"Improve schemas, error contracts, and recovery messages so agents can reason about the surface automatically.","playbook":["Inspect the latest validation evidence.","Resolve the highest-severity client-facing gap first.","Revalidate and confirm the score and verdict improve."]},{"code":"stabilize_tool_surface","severity":"medium","title":"Reduce tool-surface churn","why":"Frequent add/remove or output-shape drift makes published connectors and cached tool snapshots brittle.","action":"Inspect the latest validation evidence and resolve the client-visible regression.","playbook":["Inspect the latest validation evidence.","Resolve the highest-severity client-facing gap first.","Revalidate and confirm the score and verdict improve."],"maintainer_context":null},{"code":"fix_prompts_list","severity":"medium","title":"Repair prompts/list or stop advertising prompts","why":"Prompt metadata should either work live or be removed from the advertised capability set.","action":"Only advertise prompts if prompts/list works and prompt arguments are documented.","playbook":["Only advertise prompts that are actually accessible.","Add prompt descriptions and argument docs.","Run a live `prompts/list` check after any prompt changes."],"maintainer_context":null},{"code":"fix_resources_list","severity":"medium","title":"Repair resources/list or stop advertising resources","why":"Resource metadata should either work live or be removed from the advertised capability set.","action":"Only advertise resources if resources/list works and resources expose stable URIs/types.","playbook":["Only advertise resources with stable URIs and read semantics.","Add MIME/type hints where possible.","Run a live `resources/list` and `resources/read` check after updates."],"maintainer_context":null},{"code":"repair_session_resume","severity":"medium","title":"Support resumable HTTP sessions cleanly","why":"Modern MCP clients increasingly expect resumable session behavior on streamable HTTP transports.","action":"Inspect the latest validation evidence and resolve the client-visible regression.","playbook":["Inspect the latest validation evidence.","Resolve the highest-severity client-facing gap first.","Revalidate and confirm the score and verdict improve."],"maintainer_context":null},{"code":"expand_utility_coverage","severity":"low","title":"Expose modern utility surfaces like completions, pagination, or tasks","why":"Utility coverage improves interoperability with larger clients and long-lived agent workflows.","action":"Expose completions, pagination, and task metadata where supported so larger clients can plan and resume work safely.","playbook":["Advertise `completions`, pagination cursors, and `tasks` only when they are actually supported.","Return `nextCursor` on large list operations when pagination is available.","Document task support and whether it requires step-up auth."],"maintainer_context":null},{"code":"harden_noise_resilience","severity":"low","title":"Harden generic GET handling","why":"Simple probe requests should not surface server instability or noisy failures.","action":"Harden generic GET handlers around the origin of your remote MCP URL so incidental traffic does not produce noisy failures.","playbook":["Inspect the latest validation evidence.","Resolve the highest-severity client-facing gap first.","Revalidate and confirm the score and verdict improve."],"maintainer_context":null},{"code":"expand_advanced_capabilities","severity":"low","title":"Publish newer MCP capability signals","why":"Roots, sampling, elicitation, structured outputs, and related metadata improve client understanding and ranking.","action":"Inspect the latest validation evidence and resolve the client-visible regression.","playbook":["Inspect the latest validation evidence.","Resolve the highest-severity client-facing gap first.","Revalidate and confirm the score and verdict improve."],"maintainer_context":null},{"code":"publish_to_official_registry","severity":"low","title":"Publish or reconcile the server in the official MCP registry","why":"Official registry presence improves discovery confidence and cross-source consistency.","action":"Inspect the latest validation evidence and resolve the client-visible regression.","playbook":["Inspect the latest validation evidence.","Resolve the highest-severity client-facing gap first.","Revalidate and confirm the score and verdict improve."],"maintainer_context":null}],"client_remediation_modes":[{"key":"openai_connectors","label":"ChatGPT custom connector","status":"blocked","why_not_ready":[{"label":"Requires a streamable HTTP endpoint.","state":"blocked"},{"label":"Requires a public remote MCP endpoint.","state":"blocked"},{"label":"OpenAI connectors expect OAuth for remote server auth.","state":"blocked"},{"label":"Dynamic client registration materially improves connector setup.","state":"blocked"},{"label":"Initialize must be reachable.","state":"blocked"},{"label":"tools/list must succeed.","state":"blocked"}],"maintainer_context":null},{"key":"claude_desktop","label":"Claude remote MCP","status":"blocked","why_not_ready":[{"label":"Requires a reachable remote MCP URL.","state":"blocked"},{"label":"Initialize must succeed or cleanly request auth.","state":"blocked"},{"label":"tools/list must succeed.","state":"blocked"},{"label":"A useful Claude integration needs at least one exposed tool.","state":"blocked"},{"label":"Claude remote wrappers expect HTTP/SSE transports.","state":"blocked"},{"label":"search fetch only is not yet satisfied","state":"blocked"}],"maintainer_context":null},{"key":"write_safe","label":"Write-safe publishing","status":"ready","why_not_ready":[],"maintainer_context":null}],"client_profiles":[{"key":"openai_connectors","label":"OpenAI Connectors","score":22.2,"compatibility":"blocked","missing_requirements":["Requires a streamable HTTP endpoint.","Requires a public remote MCP endpoint.","OpenAI connectors expect OAuth for remote server auth.","Dynamic client registration materially improves connector setup.","Initialize must be reachable.","tools/list must succeed.","OAuth interoperability should be strong."],"snippet":"Connector URL: https://example.com/mcp\n# No OAuth metadata detected.\n# Server: github-saputrauta/lgtm-oncall-mcp"},{"key":"claude_desktop","label":"Claude Desktop","score":16.7,"compatibility":"blocked","missing_requirements":["Requires a reachable remote MCP URL.","Initialize must succeed or cleanly request auth.","tools/list must succeed.","A useful Claude integration needs at least one exposed tool.","Claude remote wrappers expect HTTP/SSE transports."],"snippet":"{\n  \"mcpServers\": {\n    \"lgtm-oncall-mcp\": {\n      \"command\": \"npx\",\n      \"args\": [\"mcp-remote\", \"https://example.com/mcp\"]\n    }\n  }\n}"},{"key":"smithery","label":"Smithery","score":20.0,"compatibility":"blocked","missing_requirements":["Requires a public remote MCP URL.","Tool discovery must succeed.","Initialize should work before execution.","Machine-readable failure semantics should be present."],"snippet":"smithery mcp add \"https://example.com/mcp\""},{"key":"generic_streamable_http","label":"Generic Streamable HTTP","score":0.0,"compatibility":"blocked","missing_requirements":["Requires an HTTP-native transport.","Requires a reachable remote MCP URL.","Initialize must succeed.","tools/list must succeed.","Transport behavior should match metadata.","Session behavior should be predictable."],"snippet":"curl -sS https://example.com/mcp -H 'content-type: application/json' -d '{\"jsonrpc\":\"2.0\",\"id\":1,\"method\":\"initialize\",\"params\":{\"protocolVersion\":\"2025-03-26\",\"capabilities\":{},\"clientInfo\":{\"name\":\"mcp-verify\",\"version\":\"0.1.0\"}}}'"}],"client_readiness_verdicts":[{"key":"openai_connectors","label":"Client compatibility: ChatGPT","status":"blocked","reason":"Requires a streamable HTTP endpoint.; Requires a public remote MCP endpoint.; OpenAI connectors expect OAuth for remote server auth.; Dynamic client registration materially improves connector setup.; Initialize must be reachable.; tools/list must succeed.; OAuth interoperability should be strong.","evidence":[{"check":"initialize","status":"missing","source":"live_validation","note":null,"http_status":null},{"check":"tools_list","status":"missing","source":"live_validation","note":null,"http_status":null},{"check":"transport_compliance_probe","status":"missing","source":"live_validation","note":null,"http_status":null},{"check":"step_up_auth_probe","status":"missing","source":"live_validation","note":null,"http_status":null},{"check":"connector_replay_probe","status":"missing","source":"live_validation","note":"Frozen tool snapshots must survive refresh.","http_status":null},{"check":"request_association_probe","status":"missing","source":"live_validation","note":"Roots, sampling, and elicitation should stay request-scoped.","http_status":null}],"confidence":{"score":77.5,"label":"high"},"source_resolution":{"winner":"live_validation","supporting_sources":["live_validation","history","server_card"],"disagreements":[]}},{"key":"claude_desktop","label":"Client compatibility: Claude","status":"blocked","reason":"Requires a reachable remote MCP URL.; Initialize must succeed or cleanly request auth.; tools/list must succeed.; A useful Claude integration needs at least one exposed tool.; Claude remote wrappers expect HTTP/SSE transports.","evidence":[{"check":"initialize","status":"missing","source":"live_validation","note":null,"http_status":null},{"check":"tools_list","status":"missing","source":"live_validation","note":null,"http_status":null},{"check":"transport_compliance_probe","status":"missing","source":"live_validation","note":null,"http_status":null}],"confidence":{"score":77.5,"label":"high"},"source_resolution":{"winner":"live_validation","supporting_sources":["live_validation","history","server_card"],"disagreements":[]}},{"key":"unsafe_for_write_actions","label":"Write-action publishing","status":"no","reason":"Current write surface is bounded enough for cautious review with production policy controls.","evidence":[{"check":"action_safety_probe","status":"ok","source":"live_validation","note":null,"http_status":null}],"confidence":{"score":77.5,"label":"high"},"source_resolution":{"winner":"live_validation","supporting_sources":["live_validation","history"],"disagreements":[]}},{"key":"snapshot_churn_risk","label":"Snapshot churn risk","status":"low","reason":"No material tool-surface churn detected in the latest comparison.","evidence":[{"check":"tool_snapshot_probe","status":"missing","source":"live_validation","note":null,"http_status":null},{"check":"connector_replay_probe","status":"missing","source":"live_validation","note":null,"http_status":null}],"confidence":{"score":77.5,"label":"high"},"source_resolution":{"winner":"history","supporting_sources":["history","live_validation"],"disagreements":[]}}],"publishability_policy_profiles":[{"key":"chatgpt_custom_connector","label":"ChatGPT custom connector compatibility","status":"caution","gates":{"search_fetch_only":false,"write_actions_present":false,"oauth_configured":false,"admin_refresh_required":false,"safe_for_company_knowledge":false,"safe_for_messages_api_remote_mcp":false},"reason":"Requires a streamable HTTP endpoint.; Requires a public remote MCP endpoint.; OpenAI connectors expect OAuth for remote server auth.; Dynamic client registration materially improves connector setup.; Initialize must be reachable.; tools/list must succeed.; OAuth interoperability should be strong."},{"key":"claude_remote_mcp","label":"Claude remote MCP compatibility","status":"caution","gates":{"search_fetch_only":false,"write_actions_present":false,"oauth_configured":false,"admin_refresh_required":false,"safe_for_company_knowledge":false,"safe_for_messages_api_remote_mcp":false},"reason":"Requires a reachable remote MCP URL.; Initialize must succeed or cleanly request auth.; tools/list must succeed.; A useful Claude integration needs at least one exposed tool.; Claude remote wrappers expect HTTP/SSE transports."}],"compatibility_fixtures":[{"key":"chatgpt_custom_connector","label":"ChatGPT custom connector fixture","status":"degraded","assumptions":[{"name":"remote_http_endpoint","status":"likely_to_fail"},{"name":"oauth_discovery","status":"degraded"},{"name":"frozen_tool_snapshot_refresh","status":"passes"},{"name":"request_association","status":"passes"}],"reason":"Requires a streamable HTTP endpoint.; Requires a public remote MCP endpoint.; OpenAI connectors expect OAuth for remote server auth.; Dynamic client registration materially improves connector setup.; Initialize must be reachable.; tools/list must succeed.; OAuth interoperability should be strong."},{"key":"anthropic_remote_mcp","label":"Anthropic remote MCP fixture","status":"degraded","assumptions":[{"name":"remote_transport","status":"likely_to_fail"},{"name":"tool_discovery","status":"likely_to_fail"},{"name":"auth_connect","status":"likely_to_fail"},{"name":"safe_write_review","status":"passes"}],"reason":"Requires a reachable remote MCP URL.; Initialize must succeed or cleanly request auth.; tools/list must succeed.; A useful Claude integration needs at least one exposed tool.; Claude remote wrappers expect HTTP/SSE transports."}],"install_snippets":{"openai_connectors":"Connector URL: https://example.com/mcp\n# No OAuth metadata detected.\n# Server: github-saputrauta/lgtm-oncall-mcp","claude_desktop":"{\n  \"mcpServers\": {\n    \"lgtm-oncall-mcp\": {\n      \"command\": \"npx\",\n      \"args\": [\"mcp-remote\", \"https://example.com/mcp\"]\n    }\n  }\n}","smithery":"smithery mcp add \"https://example.com/mcp\"","generic_http":"curl -sS https://example.com/mcp -H 'content-type: application/json' -d '{\"jsonrpc\":\"2.0\",\"id\":1,\"method\":\"initialize\",\"params\":{\"protocolVersion\":\"2025-03-26\",\"capabilities\":{},\"clientInfo\":{\"name\":\"mcp-verify\",\"version\":\"0.1.0\"}}}'"},"aliases":[{"identifier":"github-saputrauta/lgtm-oncall-mcp","registry_source":"github_topic_registry","remote_url":null,"canonical":true,"score":45.67}],"raw_evidence":{"server_identifier":"github-saputrauta/lgtm-oncall-mcp","remote_url":null,"server_card_payload":null,"checks":{"server_card":{"status":"missing","latency_ms":null,"details":{"reason":"no_server_card_url"}},"oauth_protected_resource":{"status":"missing","latency_ms":null,"details":{"reason":"no_remote_url"}},"oauth_authorization_server":{"status":"missing","latency_ms":null,"details":{"reason":"no_authorization_server"}},"openid_configuration":{"status":"missing","latency_ms":null,"details":{"reason":"no_authorization_server"}},"initialize":{"status":"missing","latency_ms":null,"details":{"reason":"no_remote_url"}},"protocol_version_probe":{"status":"missing","latency_ms":null,"details":{"reason":"no_protocol_version","validator_protocol_version":"2025-03-26","latest_known_version":"2025-11-25"}},"tools_list":{"status":"missing","latency_ms":null,"details":{"reason":"no_remote_url"}},"prompts_list":{"status":"missing","latency_ms":null,"details":{"reason":"no_remote_url"}},"prompt_get":{"status":"missing","latency_ms":null,"details":{"reason":"not_advertised"}},"resources_list":{"status":"missing","latency_ms":null,"details":{"reason":"no_remote_url"}},"resource_read":{"status":"missing","latency_ms":null,"details":{"reason":"not_advertised"}},"probe_noise_resilience":{"status":"missing","latency_ms":null,"details":{"reason":"no_remote_url"}},"determinism_probe":{"status":"missing","latency_ms":null,"details":{"reason":"no_remote_url"}},"session_resume_probe":{"status":"missing","latency_ms":null,"details":{"reason":"no_remote_url"}},"step_up_auth_probe":{"status":"missing","latency_ms":null,"details":{"oauth_present":false,"auth_required_checks":[],"supported_scopes":[],"scope_specificity_ratio":0.0,"broad_scopes":[],"challenge_headers":[],"step_up_signals":[],"minimal_scope_documented":false}},"transport_compliance_probe":{"status":"missing","latency_ms":null,"details":{"reason":"no_remote_url"}},"utility_coverage_probe":{"status":"missing","latency_ms":null,"details":{"completions":{"advertised":false,"sample_target":null,"live_probe":"not_executed"},"pagination":{"supported":false,"next_cursor_methods":[],"metadata_signal":false},"tasks":{"advertised":false,"probe_status":"missing","http_status":null},"initialize_capability_keys":[]}},"advanced_capabilities_probe":{"status":"missing","latency_ms":null,"details":{"capabilities":{"prompts":false,"resources":false,"completions":false,"roots":false,"sampling":false,"elicitation":false,"structured_outputs":false,"resource_links":false},"enabled_count":0,"enabled":[],"initialize_capability_keys":[]}},"tool_snapshot_probe":{"status":"missing","latency_ms":null,"details":{"reason":"no_tools"}},"connector_replay_probe":{"status":"missing","latency_ms":null,"details":{"reason":"no_tools"}},"request_association_probe":{"status":"missing","latency_ms":null,"details":{"reason":"no_request_association_capabilities_advertised"}},"interactive_flow_probe":{"status":"missing","latency_ms":null,"details":{"risk_hits":[],"safe_hits":[],"oauth_supported":false,"prompt_available":false}},"action_safety_probe":{"status":"ok","latency_ms":null,"details":{"summary":{"tool_count":0,"high_risk_tools":0,"destructive_tools":0,"exec_tools":0,"egress_tools":0,"secret_tools":0,"bulk_access_tools":0,"risk_distribution":{"low":0,"medium":0,"high":0,"critical":0},"capability_distribution":{}},"auth_present":false,"safeguard_count":0,"confirmation_signals":[]}},"official_registry_probe":{"status":"warning","latency_ms":null,"details":{"registry_source":"github_topic_registry","direct_match":false,"official_peer_count":10,"official_identifiers":["com.trycloudflare.annotated-lot-operational-tourism/kai-agi","ai.packmind/mcp-server","io.github.martc03/grant-finder","io.github.martc03/court-records","io.github.BigJai/opendirectories-business-data","io.github.billychl1/footballbin-mcp-server","io.github.arcar-org/n8n-mcp-server","ai.smithery/Leghis-smart-thinking","io.github.ark-forge/mcp-eu-ai-act","io.github.justinjilg/brainstormrouter"]}},"provenance_divergence_probe":{"status":"ok","latency_ms":null,"details":{"direct_official_match":false,"registry_title":null,"server_card_title":null,"registry_version":null,"server_card_version":null,"registry_homepage":null,"server_card_homepage":null,"registry_repository":null,"server_card_repository":null,"drift_fields":[],"metadata_document_count":1}},"connector_publishability_probe":{"status":"error","latency_ms":null,"details":{"transport":null,"tool_count":0,"high_risk_tools":0,"blockers":["remote_transport","initialize","tools_list","protocol_version","transport_compliance","server_card","tool_surface","auth_flow"],"criteria":{"remote_transport":false,"initialize":false,"tools_list":false,"protocol_version":false,"session_resume":true,"step_up_auth":true,"transport_compliance":false,"connector_replay":true,"request_association":true,"action_safety":true,"server_card":false,"tool_surface":false,"auth_flow":false}}}},"failures":{"server_card":{"reason":"no_server_card_url"},"oauth_protected_resource":{"reason":"no_remote_url"},"oauth_authorization_server":{"reason":"no_authorization_server"},"openid_configuration":{"reason":"no_authorization_server"},"initialize":{"reason":"no_remote_url"},"tools_list":{"reason":"no_remote_url"},"probe_noise_resilience":{"reason":"no_remote_url"}}},"active_alerts":[{"code":"server_failing","severity":"critical","title":"Latest validation is failing","message":"Core MCP flows did not validate successfully on the latest run."}],"maintainer_analytics":{"validation_run_count":10,"average_latency_ms":10.36,"healthy_run_ratio_recent":0.0,"registry_presence_count":1,"active_alert_count":1,"watcher_count":0,"verified_claim":false,"taxonomy_tags":["development","automation","monitoring"],"score_trend":[45.67,45.52,45.37,45.21,45.06,44.65,44.24,44.03,43.81,41.49],"remediation_count":25,"high_risk_tool_count":0,"destructive_tool_count":0,"exec_tool_count":0},"public_server_reputation":{"validation_success_ratio_7d":0.0,"validation_success_ratio_30d":0.0,"mean_time_to_recover_hours":null,"breaking_diffs_30d":0,"registry_drift_frequency_30d":0,"snapshot_change_frequency_30d":0},"maintainer_response_quality":{"score":33.33,"signals":{"verified_maintainer_claim":false,"support_contact_present":true,"changelog_present":false,"incident_notes_present":false,"tool_change_documented":true,"annotation_history_present":false},"annotation_count":0,"latest_annotation_at":null},"maintainer_annotations":[],"maintainer_rebuttals":[],"security_posture_summary":{"tool_count":0,"high_risk_tools":0,"destructive_tools":0,"exec_tools":0,"egress_tools":0,"secret_tools":0,"bulk_access_tools":0,"risk_distribution":{"low":0,"medium":0,"high":0,"critical":0},"capability_distribution":{}},"tool_security_inventory":[],"transport_compliance":{"status":"missing","transport":null,"session_id_present":false,"protocol_header_present":false,"last_event_id_visible":false,"bad_protocol_status_code":null,"delete_status_code":null,"expired_session_status_code":null,"issues":[]},"utility_coverage":{"status":"missing","completions":{"advertised":false,"sample_target":null,"live_probe":"not_executed"},"pagination":{"supported":false,"next_cursor_methods":[],"metadata_signal":false},"tasks":{"advertised":false,"probe_status":"missing","http_status":null},"initialize_capability_keys":[]},"write_action_governance":{"status":"ok","safe_to_publish":true,"auth_boundary":"public_or_unclear","blast_radius":"low","summary":{"tool_count":0,"high_risk_tools":0,"destructive_tools":0,"exec_tools":0,"egress_tools":0,"secret_tools":0,"bulk_access_tools":0,"risk_distribution":{"low":0,"medium":0,"high":0,"critical":0},"capability_distribution":{}},"high_risk_tools":[],"confirmation_signals":[],"safeguard_count":0},"provenance_divergence":{"status":"ok","direct_official_match":false,"drift_fields":[],"registry_title":null,"server_card_title":null,"registry_version":null,"server_card_version":null,"registry_homepage":null,"server_card_homepage":null},"alias_consolidation":{"canonical_identifier":"github-saputrauta/lgtm-oncall-mcp","duplicate_count":0,"registry_sources":["github_topic_registry"],"registry_identifiers":["github_topic_registry:SaputraUta/lgtm-oncall-mcp"],"remote_urls":[],"homepages":["https://github.com/SaputraUta/lgtm-oncall-mcp"],"source_disagreements":[],"source_disagreement_details":{}},"alert_routing":{"active_watch_count":0,"route_counts":{"generic_webhook":0,"slack":0,"teams":0,"email":0},"destinations":[]},"authenticated_validation":{"latest_profile":"remote_mcp","authenticated_session_used":false,"public_score_remains_anonymous":true,"preview_endpoint":"/v1/verify","ci_preview_endpoint":"/v1/ci/preview"},"hosted_runtime":{"schema_version":"verify.hosted_runtime.v1","server":"github-saputrauta/lgtm-oncall-mcp","tier":"community","readiness":{"allowed_to_activate":false,"blockers":["score_below_hosting_threshold","server_not_healthy_or_degraded","remote_endpoint_missing","latest_validation_not_passing"],"score":45.67,"min_score":70.0,"freshness_hours":4.329939847222223,"max_freshness_hours":168.0,"latest_validation_run_id":"1335641b-cb4c-48bd-9238-a435d76c1433"},"active_deployment_id":null,"active_endpoint_url":null,"deployments":[]},"action_controls_diff":null,"benchmark_tasks":[{"key":"discover_tools","label":"Discover tools","status":"likely_to_fail","evidence":[{"check":"initialize","status":"missing","source":"live_validation","note":null,"http_status":null},{"check":"tools_list","status":"missing","source":"live_validation","note":null,"http_status":null}]},{"key":"read_only_fetch_flow","label":"Read-only fetch flow","status":"likely_to_fail","evidence":[{"check":"resource_read","status":"missing","source":"live_validation","note":"resources/read is a strong read-path signal","http_status":null},{"check":"read_only_tool_surface","status":"missing","source":"derived_tool_inventory","note":"No low-risk read-only tools were inferred from the current tool surface.","http_status":null}]},{"key":"oauth_required_connect","label":"OAuth-required connect","status":"degraded","evidence":[{"check":"oauth_protected_resource","status":"missing","source":"live_validation","note":null,"http_status":null},{"check":"step_up_auth_probe","status":"missing","source":"live_validation","note":null,"http_status":null}]},{"key":"safe_write_flow_with_confirmation","label":"Safe write flow with confirmation","status":"passes","evidence":[{"check":"action_safety_probe","status":"ok","source":"live_validation","note":null,"http_status":null}]}],"latest_capability_counts":{"tool_count":0,"prompt_count":0,"resource_count":0},"point_loss_breakdown":[{"key":"transport_fidelity_score","label":"Transport Fidelity","score":0.0,"max_score":4.0,"gap":4.0},{"key":"tool_surface_design_score","label":"Tool Surface Design","score":0.0,"max_score":4.0,"gap":4.0},{"key":"tool_snapshot_churn_score","label":"Tool Snapshot Churn","score":0.0,"max_score":4.0,"gap":4.0},{"key":"tool_namespace_clarity_score","label":"Tool Namespace Clarity","score":0.0,"max_score":4.0,"gap":4.0},{"key":"tool_capability_clarity_score","label":"Tool Capability Clarity","score":0.0,"max_score":4.0,"gap":4.0},{"key":"session_semantics_score","label":"Session Semantics","score":0.0,"max_score":4.0,"gap":4.0},{"key":"session_resume_score","label":"Session Resume","score":0.0,"max_score":4.0,"gap":4.0},{"key":"schema_completeness_score","label":"Schema Completeness","score":0.0,"max_score":4.0,"gap":4.0},{"key":"result_shape_stability_score","label":"Result Shape Stability","score":0.0,"max_score":4.0,"gap":4.0},{"key":"recovery_semantics_score","label":"Recovery Semantics","score":0.0,"max_score":4.0,"gap":4.0},{"key":"oauth_interop_score","label":"OAUTH Interop","score":0.0,"max_score":4.0,"gap":4.0},{"key":"input_sanitization_safety_score","label":"Input Sanitization Safety","score":0.0,"max_score":4.0,"gap":4.0}],"verdict_traces":{"production_readiness":{"code":"needs_remediation","label":"Needs remediation","reason":"Current validation evidence shows operational or discovery gaps that should be fixed first.","confidence":{"score":77.5,"label":"high"},"triggering_alerts":[{"code":"server_failing","severity":"critical","title":"Latest validation is failing"}],"winning_source":"live_validation"},"client_readiness":[{"key":"openai_connectors","status":"blocked","reason":"Requires a streamable HTTP endpoint.; Requires a public remote MCP endpoint.; OpenAI connectors expect OAuth for remote server auth.; Dynamic client registration materially improves connector setup.; Initialize must be reachable.; tools/list must succeed.; OAuth interoperability should be strong.","triggering_checks":["initialize","tools_list","transport_compliance_probe","step_up_auth_probe","connector_replay_probe","request_association_probe"],"confidence":{"score":77.5,"label":"high"},"winning_source":"live_validation","conflicting_sources":[]},{"key":"claude_desktop","status":"blocked","reason":"Requires a reachable remote MCP URL.; Initialize must succeed or cleanly request auth.; tools/list must succeed.; A useful Claude integration needs at least one exposed tool.; Claude remote wrappers expect HTTP/SSE transports.","triggering_checks":["initialize","tools_list","transport_compliance_probe"],"confidence":{"score":77.5,"label":"high"},"winning_source":"live_validation","conflicting_sources":[]},{"key":"unsafe_for_write_actions","status":"no","reason":"Current write surface is bounded enough for cautious review with production policy controls.","triggering_checks":["action_safety_probe"],"confidence":{"score":77.5,"label":"high"},"winning_source":"live_validation","conflicting_sources":[]},{"key":"snapshot_churn_risk","status":"low","reason":"No material tool-surface churn detected in the latest comparison.","triggering_checks":["tool_snapshot_probe","connector_replay_probe"],"confidence":{"score":77.5,"label":"high"},"winning_source":"history","conflicting_sources":[]}]},"current_snapshot":{"schema_version":"verify.trust_snapshot.v1","snapshot_id":"trustsnap_f0fb13a0c6d6f1d4","generated_at":"2026-06-10T04:50:32.896682+00:00","source":"current_snapshot","server":"github-saputrauta/lgtm-oncall-mcp","last_validated_at":"2026-06-10T00:30:45.088648+00:00","validation_age_hours":4.33,"freshness":{"schema_version":"verify.freshness_profile.v1","last_validated_at":"2026-06-10T00:30:45.088648+00:00","age_hours":4.33,"bucket":"verified_last_24h","label":"Verified in last 24h","badges":["verified_last_24h"],"freshness_sla_hours":168.0,"freshness_sla_status":"met","stale_score_suppressed":false,"display_score":45.67,"raw_score":45.67,"confidence_score":77.5,"confidence_weighted_score":35.4,"tier_status":[{"tier":"community","label":"Community","freshness_sla_hours":720,"met":true,"priority_revalidation":false},{"tier":"pro","label":"Pro","freshness_sla_hours":168,"met":true,"priority_revalidation":true},{"tier":"enterprise","label":"Enterprise","freshness_sla_hours":24,"met":true,"priority_revalidation":true}]},"current_status":"failing","current_score":45.67,"display_score":45.67,"stale_score_suppressed":false,"production_trust_decision":{"schema_version":"verify.executive_verdict.v1","decision":"Block for production","why":"failing live status + score below evaluation threshold","next_action":"revalidate, add safeguards, export policy","reason_count":2},"production_readiness_class":{"code":"needs_remediation","label":"Needs remediation","reason":"Current validation evidence shows operational or discovery gaps that should be fixed first."},"evidence_confidence":{"score":77.5,"label":"high","validation_age_hours":4.33,"live_check_count":26},"active_alerts":[{"code":"server_failing","severity":"critical","title":"Latest validation is failing"}]},"trust_snapshot":{"schema_version":"verify.trust_snapshot.v1","snapshot_id":"trustsnap_f0fb13a0c6d6f1d4","generated_at":"2026-06-10T04:50:32.896682+00:00","source":"current_snapshot","server":"github-saputrauta/lgtm-oncall-mcp","last_validated_at":"2026-06-10T00:30:45.088648+00:00","validation_age_hours":4.33,"freshness":{"schema_version":"verify.freshness_profile.v1","last_validated_at":"2026-06-10T00:30:45.088648+00:00","age_hours":4.33,"bucket":"verified_last_24h","label":"Verified in last 24h","badges":["verified_last_24h"],"freshness_sla_hours":168.0,"freshness_sla_status":"met","stale_score_suppressed":false,"display_score":45.67,"raw_score":45.67,"confidence_score":77.5,"confidence_weighted_score":35.4,"tier_status":[{"tier":"community","label":"Community","freshness_sla_hours":720,"met":true,"priority_revalidation":false},{"tier":"pro","label":"Pro","freshness_sla_hours":168,"met":true,"priority_revalidation":true},{"tier":"enterprise","label":"Enterprise","freshness_sla_hours":24,"met":true,"priority_revalidation":true}]},"current_status":"failing","current_score":45.67,"display_score":45.67,"stale_score_suppressed":false,"production_trust_decision":{"schema_version":"verify.executive_verdict.v1","decision":"Block for production","why":"failing live status + score below evaluation threshold","next_action":"revalidate, add safeguards, export policy","reason_count":2},"production_readiness_class":{"code":"needs_remediation","label":"Needs remediation","reason":"Current validation evidence shows operational or discovery gaps that should be fixed first."},"evidence_confidence":{"score":77.5,"label":"high","validation_age_hours":4.33,"live_check_count":26},"active_alerts":[{"code":"server_failing","severity":"critical","title":"Latest validation is failing"}]},"agent_commerce":{"status":"beta","commerce_signal":"weak","payment_execution_detected":"no","billing_or_usage_detected":"no","quote_or_pricing_detected":"no","numeric_price_context":"yes","commercial_quote_context":"no","checkout_or_charge_detected":"no","checkout_term_observed":"no","payment_capable":"none","payment_rails":[],"purchase_stage_supported":[],"human_confirmation_required":"unknown","spending_policy_supported":"yes","receipt_supported":"unknown","refund_policy_present":"unknown","operator_identity":"declared","auth_required":"unknown","auth_scheme":"unknown","tool_risk_level":"unknown","tool_risk_score":60,"pricing_transparency":"unknown","schema_change_detected":"unknown","delegation_level":"none","evidence_level":"inferred","confidence":"low","highest_risk_tools":[],"skipped_unsafe_tools":[],"last_checked_at":"2026-06-10T04:50:32.895592+00:00","evidence":[{"field":"commerce_signal","value":"weak","evidence_level":"inferred","source":"server_metadata","matched_terms":["limit","rate"],"sample":null,"confidence":"low","last_checked_at":"2026-06-10T04:50:32.895592+00:00"}],"disclaimer":"Beta assessment. Verify detects evidence and risk signals but does not certify that this server is safe for autonomous purchases.","scores":{"auth_posture_score":0,"tool_risk_score":60,"payment_readiness_score":10,"agent_delegation_safety_score":50,"overall_agent_commerce_score":null},"warnings":[],"recommended_fixes":[]},"latest_claim":null,"maintainer_profile_slug":null,"watch_summary":{"count":0,"teams":[],"emails":[]}},"latest_validation":{"id":"1335641b-cb4c-48bd-9238-a435d76c1433","validation_profile":"remote_mcp","status":"completed","summary_status":"failing","transport_type":null,"latency_ms":12.35,"failures":{"server_card":{"reason":"no_server_card_url"},"oauth_protected_resource":{"reason":"no_remote_url"},"oauth_authorization_server":{"reason":"no_authorization_server"},"openid_configuration":{"reason":"no_authorization_server"},"initialize":{"reason":"no_remote_url"},"tools_list":{"reason":"no_remote_url"},"probe_noise_resilience":{"reason":"no_remote_url"}},"checks":{"server_card":{"status":"missing","latency_ms":null,"details":{"reason":"no_server_card_url"}},"oauth_protected_resource":{"status":"missing","latency_ms":null,"details":{"reason":"no_remote_url"}},"oauth_authorization_server":{"status":"missing","latency_ms":null,"details":{"reason":"no_authorization_server"}},"openid_configuration":{"status":"missing","latency_ms":null,"details":{"reason":"no_authorization_server"}},"initialize":{"status":"missing","latency_ms":null,"details":{"reason":"no_remote_url"}},"protocol_version_probe":{"status":"missing","latency_ms":null,"details":{"reason":"no_protocol_version","validator_protocol_version":"2025-03-26","latest_known_version":"2025-11-25"}},"tools_list":{"status":"missing","latency_ms":null,"details":{"reason":"no_remote_url"}},"prompts_list":{"status":"missing","latency_ms":null,"details":{"reason":"no_remote_url"}},"prompt_get":{"status":"missing","latency_ms":null,"details":{"reason":"not_advertised"}},"resources_list":{"status":"missing","latency_ms":null,"details":{"reason":"no_remote_url"}},"resource_read":{"status":"missing","latency_ms":null,"details":{"reason":"not_advertised"}},"probe_noise_resilience":{"status":"missing","latency_ms":null,"details":{"reason":"no_remote_url"}},"determinism_probe":{"status":"missing","latency_ms":null,"details":{"reason":"no_remote_url"}},"session_resume_probe":{"status":"missing","latency_ms":null,"details":{"reason":"no_remote_url"}},"step_up_auth_probe":{"status":"missing","latency_ms":null,"details":{"oauth_present":false,"auth_required_checks":[],"supported_scopes":[],"scope_specificity_ratio":0.0,"broad_scopes":[],"challenge_headers":[],"step_up_signals":[],"minimal_scope_documented":false}},"transport_compliance_probe":{"status":"missing","latency_ms":null,"details":{"reason":"no_remote_url"}},"utility_coverage_probe":{"status":"missing","latency_ms":null,"details":{"completions":{"advertised":false,"sample_target":null,"live_probe":"not_executed"},"pagination":{"supported":false,"next_cursor_methods":[],"metadata_signal":false},"tasks":{"advertised":false,"probe_status":"missing","http_status":null},"initialize_capability_keys":[]}},"advanced_capabilities_probe":{"status":"missing","latency_ms":null,"details":{"capabilities":{"prompts":false,"resources":false,"completions":false,"roots":false,"sampling":false,"elicitation":false,"structured_outputs":false,"resource_links":false},"enabled_count":0,"enabled":[],"initialize_capability_keys":[]}},"tool_snapshot_probe":{"status":"missing","latency_ms":null,"details":{"reason":"no_tools"}},"connector_replay_probe":{"status":"missing","latency_ms":null,"details":{"reason":"no_tools"}},"request_association_probe":{"status":"missing","latency_ms":null,"details":{"reason":"no_request_association_capabilities_advertised"}},"interactive_flow_probe":{"status":"missing","latency_ms":null,"details":{"risk_hits":[],"safe_hits":[],"oauth_supported":false,"prompt_available":false}},"action_safety_probe":{"status":"ok","latency_ms":null,"details":{"summary":{"tool_count":0,"high_risk_tools":0,"destructive_tools":0,"exec_tools":0,"egress_tools":0,"secret_tools":0,"bulk_access_tools":0,"risk_distribution":{"low":0,"medium":0,"high":0,"critical":0},"capability_distribution":{}},"auth_present":false,"safeguard_count":0,"confirmation_signals":[]}},"official_registry_probe":{"status":"warning","latency_ms":null,"details":{"registry_source":"github_topic_registry","direct_match":false,"official_peer_count":10,"official_identifiers":["com.trycloudflare.annotated-lot-operational-tourism/kai-agi","ai.packmind/mcp-server","io.github.martc03/grant-finder","io.github.martc03/court-records","io.github.BigJai/opendirectories-business-data","io.github.billychl1/footballbin-mcp-server","io.github.arcar-org/n8n-mcp-server","ai.smithery/Leghis-smart-thinking","io.github.ark-forge/mcp-eu-ai-act","io.github.justinjilg/brainstormrouter"]}},"provenance_divergence_probe":{"status":"ok","latency_ms":null,"details":{"direct_official_match":false,"registry_title":null,"server_card_title":null,"registry_version":null,"server_card_version":null,"registry_homepage":null,"server_card_homepage":null,"registry_repository":null,"server_card_repository":null,"drift_fields":[],"metadata_document_count":1}},"connector_publishability_probe":{"status":"error","latency_ms":null,"details":{"transport":null,"tool_count":0,"high_risk_tools":0,"blockers":["remote_transport","initialize","tools_list","protocol_version","transport_compliance","server_card","tool_surface","auth_flow"],"criteria":{"remote_transport":false,"initialize":false,"tools_list":false,"protocol_version":false,"session_resume":true,"step_up_auth":true,"transport_compliance":false,"connector_replay":true,"request_association":true,"action_safety":true,"server_card":false,"tool_surface":false,"auth_flow":false}}}},"score_components":{"auth_operability_score":0.0,"error_contract_score":0.0,"rate_limit_semantics_score":2.0,"schema_completeness_score":0.0,"backward_compatibility_score":4.0,"slo_health_score":3.0,"security_hygiene_score":1.5,"task_success_score":1.67,"trust_confidence_score":1.0,"abuse_noise_ratio_score":3.0,"prompt_contract_score":2.0,"resource_contract_score":2.0,"discovery_metadata_score":3.0,"registry_consistency_score":3.0,"installability_score":2.0,"session_semantics_score":0.0,"tool_surface_design_score":0.0,"result_shape_stability_score":0.0,"oauth_interop_score":0.0,"recovery_semantics_score":0.0,"maintenance_signal_score":3.25,"adoption_signal_score":3.6,"freshness_confidence_score":3.0,"transport_fidelity_score":0.0,"spec_recency_score":2.0,"session_resume_score":0.0,"step_up_auth_score":3.0,"transport_compliance_score":1.0,"utility_coverage_score":2.0,"advanced_capability_coverage_score":2.0,"connector_publishability_score":0.0,"tool_snapshot_churn_score":0.0,"connector_replay_score":3.0,"request_association_score":3.0,"interactive_flow_safety_score":3.0,"action_safety_score":3.0,"official_registry_presence_score":3.0,"provenance_divergence_score":4.0,"safety_transparency_score":4.0,"tool_capability_clarity_score":0.0,"destructive_operation_safety_score":3.0,"egress_ssrf_resilience_score":3.0,"execution_sandbox_safety_score":4.0,"data_exfiltration_resilience_score":3.0,"least_privilege_scope_score":2.0,"secret_handling_hygiene_score":3.0,"dependency_supply_chain_signal_score":0.5,"input_sanitization_safety_score":0.0,"tool_namespace_clarity_score":0.0},"validation_schema_version":"16d1d270090d6c8f","started_at":"2026-06-10T00:30:45.072559+00:00","completed_at":"2026-06-10T00:30:45.088648+00:00"},"current_snapshot":{"schema_version":"verify.trust_snapshot.v1","snapshot_id":"trustsnap_f0fb13a0c6d6f1d4","generated_at":"2026-06-10T04:50:32.896682+00:00","source":"current_snapshot","server":"github-saputrauta/lgtm-oncall-mcp","last_validated_at":"2026-06-10T00:30:45.088648+00:00","validation_age_hours":4.33,"freshness":{"schema_version":"verify.freshness_profile.v1","last_validated_at":"2026-06-10T00:30:45.088648+00:00","age_hours":4.33,"bucket":"verified_last_24h","label":"Verified in last 24h","badges":["verified_last_24h"],"freshness_sla_hours":168.0,"freshness_sla_status":"met","stale_score_suppressed":false,"display_score":45.67,"raw_score":45.67,"confidence_score":77.5,"confidence_weighted_score":35.4,"tier_status":[{"tier":"community","label":"Community","freshness_sla_hours":720,"met":true,"priority_revalidation":false},{"tier":"pro","label":"Pro","freshness_sla_hours":168,"met":true,"priority_revalidation":true},{"tier":"enterprise","label":"Enterprise","freshness_sla_hours":24,"met":true,"priority_revalidation":true}]},"current_status":"failing","current_score":45.67,"display_score":45.67,"stale_score_suppressed":false,"production_trust_decision":{"schema_version":"verify.executive_verdict.v1","decision":"Block for production","why":"failing live status + score below evaluation threshold","next_action":"revalidate, add safeguards, export policy","reason_count":2},"production_readiness_class":{"code":"needs_remediation","label":"Needs remediation","reason":"Current validation evidence shows operational or discovery gaps that should be fixed first."},"evidence_confidence":{"score":77.5,"label":"high","validation_age_hours":4.33,"live_check_count":26},"active_alerts":[{"code":"server_failing","severity":"critical","title":"Latest validation is failing"}]},"trust_snapshot":{"schema_version":"verify.trust_snapshot.v1","snapshot_id":"trustsnap_f0fb13a0c6d6f1d4","generated_at":"2026-06-10T04:50:32.896682+00:00","source":"current_snapshot","server":"github-saputrauta/lgtm-oncall-mcp","last_validated_at":"2026-06-10T00:30:45.088648+00:00","validation_age_hours":4.33,"freshness":{"schema_version":"verify.freshness_profile.v1","last_validated_at":"2026-06-10T00:30:45.088648+00:00","age_hours":4.33,"bucket":"verified_last_24h","label":"Verified in last 24h","badges":["verified_last_24h"],"freshness_sla_hours":168.0,"freshness_sla_status":"met","stale_score_suppressed":false,"display_score":45.67,"raw_score":45.67,"confidence_score":77.5,"confidence_weighted_score":35.4,"tier_status":[{"tier":"community","label":"Community","freshness_sla_hours":720,"met":true,"priority_revalidation":false},{"tier":"pro","label":"Pro","freshness_sla_hours":168,"met":true,"priority_revalidation":true},{"tier":"enterprise","label":"Enterprise","freshness_sla_hours":24,"met":true,"priority_revalidation":true}]},"current_status":"failing","current_score":45.67,"display_score":45.67,"stale_score_suppressed":false,"production_trust_decision":{"schema_version":"verify.executive_verdict.v1","decision":"Block for production","why":"failing live status + score below evaluation threshold","next_action":"revalidate, add safeguards, export policy","reason_count":2},"production_readiness_class":{"code":"needs_remediation","label":"Needs remediation","reason":"Current validation evidence shows operational or discovery gaps that should be fixed first."},"evidence_confidence":{"score":77.5,"label":"high","validation_age_hours":4.33,"live_check_count":26},"active_alerts":[{"code":"server_failing","severity":"critical","title":"Latest validation is failing"}]},"snapshot_invariant":{"schema_version":"verify.snapshot_invariant.v1","server":"github-saputrauta/lgtm-oncall-mcp","ok":true,"surface_snapshot_ids":{"page":"trustsnap_f0fb13a0c6d6f1d4","badge":null,"report":"trustsnap_f0fb13a0c6d6f1d4","policy":null},"checked_at":"2026-06-10T04:50:34.736717+00:00"},"history":{"points":[{"timestamp":"2026-06-06T06:16:33.909111+00:00","score":41.49,"status":"failing","latency_ms":10.41,"tool_count":0,"prompt_count":0,"resource_count":0},{"timestamp":"2026-06-06T15:07:41.167554+00:00","score":43.81,"status":"failing","latency_ms":8.74,"tool_count":0,"prompt_count":0,"resource_count":0},{"timestamp":"2026-06-06T23:08:43.253449+00:00","score":44.03,"status":"failing","latency_ms":10.17,"tool_count":0,"prompt_count":0,"resource_count":0},{"timestamp":"2026-06-07T10:12:44.768909+00:00","score":44.24,"status":"failing","latency_ms":11.49,"tool_count":0,"prompt_count":0,"resource_count":0},{"timestamp":"2026-06-07T21:43:54.100002+00:00","score":44.65,"status":"failing","latency_ms":11.17,"tool_count":0,"prompt_count":0,"resource_count":0},{"timestamp":"2026-06-08T10:09:40.070707+00:00","score":45.06,"status":"failing","latency_ms":9.22,"tool_count":0,"prompt_count":0,"resource_count":0},{"timestamp":"2026-06-08T18:26:23.884425+00:00","score":45.21,"status":"failing","latency_ms":9.85,"tool_count":0,"prompt_count":0,"resource_count":0},{"timestamp":"2026-06-09T03:41:35.410836+00:00","score":45.37,"status":"failing","latency_ms":10.08,"tool_count":0,"prompt_count":0,"resource_count":0},{"timestamp":"2026-06-09T13:09:11.816015+00:00","score":45.52,"status":"failing","latency_ms":10.15,"tool_count":0,"prompt_count":0,"resource_count":0},{"timestamp":"2026-06-10T00:30:45.088648+00:00","score":45.67,"status":"failing","latency_ms":12.35,"tool_count":0,"prompt_count":0,"resource_count":0}],"status_counts":{"failing":10},"score_delta_7d":null,"score_delta_30d":null,"avg_latency_ms":10.36,"healthy_ratio_recent":0.0,"freshness_hours":4.33,"latest_status":"failing"},"production_readiness":{"code":"needs_remediation","label":"Needs remediation","reason":"Current validation evidence shows operational or discovery gaps that should be fixed first.","badge":"score-low","critical_alerts":1},"agent_commerce_readiness":{"status":"beta","commerce_signal":"weak","payment_execution_detected":"no","billing_or_usage_detected":"no","quote_or_pricing_detected":"no","numeric_price_context":"yes","commercial_quote_context":"no","checkout_or_charge_detected":"no","checkout_term_observed":"no","payment_capable":"none","payment_rails":[],"purchase_stage_supported":[],"human_confirmation_required":"unknown","spending_policy_supported":"yes","receipt_supported":"unknown","refund_policy_present":"unknown","operator_identity":"declared","auth_required":"unknown","auth_scheme":"unknown","tool_risk_level":"unknown","tool_risk_score":60,"pricing_transparency":"unknown","schema_change_detected":"unknown","delegation_level":"none","evidence_level":"inferred","confidence":"low","highest_risk_tools":[],"skipped_unsafe_tools":[],"last_checked_at":"2026-06-10T04:50:32.895592+00:00","evidence":[{"field":"commerce_signal","value":"weak","evidence_level":"inferred","source":"server_metadata","matched_terms":["limit","rate"],"sample":null,"confidence":"low","last_checked_at":"2026-06-10T04:50:32.895592+00:00"}],"disclaimer":"Beta assessment. Verify detects evidence and risk signals but does not certify that this server is safe for autonomous purchases.","scores":{"auth_posture_score":0,"tool_risk_score":60,"payment_readiness_score":10,"agent_delegation_safety_score":50,"overall_agent_commerce_score":null},"warnings":[],"recommended_fixes":[]},"evidence_confidence":{"score":77.5,"label":"high","reason":"Based on 10 recent validations, 26 captured checks, and validation age of 4.3 hours.","live_check_count":26,"validation_age_hours":4.33},"recommended_for":[],"active_alerts":[{"code":"server_failing","severity":"critical","title":"Latest validation is failing","message":"Core MCP flows did not validate successfully on the latest run."}],"remediations":[{"code":"fix_tools_list","severity":"critical","title":"Ensure tools/list succeeds consistently","why":"Tools discovery is the minimum viable contract for most MCP clients and directories.","action":"Make tools/list succeed unauthenticated when possible, or document the auth flow in the server card.","playbook":["Make `tools/list` deterministic across repeated calls.","Document or relax auth requirements for discovery routes.","Check that tool names, descriptions, and schemas remain stable across deploys."],"maintainer_context":null},{"code":"fix_initialize_flow","severity":"critical","title":"Make initialize deterministic and client-friendly","why":"If initialize fails or requires undocumented auth, many MCP clients cannot connect.","action":"Allow initialize to succeed consistently, or return a deterministic auth-required response with clear metadata.","playbook":["Allow `initialize` to succeed unauthenticated when possible.","If auth is required, return a deterministic auth-required response and matching metadata.","Retest against `your remote MCP URL` from a clean client session."],"maintainer_context":null},{"code":"respond_server_failing","severity":"critical","title":"Respond to latest validation is failing","why":"Core MCP flows did not validate successfully on the latest run.","action":"Fix the failing checks first, then revalidate to confirm the recovery path.","playbook":["Fix the failing checks first.","Review the latest incident feed and validation diff for the first regression.","Revalidate once the remediation lands."]},{"code":"fix_transport_compliance","severity":"high","title":"Align session and protocol behavior with Streamable HTTP expectations","why":"Clients increasingly rely on MCP-Protocol-Version, session teardown, and expired-session semantics.","action":"Align MCP-Protocol-Version, MCP-Session-Id, DELETE teardown, and expired-session handling with the transport spec.","playbook":["Return `Mcp-Session-Id` and `Mcp-Protocol-Version` headers consistently on streamable HTTP responses.","Honor `DELETE` session teardown and return `404` when a deleted session is reused.","Reject invalid protocol-version headers with `400 Bad Request`."],"maintainer_context":null},{"code":"enforce_request_association","severity":"high","title":"Associate roots, sampling, and elicitation with active client requests","why":"Modern MCP guidance expects roots, sampling, and elicitation traffic to be tied to an active client request instead of arriving unsolicited on idle sessions.","action":"Inspect the latest validation evidence and resolve the client-visible regression.","playbook":["Inspect the latest validation evidence.","Resolve the highest-severity client-facing gap first.","Revalidate and confirm the score and verdict improve."],"maintainer_context":null},{"code":"publish_oauth_protected_resource","severity":"high","title":"Expose /.well-known/oauth-protected-resource","why":"Without a protected-resource document, OAuth clients cannot discover auth requirements reliably.","action":"Serve /.well-known/oauth-protected-resource and point it at your authorization server metadata.","playbook":["Serve `/.well-known/oauth-protected-resource` from the same host as the MCP endpoint.","Point it at the authorization server metadata URL.","Confirm clients receive consistent auth hints before tool execution."],"maintainer_context":null},{"code":"protect_connector_refreshes","severity":"high","title":"Keep connector refreshes backward compatible","why":"Managed connector clients freeze tool snapshots, so removed tools, new required args, and breaking output changes can break published integrations after refresh.","action":"Inspect the latest validation evidence and resolve the client-visible regression.","playbook":["Inspect the latest validation evidence.","Resolve the highest-severity client-facing gap first.","Revalidate and confirm the score and verdict improve."],"maintainer_context":null},{"code":"publish_oauth_authorization_server","severity":"high","title":"Publish OAuth authorization-server metadata","why":"Clients need authorization-server metadata to discover issuer, endpoints, and DCR support.","action":"Publish /.well-known/oauth-authorization-server from your issuer and include registration_endpoint when supported.","playbook":["Publish `/.well-known/oauth-authorization-server` from the issuer.","Add `registration_endpoint` if DCR is supported.","Verify issuer, authorization, token, and jwks metadata are all reachable."],"maintainer_context":null},{"code":"publish_server_card","severity":"high","title":"Publish a complete server card","why":"Missing or incomplete server-card metadata weakens discovery, documentation, and trust signals.","action":"Serve /.well-known/mcp/server-card.json and include tools, prompts/resources, homepage, and support links.","playbook":["Publish `/.well-known/mcp/server-card.json`.","Include homepage, repository, support, tools, prompts/resources, and auth metadata.","Revalidate the server after publishing the card."],"maintainer_context":null},{"code":"harden_interactive_flows","severity":"high","title":"Stop asking users to paste secrets directly","why":"Public MCP servers should prefer OAuth or browser-based auth guidance over in-band secret collection.","action":"Inspect the latest validation evidence and resolve the client-visible regression.","playbook":["Inspect the latest validation evidence.","Resolve the highest-severity client-facing gap first.","Revalidate and confirm the score and verdict improve."],"maintainer_context":null},{"code":"update_protocol_version","severity":"medium","title":"Adopt a current MCP protocol revision","why":"Older protocol revisions reduce compatibility with newer clients and registry programs.","action":"Inspect the latest validation evidence and resolve the client-visible regression.","playbook":["Inspect the latest validation evidence.","Resolve the highest-severity client-facing gap first.","Revalidate and confirm the score and verdict improve."],"maintainer_context":null},{"code":"improve_connector_publishability","severity":"medium","title":"Close connector-publishing gaps","why":"Connector catalogs care about protocol recency, session behavior, auth clarity, and tool-surface stability.","action":"Inspect the latest validation evidence and resolve the client-visible regression.","playbook":["Inspect the latest validation evidence.","Resolve the highest-severity client-facing gap first.","Revalidate and confirm the score and verdict improve."],"maintainer_context":null},{"code":"tighten_step_up_auth","severity":"medium","title":"Document minimal scopes and return cleaner auth challenges","why":"Modern clients expect granular scopes and step-up auth signals such as WWW-Authenticate scope hints.","action":"Return granular scopes and WWW-Authenticate challenge hints instead of forcing overly broad auth upfront.","playbook":["Advertise the narrowest viable scopes in OAuth metadata.","Return `WWW-Authenticate` challenges with scope or insufficient-scope hints when additional consent is needed.","Revalidate with both public discovery and auth-required flows."],"maintainer_context":null},{"code":"publish_openid_configuration","severity":"medium","title":"Publish OpenID configuration","why":"OIDC metadata improves token validation and client compatibility.","action":"Expose /.well-known/openid-configuration with issuer, jwks_uri, and supported grants.","playbook":["Inspect the latest validation evidence.","Resolve the highest-severity client-facing gap first.","Revalidate and confirm the score and verdict improve."],"maintainer_context":null},{"code":"improve_access_protocol","severity":"medium","title":"Raise Access & Protocol score","why":"Connectivity, auth, and transport expectations for common clients.","action":"Tighten auth discovery, session behavior, and transport metadata until remote clients can connect without guesswork.","playbook":["Inspect the latest validation evidence.","Resolve the highest-severity client-facing gap first.","Revalidate and confirm the score and verdict improve."]},{"code":"improve_adoption_market","severity":"medium","title":"Raise Adoption & Market score","why":"Adoption clues and public evidence that the server is intended for external use.","action":"Increase external documentation and directory coverage so users can discover and evaluate the server.","playbook":["Inspect the latest validation evidence.","Resolve the highest-severity client-facing gap first.","Revalidate and confirm the score and verdict improve."]},{"code":"improve_interface_quality","severity":"medium","title":"Raise Interface Quality score","why":"How well the tool/resource interface communicates and behaves under automation.","action":"Improve schemas, error contracts, and recovery messages so agents can reason about the surface automatically.","playbook":["Inspect the latest validation evidence.","Resolve the highest-severity client-facing gap first.","Revalidate and confirm the score and verdict improve."]},{"code":"stabilize_tool_surface","severity":"medium","title":"Reduce tool-surface churn","why":"Frequent add/remove or output-shape drift makes published connectors and cached tool snapshots brittle.","action":"Inspect the latest validation evidence and resolve the client-visible regression.","playbook":["Inspect the latest validation evidence.","Resolve the highest-severity client-facing gap first.","Revalidate and confirm the score and verdict improve."],"maintainer_context":null},{"code":"fix_prompts_list","severity":"medium","title":"Repair prompts/list or stop advertising prompts","why":"Prompt metadata should either work live or be removed from the advertised capability set.","action":"Only advertise prompts if prompts/list works and prompt arguments are documented.","playbook":["Only advertise prompts that are actually accessible.","Add prompt descriptions and argument docs.","Run a live `prompts/list` check after any prompt changes."],"maintainer_context":null},{"code":"fix_resources_list","severity":"medium","title":"Repair resources/list or stop advertising resources","why":"Resource metadata should either work live or be removed from the advertised capability set.","action":"Only advertise resources if resources/list works and resources expose stable URIs/types.","playbook":["Only advertise resources with stable URIs and read semantics.","Add MIME/type hints where possible.","Run a live `resources/list` and `resources/read` check after updates."],"maintainer_context":null},{"code":"repair_session_resume","severity":"medium","title":"Support resumable HTTP sessions cleanly","why":"Modern MCP clients increasingly expect resumable session behavior on streamable HTTP transports.","action":"Inspect the latest validation evidence and resolve the client-visible regression.","playbook":["Inspect the latest validation evidence.","Resolve the highest-severity client-facing gap first.","Revalidate and confirm the score and verdict improve."],"maintainer_context":null},{"code":"expand_utility_coverage","severity":"low","title":"Expose modern utility surfaces like completions, pagination, or tasks","why":"Utility coverage improves interoperability with larger clients and long-lived agent workflows.","action":"Expose completions, pagination, and task metadata where supported so larger clients can plan and resume work safely.","playbook":["Advertise `completions`, pagination cursors, and `tasks` only when they are actually supported.","Return `nextCursor` on large list operations when pagination is available.","Document task support and whether it requires step-up auth."],"maintainer_context":null},{"code":"harden_noise_resilience","severity":"low","title":"Harden generic GET handling","why":"Simple probe requests should not surface server instability or noisy failures.","action":"Harden generic GET handlers around the origin of your remote MCP URL so incidental traffic does not produce noisy failures.","playbook":["Inspect the latest validation evidence.","Resolve the highest-severity client-facing gap first.","Revalidate and confirm the score and verdict improve."],"maintainer_context":null},{"code":"expand_advanced_capabilities","severity":"low","title":"Publish newer MCP capability signals","why":"Roots, sampling, elicitation, structured outputs, and related metadata improve client understanding and ranking.","action":"Inspect the latest validation evidence and resolve the client-visible regression.","playbook":["Inspect the latest validation evidence.","Resolve the highest-severity client-facing gap first.","Revalidate and confirm the score and verdict improve."],"maintainer_context":null},{"code":"publish_to_official_registry","severity":"low","title":"Publish or reconcile the server in the official MCP registry","why":"Official registry presence improves discovery confidence and cross-source consistency.","action":"Inspect the latest validation evidence and resolve the client-visible regression.","playbook":["Inspect the latest validation evidence.","Resolve the highest-severity client-facing gap first.","Revalidate and confirm the score and verdict improve."],"maintainer_context":null}],"publisher_claim":{"verified":false,"status":"unclaimed","claim_url":"https://verify.sentinelsignal.io/claim?server=github-saputrauta%2Flgtm-oncall-mcp&source=report_json","reason_code":"machine_attention_detected","reason":"Agents and crawlers are already evaluating this server. Claim to publish authoritative owner, security, trust, and integration metadata.","score_neutral":true},"observed_attention":{"schema":"verify.observed_attention.v1","window_days":30,"level":"moderate","label":"Moderate observed attention","summary":"Recent machine-readable trust and discovery activity observed for this server.","segments":{"useful_ai_user":{"level":"none","observed":false,"description":"AI-assisted user sessions such as ChatGPT/User or Claude/User."},"machine_trust_evaluator":{"level":"none","observed":false,"description":"Synthetic sessions inspecting multiple trust surfaces such as report, policy, ledger, badge, trust-summary, or compare."},"possible_agent_or_script":{"level":"none","observed":false,"description":"Structured direct sessions with rapid profile, compare, report, policy, badge, or trust-surface fan-out."},"isolated_machine_surface":{"level":"none","observed":false,"description":"Aged-out direct synthetic singleton sessions that touched a machine-readable trust surface without becoming a broader evaluator."},"ai_crawler":{"level":"moderate","observed":true,"description":"Known AI crawler activity such as ClaudeBot, GPTBot, or similar crawlers."},"search_crawler":{"level":"low","observed":true,"description":"Search and SEO crawler activity."},"browser_like_automation":{"level":"none","observed":false,"description":"Browser-like synthetic sessions with rapid structured endpoint activity."},"confirmed_human":{"level":"none","observed":false,"description":"Confirmed browser-session human activity."}},"surfaces_observed":{"server_profile":true,"compare":false,"compare_json":false,"compare_api":true,"report_json":false,"policy":false,"ledger":true,"badge_metadata":false,"badge_svg":false,"trust_summary":false,"mcp_tool":false},"claim_prompt":{"recommended":true,"reason":"This server has recent machine attention. A verified publisher claim can improve owner, policy, security, and trust metadata available to agents."},"notes":["Observed attention is based on segmented first-party telemetry.","Crawler and evaluator activity is not treated as confirmed human demand.","Public levels are bucketed to avoid exposing raw traffic counts."]},"owner_activation":{"claim_recommended":true,"reason":"ai_discovery_detected","headline":"AI discovery detected","message":"This server is being discovered by AI users, crawlers, or machine trust evaluators on Verify. Claim this profile to add publisher metadata, official links, a security contact, and machine-readable trust details agents can use.","claim_url":"https://verify.sentinelsignal.io/claim?server=github-saputrauta%2Flgtm-oncall-mcp&source=report_json","trust_summary_url":"https://verify.sentinelsignal.io/v1/servers/github-saputrauta/lgtm-oncall-mcp/trust-summary"},"related_machine_surfaces":{"compare_index":"/compare.json","compare_api":"/v1/compare?server=github-saputrauta%2Flgtm-oncall-mcp","trust_summary":"/v1/servers/github-saputrauta/lgtm-oncall-mcp/trust-summary","ledger":"/v1/servers/github-saputrauta/lgtm-oncall-mcp/ledger","policy":"/v1/servers/github-saputrauta/lgtm-oncall-mcp/policy","report":"/v1/servers/github-saputrauta/lgtm-oncall-mcp/report"},"intelligence_api":{"available":true,"signup_url":"https://verify.sentinelsignal.io/verify-intelligence-api","use_case":"Programmatic MCP server trust, comparison, policy, and evidence enrichment."}}