Armor1 MCP Security
The Armor1 MCP Security Analyzer visualizes MCP server and client security risks, developer exposure to high-risk AI tools, shadow server discovery, and supply chain risk. It tracks remediation posture and correlates device-level risk with enterprise identity using data from the Armor1 blueprint.
Required Blueprints: Armor1
Sightlines
| Sightline | Description |
|---|---|
| MCP Server Risk | Insights into MCP server catalog risk posture including high-risk, shadow, and expired trust entries. |
| Developer Exposure | Insights into developers exposed to high-risk MCP servers or clients, and devices without a linked platform identity. |
| Clients & Skills | Insights into high-risk MCP client catalogs and AI skill catalog risk posture. |
| Remediation | Track open remediation actions and overall risk posture change across MCP assets. |
Insight Models
| Model ID | Name | Description |
|---|---|---|
| SB-Armor1-HighRiskServers | High Risk MCP Servers | Curated MCP servers with RiskLevel = danger as assessed by Armor1. |
| SB-Armor1-ShadowServers | Shadow MCP Servers | MDM-discovered MCP servers with no curated catalog match — potential rogue or unvetted AI tooling. |
| SB-Armor1-ExpiredServerTrust | MCP Servers with Expired Trust | Curated MCP servers where trust attestation has expired and re-attestation is required. |
| SB-Armor1-HighRiskClients | High Risk MCP Clients | MCP client catalogs with RiskLevel = danger based on Armor1 client risk assessments. |
| SB-Armor1-RiskPostureChange | MCP Risk Posture Change | MCP servers and clients with any elevated risk level — changes in this set indicate a posture shift. |
| SB-Armor1-OpenRemediationActions | Open MCP Remediation Actions | Armor1 risk assessment records with status failure or warning awaiting remediation. |
| SB-Armor1-DevicesWithoutOwner | MDM Devices Without Platform Identity | MDM device users that cannot be linked to a platform identity — ownership gap increases blast radius risk. |
| SB-Armor1-HighRiskSkills | High Risk MCP Skills | MCP skill catalog entries with RiskLevel of danger or warning as assessed by Armor1. |
| SB-Armor1-UsersExposedHighRiskServers | Users Exposed to High Risk MCP Servers | Platform identities reachable through MDM device users connected to high-risk or shadow MCP servers. |
| SB-Armor1-UsersExposedHighRiskClients | Users Exposed to High Risk MCP Clients | Platform identities reachable through MDM device users whose current risk assessment is high. |
Risk Score
Armor1 MCP Security uses the AISPM risk score formula:
Final Score = Technical Risk × Business Impact Multiplier × Risk Modifier
| Node Type | OWASP Category | Score | Type |
|---|---|---|---|
armor1.mcpserver.MCPServerCatalog | Tool / MCP | 90 | Deployed — Attack Surface derived from Armor1 RiskScore (×100) |
armor1.mcpclient.MCPClientCatalog | Tool / MCP | 90 | Deployed — Attack Surface derived from Armor1 RiskScore (×100) |
armor1.skill.SkillCatalog | Tool / MCP | 90 | Deployed — Attack Surface from SkillRiskAssessment.OverallScore or RiskLevel fallback |
armor1.shadowserver.ShadowServerCatalog | Supply Chain | 80 | Non-deployed — score equals Threat Severity |
armor1.risk.RiskAssessmentRecord | Tool / MCP | 90 | Non-deployed — score equals Threat Severity |
armor1.user.User | Sensitive Data Leakage | 85 | Non-deployed — blast radius identity finding |
armor1.mdm.User | Observability Gap | 40 | Non-deployed — identity ownership gap |
Explorer Node Types
Use these node types in Explorer or KAI to query resources surfaced by this analyzer:
armor1.mcpserver.MCPServerCatalog, armor1.mcpserver.MCPTool, armor1.mcpserver.MCPServerRiskAnalysis, armor1.shadowserver.ShadowServerCatalog, armor1.mcpclient.MCPClientCatalog, armor1.mcpclient.MCPClientUser, armor1.skill.SkillCatalog, armor1.skill.SkillRiskAssessment, armor1.risk.RiskAssessmentRecord, armor1.mdm.User, armor1.user.User, armor1.tenant.Tenant, armor1.tenant.TenantUser, armor1.group.Group, armor1.policy.PolicyInstance