{
  "name": "AgentScore",
  "description": "MCP security trust layer. Scans packages, provides trust verdicts, maps incident exposure, and monitors the MCP ecosystem continuously.",
  "url": "https://agentscores.xyz",
  "version": "2.0",
  "capabilities": ["mcp-scanning", "trust-verdict", "exposure-mapping", "monitoring", "advisories"],
  "endpoints": {
    "scan": {
      "url": "https://agentscores.xyz/api/scan?npm={packageName}",
      "method": "GET",
      "description": "Scan any npm package for MCP security issues"
    },
    "verdict": {
      "url": "https://agentscores.xyz/api/verdict?npm={packageName}",
      "method": "GET",
      "description": "Trust verdict: allow, warn, or block"
    },
    "exposure": {
      "url": "https://agentscores.xyz/api/exposure?npm={packageName}",
      "method": "GET",
      "description": "Which monitored MCP servers depend on this package"
    },
    "advisories": {
      "url": "https://agentscores.xyz/api/advisories",
      "method": "GET",
      "description": "Security advisories feed"
    },
    "monitor": {
      "url": "https://agentscores.xyz/api/monitor?npm={packageName}",
      "method": "GET",
      "description": "Monitoring status and scan history"
    }
  },
  "mcp_server": {
    "npm": "@agentscore-xyz/mcp-server",
    "transport": "stdio",
    "tools": ["scan_package", "get_verdict", "check_exposure", "check_abuse", "monitor_status"]
  }
}