Keycloak
UnverifiedNPMkeycloak-mcp
D
Catalogue entry updated 8 days ago
Auth postureNot probedno remote endpoint probed yet
Tools91 Destructive · 3 Write · 5 Read
Worst categoryDestructivegrade tracks the peak, not the average
Capability mix
Destructive 1Write 3Read 5
What it can reach
Ingests untrusted inputTouches secretsReaches networkRuns codeTouches filesChanges permissionsSends external commsPersistsDeletes dataMoves money
Tools 9
delete-useradd-user-to-groupassign-client-role-to-usercreate-userlist-client-roles
View all 9 tools
Change history
No changes recorded since first scan. Watched servers surface a diff within the hour.
Recommended policy
delete-userdeny
add-user-to-grouprate limit
Read-only toolsallow
Full policy breakdown with enforcement rules →