{"slug":"tiluckdave/hound-mcp","name":"Hound MCP","description":"Hound is a free, open-source MCP server that gives AI coding agents a nose for supply chain security. It scans packages for vulnerabilities, checks licenses, inspects dependency trees, and detects typosquatting — with zero API keys, zero config, and zero cost.","category":"development","tags":[],"official":false,"stars":5,"transport":"stdio","install":[{"cmd":"npx -y hound-mcp","imports":[]}],"tools":[{"name":"hound_audit","description":"Scan an entire lockfile for vulnerabilities across all dependencies"},{"name":"hound_score","description":"0–100 Hound Score (vulns + scorecard + recency + license) with letter grade"},{"name":"hound_compare","description":"Side-by-side comparison of two packages with a recommendation"},{"name":"hound_preinstall","description":"GO / CAUTION / NO-GO verdict before installing a package"},{"name":"hound_upgrade","description":"Find the minimum safe version upgrade that resolves all known vulns"},{"name":"hound_license_check","description":"Scan a lockfile for license compliance against a policy"},{"name":"hound_vulns","description":"All known vulnerabilities for a package version, grouped by severity"},{"name":"hound_inspect","description":"Full package profile — license, vulns, scorecard, stars, dep count"},{"name":"hound_tree","description":"Full resolved dependency tree with transitive deps"},{"name":"hound_typosquat","description":"Detect typosquatting variants of a package name"},{"name":"hound_advisories","description":"Full advisory details by GHSA, CVE, or OSV ID"},{"name":"hound_popular","description":"Scan popular packages for known vulnerabilities"}],"env_vars":[],"auth_type":"none","github":"https://github.com/tiluckdave/hound-mcp","homepage":"","server_url":"","status":"active","source":"mcpservers.org","updated_at":"Thu May 28"}