Secure Fetch MCP
Hardened MCP fetch server that prevents agent access to local/internal resources (SSRF protection).
๐ก๏ธ AgentReady threat assessment
MAESTRO 7-layer threat model + OWASP AIVSS risk score for Secure Fetch MCP, derived from its capabilities.
AIVSS 2.8 ยท Low
View MAESTRO 7-layer threat model โOverview
A security-focused fetch MCP server designed to prevent access to local resources, mitigating server-side request forgery when an agent fetches URLs. It gates outbound requests away from internal metadata endpoints and private ranges. Its whole purpose is to reduce the SSRF risk inherent to generic fetch tools.
Key features
- URL fetching with SSRF guardrails
- Blocks local/internal resource access
- Safer replacement for generic fetch
Use cases
- Safely fetching web content in agents
- Preventing SSRF in tool-augmented LLMs