๐Ÿ›ก๏ธ Independent Trust Authority

Trust, but verify.

Every AI tool scanned, scored, and certified. Know what your AI tools are doing before you connect.

No account required ยท Results are public ยท Max 5 scans/hour

Trust Score Distribution

Recently Scanned

View all โ†’

Highest Rated

View all โ†’

Newly Certified

View all โ†’

Recently Flagged

View all โ†’

Recently Indexed Packages

View all โ†’

Touchstone Security Research

View Advisories โ†’

Vulnerability Research

63 automated checks across 9 domains including A2A Agent Card security, tool poisoning, input validation, data security, supply chain, infrastructure, and runtime. Findings scored with OWASP AIVSS.

Supply Chain & SBOM

CycloneDX SBOM generation, dependency vulnerability scanning via OSV, Sigstore provenance verification, and container hardening analysis for every indexed package.

10 Compliance Frameworks

Every finding mapped to CoSAI, OWASP MCP Top 10, OWASP Agentic AI Top 10, MITRE ATLAS, NIST AI RMF, EU AI Act, ISO 42001, MAESTRO, SOC 2 Type II, and HITRUST CSF. Published advisories include full compliance context.

Red Team Testing

219 automated adversarial attack templates across 14 categories. Prompt injection, tool poisoning, privilege escalation, jailbreak, encoding bypass, and more. Available via API and CLI.

Published Advisories Check Reference (63) Red Team Dashboard

More CraftedTrust Products

View platform directory โ†’

Identity & Access

Accounts, organizations, MFA, linked emails, notifications, roles, and API keys that connect Registry, Touchstone, Audit, and Governance flows.

Learn more

Runtime Gateway

In-path policy enforcement, runtime receipts, approvals, and operational containment for agent tool traffic in production.

Explore runtime gateway

Governance

Cross-service oversight for server posture, agent activity, alerts, and policy visibility across the platform control plane.

Explore governance

Trace

Trace ingestion, OTLP support, execution search, and alert rules for teams that need workflow observability beyond receipts and logs.

See trace

Enterprise Controls

The admin and API layer behind AI Chat Shield, including extension inventory, device posture, policy, and compliance-oriented workflows.

View enterprise controls

AI Chat Shield

Browser-side AI extension and device-risk protection that connects directly into Identity, Governance, and enterprise reporting.

Explore AI Chat Shield

Open Source Toolkit

CLI, CI examples, gateway starter policies, and demo targets that make trust checks easier to adopt without a sales conversation.

Open developer toolkit

Coverage Methodology

See how CraftedTrust distinguishes indexed, live-verified, certified, and monitored servers so public coverage claims stay meaningful.

See coverage story

Compliance Readiness

Framework-oriented readiness offers built on trust scans, runtime receipts, governance visibility, and exportable evidence.

See compliance offers
Resources Hub Open Source Toolkit AI Chat Shield Publisher Center Compliance Readiness

Get Your Server Certified

Stand out in MCP marketplaces with a verified trust badge. Prove to users your server is safe, transparent, and trustworthy.

Start Certification Learn More