{"passport":{"unfragile":{"@version":"1.0","version":"2026-05","artifact":{"id":"awesome-rad-security","slug":"rad-security","name":"RAD Security","type":"mcp","url":"https://github.com/rad-security/mcp-server","page_url":"https://unfragile.ai/rad-security","categories":["mcp-servers","code-review-security"],"tags":[],"pricing":{"model":"open_source","free":true,"starting_price":null},"status":"active","verified":false},"capabilities":[{"id":"awesome-rad-security__cap_0","uri":"capability://tool.use.integration.kubernetes.security.posture.assessment.via.mcp.protocol","name":"kubernetes security posture assessment via mcp protocol","description":"Connects Claude and other MCP-compatible clients to RAD Security's cloud platform to analyze Kubernetes cluster configurations, workload deployments, and runtime behaviors for security misconfigurations and vulnerabilities. Uses the Model Context Protocol as a standardized bridge, allowing Claude to invoke RAD Security tools as native functions without custom integrations, with results streamed back as structured security findings.","intents":["I want Claude to audit my Kubernetes cluster for security issues without leaving the chat interface","I need to integrate RAD Security scanning into my Claude-based security workflow","I want to query Kubernetes security posture as part of a larger AI-driven analysis task"],"best_for":["DevOps engineers using Claude for infrastructure security reviews","Security teams building AI-assisted compliance workflows","Platform engineers integrating security scanning into LLM-powered tools"],"limitations":["Requires active RAD Security account and API credentials — no local-only scanning","MCP protocol overhead adds ~500ms per request round-trip to RAD Security platform","Limited to Kubernetes environments; does not support other container orchestrators","Depends on RAD Security's cloud availability — no offline fallback"],"requires":["RAD Security account with API key/token","MCP-compatible client (Claude Desktop, or custom MCP host)","Network access to RAD Security API endpoints","Kubernetes cluster with appropriate RBAC permissions for scanning"],"input_types":["Kubernetes cluster credentials (kubeconfig or service account token)","Cluster identifiers or namespaces to scan","Natural language queries about security posture"],"output_types":["Structured security findings (JSON/YAML)","Risk severity classifications","Remediation recommendations","Compliance mapping data"],"categories":["tool-use-integration","security-scanning"],"confidence":0.5,"matches":0,"success_rate":0},{"id":"awesome-rad-security__cap_1","uri":"capability://tool.use.integration.cloud.environment.security.scanning.and.threat.detection","name":"cloud environment security scanning and threat detection","description":"Scans cloud infrastructure (AWS, GCP, Azure) for misconfigurations, exposed credentials, overly permissive IAM policies, and runtime threats using RAD Security's AI-powered analysis engine. The MCP server exposes these scanning capabilities as callable tools, allowing Claude to trigger scans, retrieve results, and correlate findings across multiple cloud accounts or regions in a single analysis session.","intents":["I want to scan my AWS account for security misconfigurations and get AI-generated remediation steps","I need to check multiple cloud environments for compliance violations in one workflow","I want Claude to identify and explain cloud security risks in plain language"],"best_for":["Cloud security engineers performing multi-cloud audits","DevSecOps teams automating compliance checks","Security architects using Claude for threat modeling and risk assessment"],"limitations":["Scanning latency depends on cloud environment size — large accounts may take 2-5 minutes per scan","Requires cloud provider credentials (AWS keys, GCP service accounts, etc.) — credential management is user's responsibility","RAD Security's threat detection rules are proprietary and not customizable via MCP","No real-time monitoring — scans are on-demand only"],"requires":["RAD Security account with cloud provider integrations enabled","Cloud provider credentials (AWS IAM keys, GCP service account, Azure credentials)","MCP-compatible client with network access to RAD Security API","Appropriate IAM permissions in cloud accounts to read configuration and security metadata"],"input_types":["Cloud account identifiers (AWS account IDs, GCP project IDs, Azure subscription IDs)","Scope filters (regions, resource types, tags)","Natural language scan requests"],"output_types":["Security findings with severity levels (critical, high, medium, low)","Misconfiguration details and affected resources","Remediation guidance and code snippets","Compliance mapping (CIS, PCI-DSS, etc.)"],"categories":["tool-use-integration","safety-moderation"],"confidence":0.5,"matches":0,"success_rate":0},{"id":"awesome-rad-security__cap_2","uri":"capability://planning.reasoning.ai.powered.security.finding.analysis.and.remediation.recommendation","name":"ai-powered security finding analysis and remediation recommendation","description":"Processes raw security findings from Kubernetes and cloud scans through RAD Security's AI engine to generate contextual remediation recommendations, risk prioritization, and compliance mapping. The MCP server exposes analysis endpoints that Claude can invoke to transform low-level security data into actionable, business-contextualized guidance with code examples and implementation steps.","intents":["I want Claude to explain why a security finding matters and how to fix it in plain language","I need prioritized remediation steps for a large number of security findings","I want to understand the business impact of a security misconfiguration"],"best_for":["Security teams translating technical findings into actionable remediation","DevOps engineers who need remediation guidance without deep security expertise","Compliance officers mapping findings to regulatory requirements"],"limitations":["Remediation recommendations are generic — may not account for application-specific constraints or legacy system requirements","AI analysis quality depends on RAD Security's training data — novel or edge-case vulnerabilities may receive generic guidance","No interactive remediation — Claude can suggest fixes but cannot directly apply them to infrastructure"],"requires":["RAD Security account with AI analysis features enabled","Security findings from prior Kubernetes or cloud scans","MCP-compatible client with sufficient context window for detailed analysis"],"input_types":["Raw security findings (JSON/YAML from scans)","Cluster or account metadata for context","Natural language questions about findings"],"output_types":["Prioritized remediation steps","Code snippets for fixes (Kubernetes manifests, Terraform, CloudFormation, etc.)","Compliance mapping and audit trail","Risk scoring and business impact assessment"],"categories":["planning-reasoning","safety-moderation"],"confidence":0.5,"matches":0,"success_rate":0},{"id":"awesome-rad-security__cap_3","uri":"capability://tool.use.integration.real.time.kubernetes.workload.security.monitoring.and.alerting","name":"real-time kubernetes workload security monitoring and alerting","description":"Monitors running Kubernetes workloads for runtime security events (privilege escalation attempts, suspicious process execution, network anomalies) and exposes alerts through MCP tools that Claude can query and analyze. The MCP server polls RAD Security's monitoring backend for new alerts and allows Claude to retrieve alert details, correlate events across workloads, and trigger investigation workflows.","intents":["I want Claude to check for recent security incidents in my Kubernetes cluster and summarize them","I need to investigate a suspicious workload behavior and understand the security implications","I want to correlate security alerts across multiple clusters to identify patterns"],"best_for":["Security operations centers (SOCs) using Claude for alert triage and investigation","DevOps teams monitoring production Kubernetes clusters for runtime threats","Incident response teams investigating security events"],"limitations":["Alert latency depends on RAD Security's monitoring agent refresh rate — typically 30-60 seconds behind real-time events","Requires RAD Security monitoring agents deployed in each Kubernetes cluster — adds operational overhead","Alert volume can be high in large clusters — Claude's context window may be exceeded if querying many alerts at once","No direct remediation — Claude can recommend actions but cannot automatically kill pods or block traffic"],"requires":["RAD Security monitoring agents installed in Kubernetes clusters (DaemonSet or sidecar)","RAD Security account with real-time monitoring enabled","Network connectivity from agents to RAD Security backend","MCP-compatible client with sufficient context for alert analysis"],"input_types":["Time range for alert queries","Filters (cluster, namespace, workload, severity)","Natural language alert investigation requests"],"output_types":["Alert details (timestamp, severity, affected workload, event type)","Correlated events and attack chains","Investigation recommendations","Incident severity assessment"],"categories":["tool-use-integration","automation-workflow"],"confidence":0.5,"matches":0,"success_rate":0},{"id":"awesome-rad-security__cap_4","uri":"capability://data.processing.analysis.compliance.and.audit.trail.generation.for.security.findings","name":"compliance and audit trail generation for security findings","description":"Generates compliance-mapped audit trails and reports for security findings, correlating them with regulatory frameworks (CIS Kubernetes Benchmark, PCI-DSS, HIPAA, SOC 2) and producing evidence for compliance audits. The MCP server exposes endpoints that Claude can invoke to generate compliance reports, map findings to control requirements, and produce audit documentation suitable for external auditors.","intents":["I need to generate a compliance report showing how our Kubernetes cluster meets CIS benchmarks","I want to map security findings to PCI-DSS requirements for our audit","I need to produce evidence of security controls for a SOC 2 audit"],"best_for":["Compliance officers and auditors preparing for external audits","Security teams documenting control implementation for regulatory requirements","DevOps teams generating compliance evidence for infrastructure changes"],"limitations":["Compliance mappings are based on RAD Security's interpretation of standards — may not align with organization's specific compliance requirements","Reports are generated from scan data only — do not include manual control assessments or policy documentation","Audit trail generation is point-in-time — does not track historical compliance drift over time","Requires manual review and sign-off by compliance officers before submission to auditors"],"requires":["RAD Security account with compliance mapping features","Prior security scans of Kubernetes and cloud environments","MCP-compatible client","Compliance framework selection (CIS, PCI-DSS, HIPAA, SOC 2, etc.)"],"input_types":["Compliance framework selection","Scan results and findings","Organization metadata (name, audit scope, etc.)"],"output_types":["Compliance reports (PDF, JSON, HTML)","Control mapping matrices","Audit evidence and supporting documentation","Remediation status tracking"],"categories":["data-processing-analysis","automation-workflow"],"confidence":0.5,"matches":0,"success_rate":0},{"id":"awesome-rad-security__cap_5","uri":"capability://automation.workflow.multi.cluster.security.orchestration.and.cross.cluster.correlation","name":"multi-cluster security orchestration and cross-cluster correlation","description":"Orchestrates security scanning and analysis across multiple Kubernetes clusters simultaneously, correlating findings and threat patterns across cluster boundaries to identify infrastructure-wide security issues. The MCP server manages cluster discovery, parallel scan execution, and cross-cluster data correlation, allowing Claude to reason about security posture across entire Kubernetes fleets.","intents":["I want to scan all my Kubernetes clusters at once and identify common security issues","I need to correlate security findings across dev, staging, and production clusters","I want to understand if a vulnerability in one cluster affects others"],"best_for":["Platform teams managing multiple Kubernetes clusters across environments","Large enterprises with distributed Kubernetes infrastructure","Security teams conducting infrastructure-wide security assessments"],"limitations":["Parallel scan execution increases API load on RAD Security backend — may trigger rate limiting for large cluster counts","Cross-cluster correlation requires consistent cluster naming and metadata — heterogeneous cluster configurations may reduce correlation accuracy","Scan time scales linearly with cluster count — scanning 50+ clusters may take 10+ minutes","Requires credentials for all clusters — credential management complexity increases with cluster count"],"requires":["RAD Security account with multi-cluster support","Credentials for all Kubernetes clusters to be scanned","MCP-compatible client with sufficient context for large result sets","Network connectivity from RAD Security to all cluster API servers"],"input_types":["Cluster identifiers or kubeconfig files for multiple clusters","Scan scope (all clusters, specific environments, specific namespaces)","Correlation filters (resource types, severity levels, etc.)"],"output_types":["Unified security findings across all clusters","Cross-cluster correlation reports","Infrastructure-wide risk assessment","Cluster-specific and aggregate remediation recommendations"],"categories":["automation-workflow","planning-reasoning"],"confidence":0.5,"matches":0,"success_rate":0},{"id":"awesome-rad-security__cap_6","uri":"capability://automation.workflow.security.policy.validation.and.drift.detection","name":"security policy validation and drift detection","description":"Validates Kubernetes and cloud configurations against organization-defined security policies and detects policy drift (deviations from approved configurations) over time. The MCP server exposes policy validation endpoints that Claude can invoke to check current configurations against policies, identify drift, and recommend corrective actions to restore compliance.","intents":["I want to check if my Kubernetes cluster still complies with our security policies","I need to detect when someone changed a security-critical configuration","I want to enforce consistent security policies across all my clusters"],"best_for":["Platform teams enforcing consistent security policies across infrastructure","DevOps teams detecting unauthorized configuration changes","Security teams monitoring policy compliance over time"],"limitations":["Policy validation is based on RAD Security's policy engine — custom organizational policies may require manual mapping","Drift detection is point-in-time — does not provide historical audit trail of when drift occurred","No automatic remediation — Claude can recommend fixes but cannot automatically revert configurations","Requires policy definitions to be pre-configured in RAD Security — no ad-hoc policy creation via MCP"],"requires":["RAD Security account with policy validation features","Security policies defined in RAD Security platform","Prior baseline scans to establish policy compliance state","MCP-compatible client"],"input_types":["Cluster or account identifiers","Policy selection (predefined or custom)","Time range for drift detection"],"output_types":["Policy compliance status (compliant, non-compliant, drift detected)","Specific configuration deviations","Remediation steps to restore compliance","Drift timeline and change history"],"categories":["automation-workflow","safety-moderation"],"confidence":0.5,"matches":0,"success_rate":0}],"trust":{"score":30,"verified":false,"data_access_risk":"high","permissions":["RAD Security account with API key/token","MCP-compatible client (Claude Desktop, or custom MCP host)","Network access to RAD Security API endpoints","Kubernetes cluster with appropriate RBAC permissions for scanning","RAD Security account with cloud provider integrations enabled","Cloud provider credentials (AWS IAM keys, GCP service account, Azure credentials)","MCP-compatible client with network access to RAD Security API","Appropriate IAM permissions in cloud accounts to read configuration and security metadata","RAD Security account with AI analysis features enabled","Security findings from prior Kubernetes or cloud scans"],"failure_modes":["Requires active RAD Security account and API credentials — no local-only scanning","MCP protocol overhead adds ~500ms per request round-trip to RAD Security platform","Limited to Kubernetes environments; does not support other container orchestrators","Depends on RAD Security's cloud availability — no offline fallback","Scanning latency depends on cloud environment size — large accounts may take 2-5 minutes per scan","Requires cloud provider credentials (AWS keys, GCP service accounts, etc.) — credential management is user's responsibility","RAD Security's threat detection rules are proprietary and not customizable via MCP","No real-time monitoring — scans are on-demand only","Remediation recommendations are generic — may not account for application-specific constraints or legacy system requirements","AI analysis quality depends on RAD Security's training data — novel or edge-case vulnerabilities may receive generic guidance","builder identity is not verified yet","no observed match outcomes yet"],"rank_breakdown":{"adoption":0.05,"quality":0.39,"ecosystem":0.49999999999999994,"match_graph":0.25,"freshness":0.52,"weights":{"adoption":0.25,"quality":0.25,"ecosystem":0.15,"match_graph":0.23,"freshness":0.12}},"observed_outcomes":{"matches":0,"success_rate":0,"avg_confidence":0,"top_intents":[],"last_matched_at":null},"maintenance":{"status":"active","updated_at":"2026-06-17T09:51:04.048Z","last_scraped_at":"2026-05-03T14:00:15.503Z","last_commit":null},"community":{"stars":null,"forks":null,"weekly_downloads":null,"model_downloads":null,"model_likes":null}},"distribution":{"claim_url":"https://unfragile.ai/submit?claim=rad-security","compare_url":"https://unfragile.ai/compare?artifact=rad-security"}},"signature":"5MEOW6AMd4bpUUb9kzx07fsFCMHEwDDGloVKpG6L5mXgEz665LEjPKu9Qx56rX7jZAf34eSKG7Pri/PRomnICg==","signedAt":"2026-06-19T13:07:08.274Z","signedBy":"unfragile.ai","version":1},"_links":{"self":"https://unfragile.ai/api/v1/passport/rad-security","artifact":"https://unfragile.ai/rad-security","verify":"https://unfragile.ai/api/v1/verify?slug=rad-security","publicKey":"https://unfragile.ai/api/v1/trust-passport-public-key","spec":"https://unfragile.ai/trust","schema":"https://unfragile.ai/schema.json","docs":"https://unfragile.ai/docs"}}