Weekly MCP Server Roundup: 10 New Arrivals
The MCP ecosystem continues to expand with specialized servers for common integration patterns. This week we surveyed 10 recent/updated servers across search, filesystem operations, web content retrieval, and domain-specific tools. Here's what stands out.
Score Breakdown by Dimension
| Server | Overall | Security | Freshness | Adoption | Quality | Trust |
|---|---|---|---|---|---|---|
| searxng-mcp-bridge | 84.0 | 100.0 | 100.0 | 45.1 | 100.0 | 50.0 |
| fs-mcp | 83.2 | 100.0 | 100.0 | 41.1 | 100.0 | 50.0 |
| fetch-url-mcp | 76.9 | 100.0 | 65.0 | 53.1 | 100.0 | 50.0 |
| anysearch-mcp-server | 76.2 | 100.0 | 100.0 | 25.9 | 60.0 | 50.0 |
| opik-mcp | 71.6 | 80.0 | 100.0 | 23.1 | 90.0 | 50.0 |
| @ironbee-ai/devtools | 62.4 | 100.0 | 30.0 | 44.3 | 60.0 | 50.0 |
| relay-mcp-server | 60.8 | 100.0 | 30.0 | 36.4 | 60.0 | 50.0 |
| @centia-io/mcp-server | 59.0 | 100.0 | 30.0 | 27.3 | 60.0 | 50.0 |
| mcp-server-fear-greed | 54.9 | 100.0 | 30.0 | 27.0 | 20.0 | 50.0 |
| flow-like | 43.9 | 0.0 | 100.0 | 29.4 | 80.0 | 50.0 |
Security & Risk Assessment
🚨 CRITICAL: flow-like has 12 secrets detected in the repository. This is a severe security red flag. The project scores 0.0 on security assessment and carries high risk classification. Do not deploy this package in production until all secrets are rotated, the repository is audited, and compromised credentials are invalidated.
opik-mcp has 1 secret detected. While a lower count than flow-like, this still warrants verification before production use.
Inherent Risk Classes: Several high-scoring servers carry high risk classifications due to privileged capabilities: searxng-mcp-bridge, fs-mcp, and fetch-url-mcp all read/write filesystems and make network calls. These capabilities are necessary for their function, but deployment should restrict file access to safe directories and network requests to allowlisted domains. anysearch-mcp-server is the only entry with low risk, though it has no observable tool count in the data.
Risk classification is unknown for several npm-only packages lacking GitHub repositories, making trustworthiness assessment impossible.
Adoption & Activity
@j0hanz/fetch-url-mcp is the adoption leader with 26,598 weekly npm downloads—substantially ahead of the field. This production-grade tool for converting web pages to Markdown has 80+ releases and broad community use.
Active Maintainers: @nitish-raj/searxng-mcp-bridge (68 releases in 365 days, 1,015 weekly downloads, commit 2 days old) and @jungho-dev/fs-mcp (1,484 weekly downloads, commit 1 day old) both show vigorous development cycles. Steady release velocity and fresh commits indicate responsive teams.
Early Stage: Multiple servers show low adoption and stale activity: @centia-io/mcp-server (187 weekly, no recent commits), mcp-server-fear-greed (178 weekly, inactive), and @openjiuwen/relay-mcp-server (1,070 weekly, inactive). Several npm packages lack GitHub repositories entirely, making community contribution and transparency assessment impossible.
opik-mcp registers zero weekly npm downloads despite 204 GitHub stars, suggesting users prefer the GitHub distribution or web-based access over the packaged version. It maintains a smaller but possibly more focused user base.
Editor's Pick: Production-Ready Servers
🏆 Best Overall: @nitish-raj/searxng-mcp-bridge
Score 84, perfect security and freshness, 68 releases/year, 1,015 weekly downloads. This is the standout of the batch. If you need seamless SearxNG integration in your MCP agent, this is production-ready and actively maintained.
npm install @nitish-raj/searxng-mcp-bridge🥈 Filesystem Access: @jungho-dev/fs-mcp
Score 83.2, perfect quality and security scores, latest commit 1 day ago. The high risk classification is expected for filesystem operations. Deploy with sandboxing: restrict to specific directories, disable dangerous operations, and audit access patterns.
npm install @jungho-dev/fs-mcp🥉 Web Scraping: @j0hanz/fetch-url-mcp
Score 76.9 with 26k weekly downloads and 100 quality score. Proven in production across broad use. Ideal for agents that need to convert web content to structured Markdown.
npm install @j0hanz/fetch-url-mcp⛔ Avoid: flow-like
12 detected secrets + 0.0 security score = do not use until the maintainers conduct a full security audit and rotate all credentials. The architectural ambitions (867 stars) are interesting, but current state is unsafe.