Validate URLs against phishing, malware, and suspicious content using AI trust scoring and Google threat intelligence APIs. For developers building security-aware applications, chatbots, or content moderation systems.
io.github.OjasKord/url-safety-validator-mcp
https://url-safety-validator-mcp-production.up.railway.app
HTTP
1 required env var
How models use it and what it is built for.
Validate URLs against phishing, malware, and suspicious content using AI trust scoring and Google threat intelligence APIs. For developers building security-aware applications, chatbots, or content moderation systems.
Hosted endpoint — paste into any MCP client.
Configuration this server reads at startup.
Anthropic API key for AI trust scoring
Google Web Risk API key (commercial). Degrades gracefully without it.
Google Safe Browsing API key (free tier available).
Where to find authoritative docs and source for URL Safety Validator.
Paste any of these into Agent Studio after connecting URL Safety Validator.
Common questions about connecting and running URL Safety Validator.
What does the URL safety validator return?
It returns a verdict (SAFE, SUSPICIOUS, or DANGEROUS), a trust score, and threat intelligence data from Google Web Risk and Safe Browsing APIs. The AI component uses your Anthropic API key to enhance scoring.
Do I need both Google API keys to use this server?
No. GOOGLE_SAFE_BROWSING_API_KEY (free tier) is recommended, but the server degrades gracefully without it. GOOGLE_WEB_RISK_API_KEY is optional for commercial threat data. Only ANTHROPIC_API_KEY is required.
How do I set up the URL safety validator MCP server?
Install with `npx url-safety-validator-mcp@1.2.6`, then set ANTHROPIC_API_KEY and optionally GOOGLE_SAFE_BROWSING_API_KEY and GOOGLE_WEB_RISK_API_KEY as environment variables. The server runs on HTTP at https://url-safety-validator-mcp-production.up.railway.app.
Can I use this server without Google Safe Browsing API?
Yes, the server will still work with just ANTHROPIC_API_KEY, but you'll lose access to Google's threat database. Adding GOOGLE_SAFE_BROWSING_API_KEY (free tier) significantly improves detection accuracy.
What's the difference between the two Google API keys?
GOOGLE_SAFE_BROWSING_API_KEY provides free-tier phishing and malware detection. GOOGLE_WEB_RISK_API_KEY is a commercial API with more comprehensive threat intelligence. Both are optional and the server works without them.
Connect URL Safety Validator to Claude, GPT, Gemini, DeepSeek and 30+ AI models in MCP Agent Studio. Compare answers side-by-side, save reusable agent presets, share runs — all in your browser, no install required.
Open Agent Studio