Is ocireg MCP safe to give an agent?
A factual risk summary built from ocireg’s real tool surface, execution model, and verification history — not a vibe. Trust score 55/100.
No tool handshake yet — capability surface unverified.
Runs on the vendor's infrastructure; you connect over the network. No untrusted code runs on your machine, but you grant the hosted service access.
Connects to a remote URL — no local package execution.
No auth scopes captured yet (scope extraction runs during the sandboxed handshake, gated until configured). Treat unconfirmed scopes as unknown, not as “none.”
Wrap ocireg in a governed Loadout — scoped permissions, approval rules on write/destructive tools, and audit logging — instead of handing your agent raw access.
Build a governed LoadoutSee also: full server page · setup · alternatives