frontpage.

Hey HN, I built Vet (https://getvet.ai) — a security registry for MCP servers and AI skills.

The problem: when you install an MCP tool, you're giving an AI agent code execution on your machine. I scanned 88K+ tools and found crypto miners, SSH backdoors, prompt injection, and tools silently reading .env files and SSH keys. 537 flagged total.

How it works: - Static analysis + AI security review generates a trust score (0-100) per tool - Verified tools earn badges (install, boot, tool discovery all tested) - Everything is searchable with security-aware ranking

Ways to use it: - Browse: https://getvet.ai/catalog - CLI: `npx @getvetai/cli find "database"` - MCP server (yes, an MCP that discovers MCPs): `npx @getvetai/mcp` - API: `curl https://getvet.ai/api/v1/discover?q=github`

The CLI is open source: https://github.com/getvetai/cli

Free to use. If you build MCP servers, you can claim and get verified.

Would love feedback on the security analysis approach and what data you'd want to see.

Qualcomm CEO: 'Resistance Is Futile' as 6G Mobile Revolution Approaches

Show HN: NeoNetrek – modernizing the internet's first team game (1988)

Show HN: Natural language queries for Prometheus Kafka metrics (StreamLens)

Satellite firm pauses imagery after revealing Iran's attacks on US bases

China Suspected in Breach of FBI Surveillance Network

Show HN: I created list of directories (1000) to create free backlinks

Fishing crews in the Atlantic keep accidentally dredging up chemical weapons

The National Videogame Museum Has Acquired the Mythical Nintendo PlayStation

C# Strings Silently Kill Your SQL Server Indexes in Dapper

Show HN: I open-sourced my Steam game, 100% written in Lua, engine is also open

The White House: Touchdown

Capability-Tiered AI Governance Architecture (CEGP)

A new chapter for the Nix language, courtesy of WebAssembly

Shipping a Button in 2026 [video]

Show HN: Stream-native AI that never sleeps, an alternative to OpenClaw

Show HN: Flompt – Visual prompt builder that decomposes prompts into blocks

FBI investigating 'suspicious' cyber activity on system holding wiretaps

Show HN: key-carousel - Key rotation for LLM agents

Device that can extract 1k liters of clean water a day from desert air

Show HN: Sqry – semantic code search using AST and call graphs

The Window Chrome of Our Discontent

When Batteries Heat Up, This Membrane "Sweats" It Out

Show HN: Stratum - a pure JVM columnar SQL engine using the Java Vector API

Wild crows in Sweden help clean up cigarette butts

Show HN: BLOBs in MariaDB's Memory Engine – No More Disk Spills for Temp Tables

Tip me, my life depends on it (2021)

Show HN: OculOS – Give AI agents control of your desktop via MCP

New Strides Made on Deceptively Simple 'Lonely Runner' Problem

Ask HN: Why is Pi so good (and some observations)

Show HN: Speclint – OS spec linter for AI coding agents

Show HN: Vet – Security registry for 88K+ MCP servers and AI tools