← Back to skills↗↗↗
Security & secrets · Security · mcp
Pinner MCP
Secures software supply chains by pinning dependencies to immutable versions, resolving GitHub references to commit SHAs and Docker image tags to digests to prevent dependency substitution attacks.
Overall score
58
mcpgosecurityregistry listed
Setup difficulty
Moderate
Install method
manual · local
Supported providers
Any provider
Supported hosts
MCP-compatible host
Permission posture
high
Last verified
Apr 13, 2026
Score breakdown
Utility52
Compatibility58
Ease of setup72
Reliability54
Docs quality74
Adoption46
Safety & maintenance50
Scores combine benchmark signals, product experience, and editorial weighting. Use them as a practical guide, not an absolute truth claim.
Best for
Agent automation
Works with
MCP-compatible hostscommunity registry listed
Capabilities
access controlsensitive operationscredential-aware tasks
Sources & trust
Verified registry fields
SummaryRepository
This entry is live under the scaled catalog policy: maintainer repo + community registry metadata are visible, but VerdictLens did not treat it as fully official-field verified.
Pinner MCP repo
GitHub · Tier 4 · Apr 13, 2026
Repository
Awesome MCP Registry listing
Community registry · Tier 2 · Apr 13, 2026
SummaryDescriptionSubcategoryInstall methodCapabilities
Pinner MCP VerdictLens scale review
Manual review · Tier 3 · Apr 13, 2026
Best-fit guidanceWorks-with guidancePermission postureOverall score
Strengths
- Clear MCP-server-shaped capability boundary from a maintainer-controlled repository and structured registry entry.
- Imported from a structured community registry with enough metadata to keep the live entry specific instead of hand-wavy.
Things to watch
- VerdictLens has not manually reviewed every operational claim for this entry; trust the repo and source links more than the editorial score.
- This entry was promoted under the wider scale-up threshold: structurally clear and source-transparent, but not manually or officially verified end-to-end by VerdictLens.