Is your MCP server's authorization spec-compliant?

Grade a remote MCP server's OAuth 2.1 authorization against the MCP spec and RFC 9728 / 8414 / 8707 — every finding cited, results shareable by permalink.

We fetch only public metadata over HTTPS. Nothing is stored unless a report is created.