What Does The Aescut MCP Server Do?

• lookup_skill: fetch a single entry by slug with maintainer, status, risk, permissions, and metadata.
• search_skills: search the registry with filtering across reviewed and deprecated entries.
• check_risk: turn review status, staleness, permissions, and intended action into a recommendation such as allow, review, avoid, or block.
• list_categories: enumerate categories and counts.

The output is not a marketing badge. It is a conservative recommendation that reflects things humans care about when the consequence of a mistake is real: pending review, deprecated status, broad permissions, stale audits, and a sensitive intended action such as deployment or credential handling.

That means two entries with the same nominal risk tier can still get different recommendations depending on what the user is trying to do with them.

The best pattern is to install Aescut once and keep a companion prompt or skill that tells the agent to consult the registry before it recommends or enables a third-party server. That gives you a repeatable checkpoint instead of trusting each session to remember the rule ad hoc.