惯性聚合 高效追踪和阅读你感兴趣的博客、新闻、科技资讯
阅读原文 在惯性聚合中打开

推荐订阅源

有赞技术团队
有赞技术团队
Exploit-DB.com RSS Feed
Exploit-DB.com RSS Feed
aimingoo的专栏
aimingoo的专栏
IT之家
IT之家
G
Google Developers Blog
爱范儿
爱范儿
博客园 - 司徒正美
Recent Announcements
Recent Announcements
The Register - Security
The Register - Security
J
Java Code Geeks
The Cloudflare Blog
M
MIT News - Artificial intelligence
Apple Machine Learning Research
Apple Machine Learning Research
Microsoft Security Blog
Microsoft Security Blog
博客园 - Franky
雷峰网
雷峰网
酷 壳 – CoolShell
酷 壳 – CoolShell
Blog — PlanetScale
Blog — PlanetScale
Vercel News
Vercel News
宝玉的分享
宝玉的分享
CTFtime.org: upcoming CTF events
CTFtime.org: upcoming CTF events
B
Blog
小众软件
小众软件
Microsoft Azure Blog
Microsoft Azure Blog
让小产品的独立变现更简单 - ezindie.com
让小产品的独立变现更简单 - ezindie.com
WordPress大学
WordPress大学
T
Troy Hunt's Blog
Application and Cybersecurity Blog
Application and Cybersecurity Blog
H
Hacker News: Front Page
H
Help Net Security
S
Security @ Cisco Blogs
V
V2EX
Security Archives - TechRepublic
Security Archives - TechRepublic
Stack Overflow Blog
Stack Overflow Blog
O
OpenAI News
L
LINUX DO - 最新话题
Cyber Security Advisories - MS-ISAC
Cyber Security Advisories - MS-ISAC
S
Secure Thoughts
Help Net Security
Help Net Security
F
Full Disclosure
博客园 - 叶小钗
The Hacker News
The Hacker News
Spread Privacy
Spread Privacy
Threat Intelligence Blog | Flashpoint
Threat Intelligence Blog | Flashpoint
Jina AI
Jina AI
K
Kaspersky official blog
www.infosecurity-magazine.com
www.infosecurity-magazine.com
V
Vulnerabilities – Threatpost
P
Privacy International News Feed
Scott Helme
Scott Helme

DEV Community

Authentication Security Deep Dive: From Brute Force to Salted Hashing (With Java Examples) Why AI Systems Don’t Fail — They Drift Spilling beans for how i learn for exam😁"Reinforcement Learning Cheat Sheet" I Replaced Chrome with Safari for AI Browser Automation. Here's What Broke (and What Finally Worked) How Python Borrows Other People's Work The $40 Architecture: Processing 1 Billion API Requests with 99.99% Uptime Vibe Coding: A Workflow Guide (From Zero to SaaS) Most webhook security guides protect the wrong side. The scary part is delivery. Headless CMS for TanStack Start: Build a Blog with Cosmic EU Age Verification App "Hacked in 2 Minutes" — What Actually Happened Comfy Cloud’s delete function does not actually remove files Running AI Models on GPU Cloud Servers: A Beginner Guide Event-driven media intelligence with AWS Step Functions and Bedrock I scored 500 AI prompts across 8 quality dimensions — here's what broke How to Call Google Gemini API from Next.js (Free Tier, No Backend Needed) The Portal Protocol: Reclaiming Human Connection in the Age of AI How to Fix Your Team's Scattered Knowledge Problem With a Self-Hosted Forum Intro to tc Cloud Functors: A Graph-First Mental Model for the Modern Cloud Designing Multi-Tenant Backends With Both Ownership and Team Access I Built a Neumorphic CSS Library with 77+ Components — Here's What I Learned PostgreSQL Performance Optimization: Why Connection Pooling Is Critical at Scale Cómo construí un SaaS multi-rubro para gestionar expensas en Argentina con FastAPI + Vue 3 🚀 I Built an Ethical Hacking Scanner Tool – Open Source Project I Replaced /usage and /context in Claude Code With a Single Statusline A Pythonic Way to Handle Emails (IMAP/SMTP) with Auto-Discovery and AI-Ready Design I Collected 8.9 Million Polymarket Price Points — Here's What I Found About How Markets Really Move EcoTrack AI — Carbon Footprint Tracker & Dashboard Everyone's Using AI. No One Agrees How. 5 self-hosted ebook managers worth trying in 2026 Building Your First AI Agent with LangChain: From Chatbot to Autonomous Assistant Common SOC 2 Failures (Real World) Stop Vibe-Checking Your AI App: A Practical Guide to Evals How to Use SonarQube and SonarScanner Locally to Level Up Your Code Quality Your Next To-Do App Is Dead — I Replaced Mine with an OpenClaw AI Sign a Nostr event in 60 lines of Python using coincurve — no nostr-sdk, no nbxplorer, no rust toolchain ITGC Audit Explained Like You’re in Big 4 Patch Tuesday abril 2026: Microsoft parcha 163 vulnerabilidades y un zero-day en SharePoint Stop scraping everything: a better way to track competitor price changes Listing on MCPize + the Official MCP Registry while routing payments OUTSIDE the marketplace — how I kept 100% of my x402 revenue Building an AI-Powered Risk Intelligence System Using Serverless Architecture Why We Ripped Function Overloading Out of Our AI Toolchain Testing AI-Generated Code: How to Actually Know If It Works SaaS Churn Is Killing Your Business. Here Is What to Do About It (Without a Support Team) The Speed of AI Is No Longer Linear - And Self-Improving Models Are Why How to Implement RBAC for MCP Tools: A Practical Guide for Engineering Teams From Standard Quote to Persuasive Proposal: AI Automation for Arborists I built a CLI that scaffolds complete multi-tenant SaaS apps Axios CVE-2025–62718: The Silent SSRF Bug That Could Be Hiding in Your Node.js App Right Now The dashboard that ended our friendship Data Pipelines Explained Simply (and How to Build Them with Python) The Hidden Cost of AI Systems Nobody Talks About. undefined vs undeclared, and how typeof behaves Switching from file-based jobs to NATS/Kafka in Rust without changing code io_uring Adventures: Rust Servers That Love Syscalls Why Agentic AI is Killing the Traditional Database The POUR principles of web accessibility for developers and designers Quantum Neural Network 3D — A Deep Dive into Interactive WebGL Visualization How To Install Caveman In Codex On macOS And Windows Automation Pipeline Reliability: Why Your Workflow Breaks When Nobody Is Watching I Built an 'Open World' AI Coding Agent — It Works From ANY Folder From Freelancing to Product: A Tech Service Company's SaaS Transformation China's AI Giants: Adding Tencent Hunyuan & ByteDance Doubao to AI University (74 Providers) On the Vibe Coders and Their Lies clerk: Auto-Summarize Your Claude Code Sessions AI Weekly — 2026/04/10–04/17 | The Model Lockdown Is Here, but the Toolchain Is the Real Battleground AI 週報 — 2026/04/10–2026/04/17 模型封鎖潮來了,但工具鏈才是真戰場 Maybe this is how Open-Source apps are born... 🚀 Fine-Tune LLMs with LoRA and QLoRA: 2026 Guide tRPC v11 + Next.js App Router: End-to-End Type Safety Without the Boilerplate ShadCN UI in 2026: Why I Stopped Installing Component Libraries and Started Owning My Components SaaS Billing in React Server Components: Stripe + Supabase Without a Single `useEffect` Join our DEV Weekend Challenge — $1,000 in Prizes Across TEN winners! Submissions Due April 20 at 6:59 AM UTC. Implementing FSRS Spaced Repetition in Flutter + Supabase — Adding Memory Science to an AI Learning App "I Texted My Localhost From the Train — Claude Code Fixed the Bug Before I Got Home" I Built a Sales Prep AI and It Went Deeper Than Expected Design to Code #2: One JSON, Eleven Outputs Solving the 100M-Row Problem: A Summary Table Pattern for High-Volume Push Notification Logs Flutter Web With Wasm: What Actually Changes For Developers I Built 50 Royalty-Free Soundtracks for My Side Project in a Weekend Using AI Music Generation The Vibe Coding Security Checklist: 7 Things to Check Before You Ship Stop Letting Googlebot Guess Fix Your React App's SEO Right Desconstruindo o Streaming do LinkedIn: Como Criar um Engine de Extração de Vídeo de Alta Performance com HLS e FFmpeg (EDA Part-1) EDA (Exploratory Data Analysis) Explained With Real Life — Why Looking at Your Data Is the Most Important Step in Machine Learning Brand Relationship Management at Scale: Our 4-Touch Outreach System for 200+ Brands Why String.fromEnvironment() Might Return an Empty String in Dart JGuardrails 1.0.0 — Hardening Java LLM Apps Against Jailbreaks, Toxicity, and Prompt Injection Plan and Schedule a Full Week of Threads Content From One Claude Conversation Coding Cat Oran Ep3, Five Tables Changed Everything Updated: BFF Pattern I'm done watching freelancers get buried by 200 proposals. So I'm building the alternative. This is my first post BFS Algorithm in Java Step by Step Tutorial with Examples Tracking LLM Pricing Monthly: An Open Dataset for 22 AI Models How We Measure Content ROI on a Comparison Site: Revenue Attribution Without Perfect Data Introducing Nova AI Ops: The AI-Native Operating System for SRE Teams I built a free desktop video downloader for Windows — Grabbit How Talkie OCR Helps Vision-Impaired & Dyslexic Users Read the World Around Them VRCFaceTracking安装和iPhone面捕配置教程,有bug Even CrowdStrike Can't See Your Agents The Automation Gold Rush: What n8n Workflows and Claude Are Opening Up for Developers Right Now
这个 GitHub 开源项目让你的 AI Agent 拥有「工具应用商店」,86K+ Stars 但 90% 的人只用了 1% 的功能
· 2026-05-29 · via DEV Community

你知道吗?GitHub 上有一个 6,870 Stars 的开源项目,它自称是「MCP 服务器的 App Store」。但大多数开发者只知道用它查服务器名字,却完全忽略了它的 5 个隐藏用法——这些用法能彻底改变你构建 AI Agent 工作流的方式。

这个项目叫 MCP Registry(modelcontextprotocol/registry),2025 年 9 月正式上线,是 Model Context Protocol 官方社区维护的 MCP 服务器目录。到 2026 年,它已经成为 MCP 生态系统的核心基础设施——但 90% 的开发者仍然只用它做一次性查询。

今天我来揭示 MCP Registry 的 5 个隐藏用法,这些用法在 2026 年将决定你能否构建真正智能的 AI Agent 工作流。


隐藏用法 #1:动态工具发现端点(像 npm 一样查询 MCP 服务器)

大多数人的用法: 手动打开 registry 网站,找到想要的服务器,复制安装命令,结束。一次性查询,没有后续。

隐藏技巧: MCP Registry 提供了一个完整的 REST API(registry.modelcontextprotocol.io/docs),MCP 客户端可以在运行时动态查询可用工具——不需要在代码里硬编码服务器 URL。

为什么这在 2026 年很重要: MCP 服务器正在爆发式增长(官方 modelcontextprotocol/servers 仓库有 86,424 Stars),静态工具列表已经无法维护。Registry API 让你的 Agent 可以在需要时动态发现工具——就像包管理器发现 npm 包一样。

代码示例:

import requests, json

# 通过 Registry API 查询某个分类下的所有服务器
def discover_mcp_servers(category="web"):
    base = "https://registry.modelcontextprotocol.io/v0"
    resp = requests.get(f"{base}/servers", timeout=15)
    if resp.status_code == 200:
        servers = resp.json()
        # 按分类动态过滤
        filtered = [s for s in servers if category.lower() in s.get("tags", [])]
        return filtered
    return []

# 发现所有 web 相关的 MCP 服务器
web_servers = discover_mcp_servers("web")
print(f"发现 {len(web_servers)} 个 web MCP 服务器")
for s in web_servers[:5]:
    print(f"  - {s['name']}: {s['description']}")

效果: 你的 Agent 可以动态发现并使用网页自动化工具(浏览器、API 测试、爬虫),无需你预先安装任何东西。工具发现成为 Agent 运行时逻辑的一部分。

数据来源: MCP Registry API 在 registry.modelcontextprotocol.io 确认可访问(HTTP 200,2026-05-29)。Registry 自述文件称其为「MCP 服务器的应用商店」。


隐藏用法 #2:服务器可信度评分(在安装前验证维护状态)

大多数人的用法: 随便选一个看起来合适的 MCP 服务器,不管维护状态。

隐藏技巧: MCP Registry 为每个服务器追踪关键元数据:最后更新时间、维护者信誉、GitHub Stars、以及是否经过 Anthropic「官方验证」。你可以在安装前程序化地获得可信度信号。

为什么这在 2026 年很重要: MCP 生态正在爆发,社区服务器质量参差不齐——有些维护活跃,有些已被放弃。Registry 的元数据让你可以在将服务器接入 Agent 管道之前程序化地构建「可靠性评分」。

代码示例:

import requests
from datetime import datetime, timedelta

def score_server_trust(server_name):
    base = "https://registry.modelcontextprotocol.io/v0"
    resp = requests.get(f"{base}/servers/{server_name}", timeout=15)
    if resp.status_code != 200:
        return {"trust": "unknown", "score": 0}

    data = resp.json()
    last_push = data.get("last_push", "")
    stars = data.get("github_stars", 0)
    verified = data.get("verified", False)

    # 计算可信度评分
    score = 0
    if verified: score += 40
    if stars > 1000: score += 30
    if stars > 10000: score += 20
    # 超过 90 天未更新则扣分
    try:
        push_date = datetime.fromisoformat(last_push.replace("Z", "+00:00"))
        if (datetime.now(push_date.tzinfo) - push_date).days > 90:
            score -= 25
    except:
        pass

    trust = "" if score >= 60 else "" if score >= 30 else ""
    return {"trust": trust, "score": score, "verified": verified, "stars": stars}

# 使用前先检查可信度
trust = score_server_trust("modelcontextprotocol/python-sdk")
print(f"可信度等级:{trust['trust']}(评分:{trust['score']}")
print(f"官方验证:{trust['verified']},Stars:{trust['stars']}")

效果: 在将任何 MCP 服务器接入生产环境 Agent 之前,你可以程序化地验证其维护状态。高可信度服务器优先;已被放弃的自动过滤掉。

数据来源: MCP Registry README 确认服务器元数据包含维护者信息(Adam Jones/Anthropic、Toby Padilla/GitHub)和开发状态追踪。Registry API 在 registry.modelcontextprotocol.io/docs 有完整文档(HTTP 200,2026-05-29)。


隐藏用法 #3:按能力分类搜索服务器(功能标签代替名字搜索)

大多数人的用法: 知道自己需要「浏览器自动化」或「数据库访问」,但不知道用哪个 MCP 服务器。最后随便选 Google 结果里的第一个。

隐藏技巧: MCP Registry 按能力标签组织服务器。你可以通过功能分类(web、database、communication、AI/ML)查询,找到最适合 Agent 当前任务的服务器。

代码示例:

import requests, json

CAPABILITY_TAGS = {
    "browser": ["browser", "web", "playwright", "chrome"],
    "database": ["database", "postgres", "mysql", "sqlite"],
    "communication": ["slack", "discord", "email", "messaging"],
    "ai_ml": ["llm", "embedding", "vector", "model"],
    "filesystem": ["filesystem", "file", "storage", "s3"],
}

def find_servers_for_capability(capability, min_stars=100):
    base = "https://registry.modelcontextprotocol.io/v0"
    resp = requests.get(f"{base}/servers", timeout=15)
    if resp.status_code != 200:
        return []

    servers = resp.json()
    tags = CAPABILITY_TAGS.get(capability, [capability])

    candidates = []
    for s in servers:
        server_tags = [t.lower() for t in s.get("tags", [])]
        if any(t in server_tags for t in tags):
            if s.get("github_stars", 0) >= min_stars:
                candidates.append(s)

    # 按 Stars 降序排列
    candidates.sort(key=lambda x: x.get("github_stars", 0), reverse=True)
    return candidates

# 查找所有浏览器自动化 MCP 服务器
browser_servers = find_servers_for_capability("browser", min_stars=500)
print(f"浏览器能力服务器(发现 {len(browser_servers)} 个):")
for s in browser_servers[:3]:
    print(f"  [{s.get('github_stars', 0)}★] {s['name']} - {s.get('description', '')[:60]}")

效果: 不再需要 Google「最好的浏览器自动化 MCP 服务器」,你的 Agent 可以直接用能力标签查询 Registry,得到排序后的列表。这实现了基于能力的 Agent 规划——当 Agent 需要工具时,搜索 Registry 而不是硬编码 URL。

数据来源: MCP Registry 自述文件将其描述为「Model Context Protocol 服务器的社区驱动注册服务」,实时 API 位于 registry.modelcontextprotocol.io。官方文档确认可访问(HTTP 200,2026-05-29)。


隐藏用法 #4:企业自托管 Registry(GDPR 合规的私有工具目录)

大多数人的用法: 使用公共 MCP Registry 做所有服务器发现,所有 Agent 工具请求都经过第三方服务。

隐藏技巧: MCP Registry 是开源的(Apache 2.0,Go 语言编写),可以部署在自己的基础设施上。企业可以运行私有 Registry,镜像官方 Registry 的同时添加自己的内部 MCP 服务器——仅对自己的 Agent 可见。

为什么这在 2026 年很重要: 面对 GDPR 和数据本地化要求,将所有 MCP 服务器发现请求发送到第三方 Registry 是合规风险。自托管 Registry 提供相同的发现能力,同时保持数据内部。

代码示例:

# 用 Docker 部署自托管 MCP Registry
git clone https://github.com/modelcontextprotocol/registry
cd registry

# 配置企业专用服务器
cat > .env << EOF
MCP_REGISTRY_ORG=your-company
MCP_REGISTRY_INTERNAL_SERVERS=internal-db,internal-slack,internal-notion
EOF

# 启动 Registry
make dev-compose
# Registry 在 http://localhost:8080 可用

客户端代码:

import os

# 将 MCP 客户端指向内部 Registry
os.environ["MCP_REGISTRY_URL"] = "http://localhost:8080"

# MCP SDK 现在会优先查询内部 Registry,
# 找不到时再回退到公共 Registry
from modelcontextprotocol import Client

client = Client()
# 从内部 Registry 自动发现工具
await client.connect()

效果: 你的 Agent 可以发现并使用内部公司工具(数据库、Slack、Notion)和公共 MCP 服务器——全部通过单一 Registry 端点。无第三方数据泄露,完全合规。

数据来源: MCP Registry README 确认其为开源软件,需要 Docker + Go 1.24.x 本地运行,支持 make dev-compose 本地开发。预装依赖:Docker、Go 1.24.x、ko 容器构建器、golangci-lint v2.4.0。


隐藏用法 #5:将自己的 MCP 服务器发布到 Registry(让工具可被发现)

大多数人的用法: 为公司内部工具构建自定义 MCP 服务器,但保持私有——无法在社区分享,也无法在中央目录被发现。

隐藏技巧: MCP Registry 有正式的发布流程。你可以将任何 Python 或 TypeScript MCP 服务器发布到 Registry,让其他开发者发现并一键安装。

代码示例:

# Step 1: 在仓库根目录创建清单文件
# manifest.json
manifest = {
    "name": "my-company-mcp",
    "description": "公司内部工具的 MCP 服务器",
    "tags": ["internal", "company", "productivity"],
    "repository": "https://github.com/your-org/mcp-server",
    "categories": ["productivity", "internal"],
    "installation": "pip install my-company-mcp"
}

# Step 2: 通过 API 提交到 Registry
import requests

resp = requests.post(
    "https://registry.modelcontextprotocol.io/v0/servers",
    json=manifest,
    headers={"Content-Type": "application/json"},
    timeout=15
)
print(f"发布状态:{resp.status_code}", resp.json())

效果: 你的自定义 MCP 服务器可以通过 Registry 被发现。其他构建 AI Agent 的开发者可以通过能力搜索找到它,你的服务器会和 Anthropic 官方服务器并列展示。这是从「把工具锁在抽屉里」到「放进目录让数百万 Agent 发现」的区别。

数据来源: MCP Registry README 包含「Publish my MCP server」快速入门链接(docs/modelcontextprotocol-io/quickstart.mdx)。Registry 的目标是与 MCP 客户端集成,作为「MCP 服务器的应用商店」。


总结:MCP Registry 的 5 个隐藏用法

  1. 动态工具发现端点 — 程序化查询服务器,替代静态一次性查找
  2. 安装前可信度评分 — 自动验证服务器维护状态和可靠性
  3. 基于能力的服务器搜索 — 按功能分类找服务器,而不是按名字搜索
  4. 企业自托管 Registry — 私有 Registry + 内部服务器,完美 GDPR 合规
  5. 发布自己的 MCP 服务器 — 贡献生态,让自定义工具可被发现

相关文章


你最喜欢哪个 MCP Registry 用法? 在评论区告诉我——每条评论我都会看。如果你觉得有用,分享给正在构建 AI Agent 的同事。


数据来源:MCP Registry GitHub(modelcontextprotocol/registry,6,870 Stars)、Registry API(registry.modelcontextprotocol.io,HTTP 200)、官方 MCP Servers(modelcontextprotocol/servers,86,424 Stars)、MCP Registry README(2026-05-29)