scope.bid

Item: scope.bid
Rating: 83
Author: wmcp.sh

https://scope.bid/api/mcp/legal

83/100 · MCP Trust Grade · checked 4h ago · MCP 2025-11-25

⚠ Rug-pull watch: this server's tool surface has changed 1× since baseline — last 4h ago. Continuously watched by wmcp.sh for drift & rug-pulls.

What it offers — 30 tools · Developer Tools

scope_list_categories

List the legal-services categories Scope can dispatch matters to. Each category has a slug, human label, and an indicator of whether vendors expose RE

scope_list_vendors

List Scope-verified vendors. Each result includes verified-reputation metrics (on-time %, budget variance, rework rate, completed matters, satisfactio

scope_dispatch_matter

Dispatch a new matter to Scope. Every credentialed vendor in the requested category returns an instant rate-card quote (no bid window, no waiting). Th

scope_get_matter

Look up a matter by its display id (e.g. SC-2041) or UUID. Returns scope details, instant rate-card quotes (rate_card model) or bids (legacy bid model

scope_list_matters

List matters in flight for the calling buyer organization. Useful for status sweeps and pipeline reporting from inside an AI workflow.

scope_list_roster

List the calling buyer org's vendor roster. Returns each vendor with their tier (primary | backup | excluded), optional category scoping, notes, and l

scope_set_vendor_tier

Add or update a vendor on the buyer's roster. Use to set a vendor as primary, backup, or excluded - optionally scoped to a single service category. Ex

scope_remove_from_roster

Remove a vendor from the buyer's roster entirely. Use when the relationship has changed and you want to revert the vendor to neutral marketplace statu

scope_award_matter

Award a dispatched matter to a chosen vendor. Locks the booking, notifies the vendor (push + email), and schedules a Stripe Connect invoice that fires

scope_reschedule_project

Reschedule an already-awarded project to a new date. Use only when the project is in an active engagement state (post-award, pre-delivery). Returns th

scope_briefing

Briefing for the authenticated buyer org's recent matter activity. Returns matters bucketed by action_required (awaiting your decision), awaiting_vend

scope_roster_audit

Complete activity log for a single scope. Returns the append-only event chain: dispatched, quotes received, awarded, accepted, calendar set, work comp

scope_spend_rollup

Aggregate awarded-bid spend across the buyer org over a date window. Group by vendor, category, matter_type, jurisdiction, or scope. Returns total amo

scope_vendor_health

Per-vendor credential, insurance, and on-time status across your roster. Returns COI / W-9 / insurance expiry, BAA status, 90-day on-time percentage,

scope_credential_alerts

Vendors with expiring or expired credentials. Filtered version of scope_vendor_health. Use for compliance review or for the morning briefing's 'what n

scope_conflict_log

Search the buyer org's structured conflict-party log across every scope. Use for an OCG / Rule 1.7 prior-representation check before dispatching new w

scope_get_dispatch_routing_state

Read-only view of the roster auto-routing state machine for one scope. Returns the current state (pending_primary, awaiting_primary_response, primary_

scope_market_rate_compare

Return distribution stats (min / p25 / median / p75 / p90 / max / mean) on awarded-bid amounts across the platform cohort for a given service category

+12 more tools

Spec conformance20%80

✗ initialize → protocolVersion 2025-11-25
✓ initialize HTTP 200
✓ unknown method → -32601
✓ tools/list → 30 tools
✓ every tool has name + inputSchema

Security (OWASP MCP)30%100

30 tools scanned
no injection markup
no secret-path refs

Reliability / performance20%70

single-probe latency 2079ms (PRELIMINARY — continuous uptime/p95 from proxy telemetry lands in v2)

Tool hygiene15%66

93% of tools have typed inputSchema
0/30 declare outputSchema
2 destructive-by-name tools lack safety annotations

Transparency / provenance15%90

HTTPS ✓
RFC 9728 oauth-protected-resource metadata ✓
advertises protocol 2025-11-25

Observed behavior

No proxied traffic observed for this host yet. Connect it at /connect and its grade gains a measured Reliability score + per-tool behavioral evidence — the half a static scan can't produce.

Findings

No blocking issues found in the static + spec checks.

Grade another server

We re-grade scope.bid on a schedule and alert your Slack/webhook the moment its tools change or its grade drops — rug-pull insurance for the connection.

Share this report card

A 1200×630 card with the grade + audit — drop it in a post, Slack, or your repo.

MCP Trust report card — scope.bid grade B

Share on X Open card image

https://wmcp.sh/mcp/grade/scope.bid

Embed this grade

A live badge — it re-verifies itself and shows current stability. Static scorecards can't. Paste it in your README or site to show users you're independently audited.

Markdown (for your README)

[![MCP Trust Grade B](https://wmcp.sh/mcp/grade/scope.bid/badge.svg)](https://wmcp.sh/mcp/grade/scope.bid)

HTML

<a href="https://wmcp.sh/mcp/grade/scope.bid"><img src="https://wmcp.sh/mcp/grade/scope.bid/badge.svg" alt="MCP Trust Grade B · wmcp.sh"></a>

Agents: check this before connecting

Add the wmcp.sh trust oracle as an MCP server and call grade_mcp_server / check_mcp_drift in your agent's pre-connection gate:

https://wmcp.sh/mcp/trust

How this grade is computed. An open, independent rubric — Spec conformance (20%), Security mapped to the OWASP MCP Top 10 (30%), Reliability (20%), Tool hygiene (15%), Transparency (15%) — run by connecting to the server and inspecting its real MCP surface. The grade is free and identical whether or not the operator pays. v1 uses static + spec signals from a single connection; continuous uptime, real latency, and annotation-truthing (declared readOnly vs observed behavior) layer on via the wmcp.sh proxy.