meok-bft-governance-mcp
FlaggedMEOK AI Labs - bft-governance MCP server extracted from SOV3
Our take
Part of a 300+ listing flood from a single operator (MEOK AI Labs / CSOAI): templated repos mass-published across every category, most decorated with an "MCP Scorecard 86/100" badge from proofof.ai — a domain the same operator owns, a self-issued trust signal dressed up as independent review. It presents as a Byzantine-fault-tolerant governance server. Here the badge lives in the PyPI package description while the GitHub repository the registry points at has been deleted — you cannot audit the advertised source at all, only install a black-box package from an operator whose trust signals are self-issued. Working code doesn't offset manufactured trust signals at this scale.
Verification record
- 2026-06-30