# MCPoliceman 3000

> https://whycantwehaveanagentforthis.com/result/mcpoliceman-3000-small-tool-lints

Problem: A small CLI tool that lints OpenAPI specs and tells you whether they would make a clean MCP server. Worth shipping?

## verdict

tier: ACTUALLY NOT BAD
difficulty: 5/10
savage_line: You're basically building a TSA scanner for APIs, except the APIs actually have to follow rules.

## agent_readiness

overall: 62/100 (band C)
memory_required: 22/25
tool_count: 11/25
policy_surface: 11/25
eval_coverage: 18/25

## owasp_codes

- MCP-2: Cross-server prompt injection
- MCP-3: Excessive agency
- MCP-5: Insecure tool composition

## install_options

bootstrap: https://whycantwehaveanagentforthis.com/api/bootstrap/9c311335-fc6/raw
policy_yaml: https://whycantwehaveanagentforthis.com/api/agent-readiness/9c311335-fc6?format=yaml
badge_svg: https://whycantwehaveanagentforthis.com/api/badge/9c311335-fc6/svg