B

New Relic MCP

New Relic's official MCP server (hosted at mcp.newrelic.com, repo newrelic/mcp-server, US and EU endpoints) for entities, alerting, incidents, performance analytics, and NRQL. OAuth 2.0 (or user API key) with organization-role RBAC, over HTTP. Currently in public preview. Replaces the community cloudbring/newrelic-mcp listing. Note: scores other than authentication are a provisional assessment from New Relic's documentation pending a live tool-level audit.

Overall Score74/100

Score Breakdown

Server Info

Package
https://mcp.newrelic.com/mcp/
Registry
remote
Maintainer
New RelicVendor
Category
Developer Tools
Tags
observabilityapmmonitoringhostedoauth
Last Scanned
7 Apr 2026

Findings

3 issues

Authentication & Identity

LOWImplements MCP OAuth spec for per-user authentication

Official New Relic remote MCP at https://mcp.newrelic.com/mcp/ (EU: mcp.eu.newrelic.com). OAuth 2.0 (scopes openid, profile, mcp:access) is the recommended method; a New Relic user API key via the api-key header is also supported. Access requires an organization-scoped RBAC role. Public preview as of 2025-11-04.

Remediation

Document the required OAuth scopes for each tool.

Tool Schema Quality

MEDIUMTool schemas not independently audited

The hosted server has no public source repository, so tool input schemas, required fields, and parameter constraints could not be verified directly. Provisional score pending a live tool-level audit.

Remediation

Run a live audit against the hosted endpoint to enumerate and score tool schemas.

Data Exposure

MEDIUMPagination and field selection not verified

Whether list operations paginate and support field selection could not be verified without a live audit of the hosted tool surface.

Remediation

Audit list operations for pagination and field-selection support.

Deploy New Relic MCP securely

CompleteFlow adds per-user authentication, permission scoping, and audit logging to any MCP server out of the box.

Deploy on CompleteFlow