security

Security

Every MCP risk signal in one place — CVEs, tool safety, drift, naming, licenses. Heuristic: review signals, not verdicts.

45 CRITICAL

3664 HIGH

531 MEDIUM

1207 LOW

11 NONE

Static code-analysis findings — hidden prompt content in shipped skill files, committed secrets, dynamic-exec sinks, and suspicious call-home endpoints — across the analyzed catalogue. Heuristic, pure, no code executed; every row deep-links to its source. Click a kind to filter.

analysis coverage38% of 17283 analyzable servers

6275 analyzed

297 re-analysis due

1444 not analyzable

9267 not yet analyzed

711 source gone

Running analyzer v17. The scanner changelog explains what each version detects and when it changed.

committed secrets

dynamic-exec sinks

suspicious endpoints

credentials in logs

over-broad OAuth scopes

suspicious bundled scripts

ships skill files

ComposioHQ/awesome-claude-skills 200
ecc-universal 193
event4u-app/agent-config 190
mukul975/Anthropic-Cybersecurity-Skills 184
saajunaid/junai 183

HIGH dynamic exec@vpxa/aikitvm exec- [ ] **eval/Function prevention**: No dynamic code execution from user input (\`eval()\`, \`new Function()\`, \`vm.runInNewContext()\`)
package/scaffold/dist/definitions/bodies.mjs:688
HIGH dynamic exec@vpxa/aikitnew Function()- [ ] **eval/Function prevention**: No dynamic code execution from user input (\`eval()\`, \`new Function()\`, \`vm.runInNewContext()\`)
package/scaffold/dist/definitions/bodies.mjs:688
LOW token-logbrilliant-directories-mcpcredential in logconsole.log(` claude mcp add ${serverName} -- npx -y brilliant-directories-mcp --api-key ${apiKey} --url ${apiUrl}`);
package/index.js:4704
LOW skill-scriptaiwgsuspicious bundled scripteval "$(python3 -c "
package/agentic/code/addons/aiwg-utils/skills/steward-prep-delivery/find-duplicates.sh:81
HIGH hidden promptaiwgskill: skill-exfilsecret→sink: -H "Authorization: token ${GITHUB_TOKEN}" \
package/plugins/sdlc/skills/regression-cicd-hooks/SKILL.md:541
HIGH hidden promptaiwgskill: skill-exfilsecret→sink: ```bash
package/plugins/sdlc/skills/issue-update/SKILL.md:124
HIGH hidden promptaiwgskill: skill-exfilsecret→sink: # Fallback to fanart.tv if CAA unavailable
package/plugins/media-curator/skills/tag-collection/SKILL.md:105
HIGH hidden promptaiwgskill: skill-exfilsecret→sink:
package/plugins/media-curator/skills/cover-art-embedding/SKILL.md:61
HIGH hidden promptaiwgskill: skill-exfilsecret→sink: -H "Authorization: token ${GITHUB_TOKEN}" \
package/plugins/codex-sdlc/skills/regression-cicd-hooks/SKILL.md:541
HIGH hidden promptaiwgskill: skill-exfilsecret→sink: ```bash
package/plugins/codex-sdlc/skills/issue-update/SKILL.md:124
HIGH hidden promptaiwgskill: skill-exfilsecret→sink: -H "Authorization: token ${GITHUB_TOKEN}" \
package/agentic/code/frameworks/sdlc-complete/skills/regression-cicd-hooks/SKILL.md:541
HIGH hidden promptaiwgskill: skill-exfilsecret→sink: ```bash
package/agentic/code/frameworks/sdlc-complete/skills/issue-update/SKILL.md:137
HIGH hidden promptaiwgskill: skill-exfilsecret→sink: # Fallback to fanart.tv if CAA unavailable
package/agentic/code/frameworks/media-curator/skills/tag-collection/SKILL.md:105
HIGH hidden promptaiwgskill: skill-exfilsecret→sink:
package/agentic/code/frameworks/media-curator/skills/cover-art-embedding/SKILL.md:61
MEDIUM suspicious endpointharness-mcp-v21.2.3.4" {list:{elements:[{cluster:'staging', url:'https://1.2.3.4'}, {cluster:'prod', url:'https://2.3.4.5'}]}}\n" +
package/build/registry/toolsets/gitops.js:690

Security

Navigate

Stream

Display