MCP Observatory
github analyzed 1672d4e

kunwarvivek/mcp-github-project-manager

github
maintainer
kunwarvivek
license
first seen
2026-05-22
last seen
2026-06-17
releases · 30d
0
short id

Drift inferred · capture-to-capture

  1. HIGH code analysis flagged committed secret in kunwarvivek/mcp-github-project-manager
capabilities 0 tools
transport stdio · http counts 0 tools · 0 res · 0 prompts permission surface via code analysis

no tools enumerated yet for this server.

skills & danger signals github-tarball
prompt-surface shipped agent-instruction files + hidden-content / dangerous-code findings — quoted from the analyzed source

analyzed commit 1672d4e · analyzer v18 · 10h ago

danger signals1

code evidence vHEAD · github-tarball
evidence-backed findings quoted directly from the published source artifact — not inferred

filesystem 11

  • fs kunwarVivek-mcp-github-project-manager-1672d4e/jest.resolver.cjs :2 const fs = require('fs');
  • fs kunwarVivek-mcp-github-project-manager-1672d4e/scripts/fix-imports.js :2 import fs from 'fs';
  • fs kunwarVivek-mcp-github-project-manager-1672d4e/scripts/generate-openapi.ts :11 import { writeFileSync } from 'fs';
  • fs kunwarVivek-mcp-github-project-manager-1672d4e/scripts/mcp-test-client.js :26 import { readFileSync } from 'fs';
  • fs kunwarVivek-mcp-github-project-manager-1672d4e/scripts/publish.js :2 import fs from 'fs';
  • fs kunwarVivek-mcp-github-project-manager-1672d4e/scripts/run-e2e-tests.js :11 import { existsSync } from 'fs';
  • fs kunwarVivek-mcp-github-project-manager-1672d4e/scripts/validate-tests.js :11 import { existsSync } from 'fs';
  • fs kunwarVivek-mcp-github-project-manager-1672d4e/src/cli.ts :2 import fs from 'fs';
  • fs kunwarVivek-mcp-github-project-manager-1672d4e/src/infrastructure/cache/CachePersistence.ts :14 import * as fs from 'node:fs/promises';
  • fs kunwarVivek-mcp-github-project-manager-1672d4e/src/infrastructure/events/EventStore.ts :1 import * as fs from 'fs/promises';
  • fs kunwarVivek-mcp-github-project-manager-1672d4e/src/infrastructure/persistence/FilePersistenceAdapter.ts :1 import * as fs from 'fs/promises';

shell / exec 4

  • shell kunwarVivek-mcp-github-project-manager-1672d4e/scripts/mcp-test-client.js :25 import { spawn } from 'child_process';
  • shell kunwarVivek-mcp-github-project-manager-1672d4e/scripts/publish.js :3 import { execSync } from 'child_process';
  • shell kunwarVivek-mcp-github-project-manager-1672d4e/scripts/run-e2e-tests.js :10 import { spawn } from 'child_process';
  • shell kunwarVivek-mcp-github-project-manager-1672d4e/scripts/validate-tests.js :10 import { execSync } from 'child_process';

network 2

  • net kunwarVivek-mcp-github-project-manager-1672d4e/scripts/get-github-token.js :2 import axios from "axios";
  • net kunwarVivek-mcp-github-project-manager-1672d4e/src/infrastructure/http/WebhookServer.ts :1 import * as http from 'http';

secrets 9

  • secrets kunwarVivek-mcp-github-project-manager-1672d4e/jest.e2e.tools.setup.mjs :13 if (!process.env.GITHUB_TOKEN) {
  • secrets kunwarVivek-mcp-github-project-manager-1672d4e/scripts/get-github-token.js :11 const CLIENT_SECRET = process.env.GITHUB_CLIENT_SECRET;
  • secrets kunwarVivek-mcp-github-project-manager-1672d4e/scripts/mcp-test-client.js :37 githubToken: process.env.GITHUB_TOKEN,
  • secrets kunwarVivek-mcp-github-project-manager-1672d4e/src/infrastructure/tools/project-advanced-tools.ts :142 const token = process.env.GITHUB_TOKEN;
  • secrets kunwarVivek-mcp-github-project-manager-1672d4e/src/infrastructure/tools/project-lifecycle-tools.ts :87 const token = process.env.GITHUB_TOKEN;
  • secrets kunwarVivek-mcp-github-project-manager-1672d4e/src/infrastructure/tools/project-linking-tools.ts :54 const token = process.env.GITHUB_TOKEN;
  • secrets kunwarVivek-mcp-github-project-manager-1672d4e/src/infrastructure/tools/project-template-tools.ts :120 const token = process.env.GITHUB_TOKEN;
  • secrets kunwarVivek-mcp-github-project-manager-1672d4e/src/infrastructure/tools/status-update-tools.ts :40 const token = process.env.GITHUB_TOKEN;
  • secrets kunwarVivek-mcp-github-project-manager-1672d4e/src/infrastructure/tools/sub-issue-tools.ts :47 const token = process.env.GITHUB_TOKEN;

declared dependencies 41

  • @ai-sdk/anthropic@^1.2.12
  • @ai-sdk/google@^1.2.18
  • @ai-sdk/openai@^1.3.22
  • @ai-sdk/perplexity@^1.1.9
  • @modelcontextprotocol/sdk@^1.25.3
  • @octokit/rest@^22.0.0
  • @types/graphlib@^2.1.12
  • ai@^4.3.16
  • cockatiel@^3.2.1
  • commander@^14.0.0
  • dotenv@^16.5.0
  • graphlib@^2.1.8
  • handlebars@^4.7.8
  • reflect-metadata@^0.2.2
  • tsyringe@^4.10.0
  • uuid@^11.1.0
  • zod@^3.25.32
  • zod-to-json-schema@^3.25.1
  • @jest/globals@^29.7.0
  • @octokit/openapi-types@^25.1.0
  • @octokit/types@^14.1.0
  • @types/jest@^29.5.14
  • @types/node@^22.15.24
  • @types/uuid@^10.0.0
  • @typescript-eslint/eslint-plugin@^8.33.0
  • @typescript-eslint/parser@^8.33.0
  • eslint@^9.27.0
  • eslint-config-prettier@^10.1.5
  • eslint-plugin-jest@^28.11.1
  • eslint-plugin-prettier@^5.4.0
  • husky@^9.1.7
  • jest@^29.7.0
  • jest-junit@^16.0.0
  • jest-mock-extended@^3.0.7
  • nock@^14.0.4
  • prettier@^3.5.3
  • rimraf@^6.0.1
  • ts-jest@^29.3.4
  • ts-node@^10.9.2
  • ts-node-dev@^2.0.0
  • typescript@^5.8.3