Official MCP server for Brilliant Directories — manage members, posts, leads, reviews, and more.
Drift inferred · capture-to-capture
- HIGH code analysis flagged hidden prompt content in brilliant-directories-mcp
transport stdio counts 0 tools · 0 res
· 0 prompts
permission surface via code analysis
no tools enumerated yet for this server.
prompt-surface
shipped agent-instruction files + hidden-content / dangerous-code findings —
quoted from the analyzed source
analyzed v6.55.60 · analyzer v18 · 8h ago
danger signals1
- credential in logscredential in logpackage/index.js:4729
console.log(` claude mcp add ${serverName} -- npx -y brilliant-directories-mcp --api-key ${apiKey} --url ${apiUrl}`);
evidence-backed
findings quoted directly from the published source artifact — not inferred
filesystem 1
- fs package/index.js :113
const fs = require("fs");
network 1
- net package/index.js :116
const https = require("https");
secrets 1
- secrets package/index.js :226
apiKey: process.env.BD_API_KEY || "",
declared dependencies 1
- @modelcontextprotocol/sdk@^1.0.0