Give AI agents full access to the Harness.io platform — manage pipelines, deployments, cloud costs, chaos engineering, feature flags, SEI, and 125+ resource types through 11 MCP tools
- capability exposureinferred+10
- inherited (deps)attested+15
- tool safetyinferred+14
- trust mitigatorsmixed−9
attestedinferredmixed
The A–E grade is our heuristic synthesis — a "review this" prompt, not a verdict. Each factor is tagged by what backs it: attested (a verifiable record), reported (a third party's claim), or inferred (our own heuristic, e.g. permissions). See methodology.
graded 13m ago · see ecosystem CVEs →
- C · 42 → B · 30
- C · 45 → C · 42
no known CVEs for this server.
inherited (deps) · grade factor +15
- highexfiltration comboharness_schema
single tool reads + sends: fs, net
- lowexfiltration comboharness_search
single tool reads + sends: net, db
analyzed v3.1.7 · analyzer v17 · 1d ago
danger signals1
- suspicious endpoint1.2.3.4package/build/registry/toolsets/gitops.js:690
" {list:{elements:[{cluster:'staging', url:'https://1.2.3.4'}, {cluster:'prod', url:'https://2.3.4.5'}]}}\n" +
[](https://mcpobservatory.com/servers/npm:harness-mcp-v2/security) Heuristic, inferred signals — false positives (legitimately powerful tools, forks, language ports) are expected. Treat each as "review this", not a verdict. See the ecosystem-wide picture on the security hub, or the fleet security of thisrohangupta.