MCPSafe.io
RegistryThreatsMethodologyDocsPricingScanSign in
MCPSafe.io

Security checks for MCP servers — public packages and private repos, fast or deep.

Legal

Privacy PolicyCookie PolicyTerms of ServiceSecurity disclosure

Resources

State of MCP SecuritySupportSystem statusMade in Germany 🇩🇪

© 2026 MCPSafe. All rights reserved.

GDPR — Privacy Policy
← Registry
—

nestornotes

Not yet scanned · pypi

$pip install nestornotes

Ready to scan

This package is in MCPSafe’s catalog but hasn’t been scanned yet. Run a Fast scan for rules + CVE findings in under 5 minutes, or a Deep scan to add LLM consensus review across 5 judges (sign in required, up to 20 min).

About

Open-source command-line client for the NestorNotes knowledge base. Auditable thin wrapper around the hosted MCP server.

What a scan checks

  • Threats40+ rules: prompt injection, destructive tool schemas, IAM wildcards, OAuth over-scope, install-time hooks, and more.
  • Known CVEsMatches package + dependency versions against NVD and GHSA advisory databases.
  • Supply chainTyposquat detection, malware indicators, suspicious install hooks, and maintainer signals.
  • Runtime safetySecret exfiltration paths, overbroad schemas, destructive operations without confirmation, and schema robustness.