MCPSafe.io

Security pre-install checks for MCP servers.

Use with caution. Address findings before production.

github · mcphubHEAD

Scanned 5/3/2026, 6:46:18 PM·Cached result·Fast Scan·45 rules·How we decide ↗

AIVSS Score

4.0/ 10

Medium

Severity Breakdown

critical

high

medium

low

MCP Server Information

Packagemcphub

VersionHEAD

SourceGITHUB

LicenseApache-2.0

Publishersamanhappy

Package age1y 1m

Stars2.0K

Downloads/wk—

Dependencies0

Homepagehttps://docs.mcphub.app

Repositoryhttps://github.com/samanhappy/mcphub

Findings

Showing 1–30 of 64 findings

medium (30)

«‹

64 findings

medium (64)

AIVSS 4.0CVSS 5.5

Hardcoded secret detected in source. MCP servers often proxy between the model and a third-party API, so any committed credential grants that access to anyone who can read the repo. Move to an environment variable or secret manager and rotate the leaked value.

Evidence

"command": "npx",
        "args": ["-y", "@modelcontextprotocol/server-slack"],
        "env": {
          "SLACK_BOT_TOKEN": "xoxb-your-bot-token",
          "SLACK_TEAM_ID": "T1234567890"
        }
      }

Remediation

Rotate the leaked credential immediately, then replace the hardcoded value with os.environ / process.env lookup. For deployment, inject the value through your secret manager (AWS Secrets Manager, Doppler, Vault).

146	"command": "npx",
147	"args": ["-y", "@modelcontextprotocol/server-slack"],
148	"env": {
149	"SLACK_BOT_TOKEN": "xoxb-your-bot-token",
150	"SLACK_TEAM_ID": "T1234567890"
151	}
152	}

461	// Validate sessionId
462	if (!sessionId) {
463	console.error('Missing sessionId in query parameters');
464	res.status(400).send('Missing sessionId parameter');
465	return;
466	}

162	);
163	return false;
164	} catch (error) {
165	console.error('Error checking bearer key request access:', error);
166	return false;
167	}
168	};

758	id: `init-${sessionId}-${Date.now()}`,
759	};
760
761	console.log(`[MCP] Sending initialize request for session ${sessionId}`);
762	// Use mock response to avoid sending actual HTTP response
763	await transport.handleRequest(req, mockRes, initializeRequest);

606	const sessionId = req.headers['mcp-session-id'] as string \| undefined;
607	const group = req.params.group;
608	const body = req.body;
609	console.log(
610	`Handling MCP post request for sessionId: ${sessionId} and group: ${group}${username ? ` for user: ${username}` : ''} with body: ${JSON.stringify(body)}`,
611	);
612
613	// Get filtered settings based on user context (after setting user context)

706	);
707	} catch (error: any) {
708	const status = extractErrorStatus(error);
709	console.warn(
710	'Azure OpenAI embeddings request failed after retries',
711	{
712	status: status ?? 'unknown',
713	endpoint: azureConfig.endpoint \|\| 'missing',
714	deployment: azureConfig.embeddingDeployment \|\| 'missing',
715	apiVersion: azureConfig.apiVersion \|\| 'missing',
716	error,
717	},
718	);
719	throw error;
720	}
721	}

152	return data;
153	} catch (error) {
154	console.error('API request error:', error);
155	const errorResponse = {
156	success: false,
157	message: error instanceof Error ? error.message : 'An unknown error occurred',

780	if (process.env.DEBUG === 'true') {
781	const debugCurl = buildEmbeddingsDebugCurl(config.baseURL, embeddingPayload);
782
783	console.log(
784	`[Embedding] HTTP request details: ${JSON.stringify(
785	{
786	url: `${(config.baseURL \|\| 'https://api.openai.com/v1').replace(/\/+$/, '')}/embeddings`,
787	method: 'POST',
788	headers: {
789	Authorization: `Bearer ${maskApiKey(config.apiKey \|\| '')}`,

792	} catch (error: any) {
793	// Check if this is a "Server not initialized" error for a newly rebuilt session
794	if (sessionId && error.message && error.message.includes('Server not initialized')) {
795	console.log(
796	`[SESSION AUTO-REBUILD] Server not initialized for ${sessionId}. Attempting to initialize with the current request.`,
797	);
798
799	// Check if the current request is an 'initialize' request
800	if (isInitializeRequest(req.body)) {

687	}
688	} else if (isInitializeRequest(req.body)) {
689	// Case 3: No sessionId and this is an initialize request, create new session
690	console.log(
691	`[SESSION CREATE] No session ID provided for initialize request, creating new session${username ? ` for user: ${username}` : ''}`,
692	);
693	transport = await createNewSession(group, username);
694	} else if (
695	req.body &&

229	return searchTerms.some((term) => searchText.includes(term));
230	});
231	} catch (error) {
232	console.error('Error searching cloud market servers', { query, error });
233	throw error;
234	}
235	};

1637	};
1638
1639	export const handleCallToolRequest = async (request: any, extra: any) => {
1640	console.log('Handling CallToolRequest for tool', summarizeToolRequestForLogging(request.params));
1641	const startTime = Date.now();
1642	const activityLogger = getActivityLoggingService();

155	setError(t('market.searchError'));
156	}
157	} catch (err) {
158	console.error('Error searching market servers', { query, err });
159	setError(err instanceof Error ? err.message : String(err));
160	} finally {
161	setLoading(false);

438	throw new Error('toolName parameter is required and must be a string');
439	}
440
441	console.log(`Handling describe_tool request for: ${toolName}`);
442
443	// Determine group filtering
444	let group = getGroup(sessionId);

818	id: `init-${sessionId}-${Date.now()}`,
819	};
820
821	console.log(
822	`[SESSION AUTO-REBUILD] Sending initialize request for ${sessionId} before handling the actual request.`,
823	);
824	try {
825	// Temporarily replace the body to send the initialize request
826	const originalBody = req.body;

46	data: response.data,
47	};
48	} catch (error) {
49	console.error('Error calling prompt', { promptName: request.promptName, server, error });
50	return {
51	success: false,
52	error: error instanceof Error ? error.message : 'Unknown error occurred',

48	content: response?.content \|\| [],
49	};
50	} catch (error) {
51	console.error('Error calling tool', { toolName: request.toolName, server, error });
52	return {
53	success: false,
54	error: error instanceof Error ? error.message : 'Unknown error occurred',

1619	AND attname = 'embedding'
1620	`);
1621	} catch (error) {
1622	console.warn('Could not get vector type info, falling back to atttypmod query');
1623	}
1624
1625	// Fallback to original query

799	// Check if the current request is an 'initialize' request
800	if (isInitializeRequest(req.body)) {
801	// If it is, we can just retry it. The transport should now be in the transports map.
802	console.log(`[SESSION AUTO-REBUILD] Retrying initialize request for ${sessionId}.`);
803	await transport.handleRequest(req, res, req.body);
804	} else {
805	// If not, we need to send an initialize request first.

2039	arguments: promptArgs,
2040	};
2041	// Log the final promptParams
2042	console.log('Calling getPrompt with params', {
2043	name: cleanPromptName \|\| '',
2044	arguments: summarizeArgumentsForLogging(promptArgs),
2045	});
2046	const prompt = await server.client?.getPrompt(promptParams);
2047	console.log('Received prompt', summarizePromptForLogging(prompt));

253	const oauthUser = await resolveOAuthUserFromToken(token);
254	if (oauthUser) {
255	console.log('Authenticated request using OAuth bearer token (no matching static key)');
256	return { valid: true, user: oauthUser };
257	}

225	if (enabledKeys.length === 0) {
226	const oauthUser = await resolveOAuthUserFromToken(token);
227	if (oauthUser) {
228	console.log('Authenticated request using OAuth bearer token without configured keys');
229	return { valid: true, user: oauthUser };
230	}

272	thresholdNum = 0.4;
273	}
274
275	console.log(`Using similarity threshold: ${thresholdNum} for query: "${query}"`);
276
277	// Determine server filtering based on group
278	let group = getGroup(sessionId);

704	return;
705	} else {
706	// Case 5: No sessionId and not an initialize/notification request, return error
707	console.warn(
708	`[SESSION ERROR] No session ID provided for non-initialize request (method: ${req.body?.method})${username ? ` for user: ${username}` : ''}`,
709	);
710	res.status(400).json({
711	jsonrpc: '2.0',

github · mcphubHEAD

medium (30)

medium (64)

LLM summary— mcphub:HEAD

Signal scores

LLM judge panel

CVE check

Community trust

Scan details

MCP Server Information

Run this exact engine on your private repo — before users see it on /scan.

medium (30)

medium (64)

Severity breakdown

1848	? request.params.name.substring(prefix.length)
1849	: request.params.name;
1850
1851	console.log('Invoking OpenAPI tool', {
1852	toolName: cleanToolName,
1853	serverName: serverInfo.name,
1854	arguments: summarizeArgumentsForLogging(request.params.arguments),
1855	});
1856
1857	// Extract passthrough headers from extra or request context

172	setError(t('cloud.searchError'));
173	}
174	} catch (err) {
175	console.error('Error searching cloud servers', { query, err });
176	setError(err instanceof Error ? err.message : String(err));
177	} finally {
178	setLoading(false);

151	setCurrentPage(1);
152	applyPagination(data.data, 1);
153	} else {
154	console.error('Invalid market search results format', { query, data });
155	setError(t('market.searchError'));
156	}
157	} catch (err) {

874	const currentUser = userContextService.getCurrentUser();
875	const username = currentUser?.username;
876
877	console.log(`Handling MCP other request${username ? ` for user: ${username}` : ''}`);
878
879	const sessionId = req.headers['mcp-session-id'] as string \| undefined;
880	if (!sessionId) {

837	// Restore the original body and retry the original request
838	req.body = originalBody;
839	console.log(
840	`[SESSION AUTO-REBUILD] Initialization complete for ${sessionId}. Retrying original request.`,
841	);
842	await transport.handleRequest(req, res, req.body);
843	} catch (initError) {
844	console.error('[SESSION AUTO-REBUILD] Failed to initialize session on-the-fly', {

718	return;
719	}
720
721	console.log(`Handling request using transport with type ${transport.constructor.name}`);
722
723	const requestContextService = RequestContextService.getInstance();
724	await requestContextService.runWithRequestContext(req, async () => {

230	// Search servers by query (client-side filtering on loaded data)
231	const searchServers = useCallback(
232	async (query: string) => {
233	console.log('Searching registry servers', { query });
234	setSearchQuery(query);
235	setCurrentPage(1);
236	setCursorHistory([]);

832	return response.data[0].embedding;
833	} catch (error: any) {
834	const status = extractErrorStatus(error);
835	console.warn('OpenAI-compatible embeddings request failed after retries', {
836	status: status ?? 'unknown',
837	baseURL: config.baseURL \|\| 'default',
838	model: config.embeddingModel \|\| 'default',
839	requestDurationMs: Date.now() - _requestStart,
840	error,
841	});

1388	})
1389	.sort((a, b) => b.similarity - a.similarity);
1390	} catch (error) {
1391	console.error(
1392	'Error searching tools by vector',
1393	safeStringify({ query, limit, threshold, error }),
1394	);
1395	return [];
1396	}

697	req.body.method.startsWith('notifications/')
698	) {
699	// Case 4: Session-less notification requests should be acknowledged and ignored
700	console.log(
701	`[SESSION SKIP] Ignoring session-less notification request (method: ${req.body.method})${username ? ` for user: ${username}` : ''}`,
702	);
703	res.status(200).end();
704	return;