@agentsid/scanner 0.1.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Files changed (116) hide show
  1. package/README.md +205 -0
  2. package/action/action.yml +42 -0
  3. package/action/index.mjs +179 -0
  4. package/docs/state-of-agent-security-2026.md +377 -0
  5. package/examples/security-scan.yml +57 -0
  6. package/package.json +37 -0
  7. package/reports/aashari-mcp-server-atlassian-confluence.json +110 -0
  8. package/reports/aashari-mcp-server-atlassian-jira.json +138 -0
  9. package/reports/aashari-mcp-server-aws-sso.json +122 -0
  10. package/reports/agentdeskai-browser-tools-mcp.json +361 -0
  11. package/reports/ahmetkca-mcp-server-postgres.json +43 -0
  12. package/reports/aiondadotcom-mcp-ssh.json +166 -0
  13. package/reports/apify-actors-mcp-server.json +43 -0
  14. package/reports/azure-mcp.json +43 -0
  15. package/reports/boilerplate-mcp-tool.json +43 -0
  16. package/reports/browserstack-mcp-server.json +43 -0
  17. package/reports/canvas-mcp-server.json +43 -0
  18. package/reports/canvas-mcp-tool.json +43 -0
  19. package/reports/chrome-devtools-mcp.json +300 -0
  20. package/reports/chrome-local-mcp.json +222 -0
  21. package/reports/claude-flow-mcp.json +43 -0
  22. package/reports/cloudflare-mcp-server.json +43 -0
  23. package/reports/code-canvas-server.json +43 -0
  24. package/reports/cognitionai-metabase-mcp-server.json +43 -0
  25. package/reports/composio-mcp.json +43 -0
  26. package/reports/contentful-mcp-server.json +43 -0
  27. package/reports/dbhub.json +43 -0
  28. package/reports/desktop-commander.json +43 -0
  29. package/reports/dynatrace-oss-dynatrace-mcp-server.json +43 -0
  30. package/reports/e2b-mcp-server.json +67 -0
  31. package/reports/eslint-mcp.json +51 -0
  32. package/reports/european-parliament-mcp-server.json +1467 -0
  33. package/reports/exa-mcp-server.json +74 -0
  34. package/reports/executeautomation-playwright-mcp-server.json +418 -0
  35. package/reports/fast-kit-spec-kit.json +43 -0
  36. package/reports/felores-airtable-mcp-server.json +43 -0
  37. package/reports/figma-mcp.json +103 -0
  38. package/reports/forestadmin-mcp-server.json +43 -0
  39. package/reports/fullrun-mcp.json +43 -0
  40. package/reports/gemini-mcp-tool.json +43 -0
  41. package/reports/gitlab-mcp-agent-server.json +186 -0
  42. package/reports/grackle-ai-mcp.json +43 -0
  43. package/reports/heroku-mcp-server.json +333 -0
  44. package/reports/hisma-server-puppeteer.json +93 -0
  45. package/reports/hubspot-mcp-server.json +43 -0
  46. package/reports/hyper-mcp-shell.json +59 -0
  47. package/reports/iflow-mcp-server-github.json +327 -0
  48. package/reports/jpisnice-shadcn-ui-mcp-server.json +149 -0
  49. package/reports/jsonresume-mcp.json +43 -0
  50. package/reports/mapbox-mcp-server.json +43 -0
  51. package/reports/mcp-framework.json +43 -0
  52. package/reports/mcp-from-openapi.json +43 -0
  53. package/reports/mcp-handler.json +43 -0
  54. package/reports/mcp-proxy.json +43 -0
  55. package/reports/mcp-server-docker.json +59 -0
  56. package/reports/mcp-server-github-gist.json +108 -0
  57. package/reports/mcp-server-google-calendar.json +43 -0
  58. package/reports/mcp-server-jira-cloud.json +43 -0
  59. package/reports/mcp-server-kubernetes.json +43 -0
  60. package/reports/mcp-server-slack.json +411 -0
  61. package/reports/mcp-server-sqlite-npx.json +43 -0
  62. package/reports/mcp-server.json +43 -0
  63. package/reports/mcp-starter.json +59 -0
  64. package/reports/mcp-tool-lint.json +43 -0
  65. package/reports/mcporter.json +43 -0
  66. package/reports/mcptoolshop-mcp-tool-registry.json +43 -0
  67. package/reports/microsoft-devbox-mcp.json +43 -0
  68. package/reports/mobilenext-mobile-mcp.json +214 -0
  69. package/reports/modelcontextprotocol-server-brave-search.json +43 -0
  70. package/reports/modelcontextprotocol-server-everything.json +165 -0
  71. package/reports/modelcontextprotocol-server-fetch.json +43 -0
  72. package/reports/modelcontextprotocol-server-filesystem.json +259 -0
  73. package/reports/modelcontextprotocol-server-github.json +391 -0
  74. package/reports/modelcontextprotocol-server-memory.json +117 -0
  75. package/reports/modelcontextprotocol-server-postgres.json +43 -0
  76. package/reports/modelcontextprotocol-server-puppeteer.json +101 -0
  77. package/reports/modelcontextprotocol-server-sequential-thinking.json +67 -0
  78. package/reports/mongodb-mcp-server.json +43 -0
  79. package/reports/mseep-linear-mcp-server.json +43 -0
  80. package/reports/mseep-mcp-server-sqlite-npx.json +43 -0
  81. package/reports/n8n-mcp.json +123 -0
  82. package/reports/notepost-mcp.json +43 -0
  83. package/reports/notionhq-notion-mcp-server.json +220 -0
  84. package/reports/nx-mcp.json +59 -0
  85. package/reports/obsidian-mcp-server.json +43 -0
  86. package/reports/opengraph-io-mcp.json +130 -0
  87. package/reports/payloadcms-plugin-mcp.json +43 -0
  88. package/reports/peac-mappings-mcp.json +43 -0
  89. package/reports/playwright-mcp.json +236 -0
  90. package/reports/puppeteer-mcp-server.json +43 -0
  91. package/reports/railway-mcp-server.json +194 -0
  92. package/reports/razorpay-blade-mcp.json +182 -0
  93. package/reports/rekog-mcp-nest.json +43 -0
  94. package/reports/remotion-mcp.json +51 -0
  95. package/reports/rollbar-mcp-server.json +43 -0
  96. package/reports/sap-ux-fiori-mcp-server.json +80 -0
  97. package/reports/sentry-mcp-server.json +43 -0
  98. package/reports/server-filesystem.json +43 -0
  99. package/reports/server-memory.json +43 -0
  100. package/reports/shortcut-mcp.json +43 -0
  101. package/reports/supabase-mcp-server-supabase.json +43 -0
  102. package/reports/tavily-mcp.json +79 -0
  103. package/reports/thelord-mcp-server-docker-npx.json +43 -0
  104. package/reports/tyk-technologies-api-to-mcp.json +43 -0
  105. package/reports/tyk-technologies-tyk-dashboard-mcp.json +43 -0
  106. package/reports/ui5-mcp-server.json +157 -0
  107. package/reports/upstash-context7-mcp.json +82 -0
  108. package/reports/vantasdk-vanta-mcp-server.json +43 -0
  109. package/reports/winor30-mcp-server-datadog.json +43 -0
  110. package/reports/wonderwhy-er-desktop-commander.json +43 -0
  111. package/reports/xzxzzx-bilibili-mcp.json +58 -0
  112. package/src/grader.mjs +66 -0
  113. package/src/index.mjs +108 -0
  114. package/src/reporter.mjs +158 -0
  115. package/src/rules.mjs +363 -0
  116. package/src/scanner.mjs +208 -0
package/reports/aashari-mcp-server-atlassian-jira.json ADDED
@@ -0,0 +1,138 @@
1
+ {
2
+ "scanner": {
3
+ "name": "agentsid-scanner",
4
+ "version": "0.1.0"
5
+ },
6
+ "scannedAt": "2026-03-29T18:08:00.050Z",
7
+ "server": {
8
+ "name": "@aashari/mcp-server-atlassian-jira",
9
+ "version": "3.3.0"
10
+ },
11
+ "toolCount": 5,
12
+ "grade": {
13
+ "overall": "F",
14
+ "score": 0,
15
+ "categories": {
16
+ "injection": "B",
17
+ "permissions": "B",
18
+ "validation": "C",
19
+ "auth": "B",
20
+ "secrets": "F"
21
+ }
22
+ },
23
+ "summary": {
24
+ "CRITICAL": 0,
25
+ "HIGH": 7,
26
+ "MEDIUM": 7,
27
+ "LOW": 0,
28
+ "INFO": 0
29
+ },
30
+ "riskProfile": {
31
+ "read_only": 0,
32
+ "mutation": 0,
33
+ "destructive": 1,
34
+ "execution": 0,
35
+ "privilege": 0,
36
+ "financial": 0
37
+ },
38
+ "findings": [
39
+ {
40
+ "category": "injection",
41
+ "severity": "MEDIUM",
42
+ "tool": "jira_get",
43
+ "rule": "excessive_description_length",
44
+ "detail": "Tool description is 1814 chars — unusually long, may contain hidden instructions"
45
+ },
46
+ {
47
+ "category": "injection",
48
+ "severity": "MEDIUM",
49
+ "tool": "jira_post",
50
+ "rule": "excessive_description_length",
51
+ "detail": "Tool description is 1423 chars — unusually long, may contain hidden instructions"
52
+ },
53
+ {
54
+ "category": "permissions",
55
+ "severity": "HIGH",
56
+ "tool": "jira_delete",
57
+ "rule": "dangerous_tool_destructive",
58
+ "detail": "Tool \"jira_delete\" classified as destructive — requires permission controls"
59
+ },
60
+ {
61
+ "category": "validation",
62
+ "severity": "MEDIUM",
63
+ "tool": "jira_get",
64
+ "rule": "unbounded_strings",
65
+ "detail": "String parameters without length limits or pattern validation in tool \"jira_get\""
66
+ },
67
+ {
68
+ "category": "validation",
69
+ "severity": "MEDIUM",
70
+ "tool": "jira_post",
71
+ "rule": "unbounded_strings",
72
+ "detail": "String parameters without length limits or pattern validation in tool \"jira_post\""
73
+ },
74
+ {
75
+ "category": "validation",
76
+ "severity": "MEDIUM",
77
+ "tool": "jira_put",
78
+ "rule": "unbounded_strings",
79
+ "detail": "String parameters without length limits or pattern validation in tool \"jira_put\""
80
+ },
81
+ {
82
+ "category": "validation",
83
+ "severity": "MEDIUM",
84
+ "tool": "jira_patch",
85
+ "rule": "unbounded_strings",
86
+ "detail": "String parameters without length limits or pattern validation in tool \"jira_patch\""
87
+ },
88
+ {
89
+ "category": "validation",
90
+ "severity": "MEDIUM",
91
+ "tool": "jira_delete",
92
+ "rule": "unbounded_strings",
93
+ "detail": "String parameters without length limits or pattern validation in tool \"jira_delete\""
94
+ },
95
+ {
96
+ "category": "auth",
97
+ "severity": "HIGH",
98
+ "tool": "*",
99
+ "rule": "no_auth_tools",
100
+ "detail": "Server exposes no authentication-related tools — may accept unauthenticated connections"
101
+ },
102
+ {
103
+ "category": "secrets",
104
+ "severity": "HIGH",
105
+ "tool": "jira_get",
106
+ "rule": "potential_secret_exposure",
107
+ "detail": "Tool \"jira_get\" may expose secrets in its output based on description"
108
+ },
109
+ {
110
+ "category": "secrets",
111
+ "severity": "HIGH",
112
+ "tool": "jira_post",
113
+ "rule": "potential_secret_exposure",
114
+ "detail": "Tool \"jira_post\" may expose secrets in its output based on description"
115
+ },
116
+ {
117
+ "category": "secrets",
118
+ "severity": "HIGH",
119
+ "tool": "jira_put",
120
+ "rule": "potential_secret_exposure",
121
+ "detail": "Tool \"jira_put\" may expose secrets in its output based on description"
122
+ },
123
+ {
124
+ "category": "secrets",
125
+ "severity": "HIGH",
126
+ "tool": "jira_patch",
127
+ "rule": "potential_secret_exposure",
128
+ "detail": "Tool \"jira_patch\" may expose secrets in its output based on description"
129
+ },
130
+ {
131
+ "category": "secrets",
132
+ "severity": "HIGH",
133
+ "tool": "jira_delete",
134
+ "rule": "potential_secret_exposure",
135
+ "detail": "Tool \"jira_delete\" may expose secrets in its output based on description"
136
+ }
137
+ ]
138
+ }
package/reports/aashari-mcp-server-aws-sso.json ADDED
@@ -0,0 +1,122 @@
1
+ {
2
+ "scanner": {
3
+ "name": "agentsid-scanner",
4
+ "version": "0.1.0"
5
+ },
6
+ "scannedAt": "2026-03-29T18:08:27.250Z",
7
+ "server": {
8
+ "name": "@aashari/mcp-server-aws-sso",
9
+ "version": "4.0.0"
10
+ },
11
+ "toolCount": 5,
12
+ "grade": {
13
+ "overall": "F",
14
+ "score": 0,
15
+ "categories": {
16
+ "injection": "A",
17
+ "validation": "D",
18
+ "secrets": "D"
19
+ }
20
+ },
21
+ "summary": {
22
+ "CRITICAL": 0,
23
+ "HIGH": 4,
24
+ "MEDIUM": 5,
25
+ "LOW": 3,
26
+ "INFO": 0
27
+ },
28
+ "riskProfile": {
29
+ "read_only": 0,
30
+ "mutation": 0,
31
+ "destructive": 0,
32
+ "execution": 0,
33
+ "privilege": 0,
34
+ "financial": 0
35
+ },
36
+ "findings": [
37
+ {
38
+ "category": "injection",
39
+ "severity": "MEDIUM",
40
+ "tool": "aws_sso_login",
41
+ "rule": "excessive_description_length",
42
+ "detail": "Tool description is 1024 chars — unusually long, may contain hidden instructions"
43
+ },
44
+ {
45
+ "category": "validation",
46
+ "severity": "LOW",
47
+ "tool": "aws_sso_login",
48
+ "rule": "no_required_fields",
49
+ "detail": "No required fields — all input is optional in tool \"aws_sso_login\""
50
+ },
51
+ {
52
+ "category": "validation",
53
+ "severity": "MEDIUM",
54
+ "tool": "aws_sso_status",
55
+ "rule": "empty_schema",
56
+ "detail": "Schema defined but no properties specified in tool \"aws_sso_status\""
57
+ },
58
+ {
59
+ "category": "validation",
60
+ "severity": "LOW",
61
+ "tool": "aws_sso_status",
62
+ "rule": "no_required_fields",
63
+ "detail": "No required fields — all input is optional in tool \"aws_sso_status\""
64
+ },
65
+ {
66
+ "category": "validation",
67
+ "severity": "MEDIUM",
68
+ "tool": "aws_sso_ls_accounts",
69
+ "rule": "empty_schema",
70
+ "detail": "Schema defined but no properties specified in tool \"aws_sso_ls_accounts\""
71
+ },
72
+ {
73
+ "category": "validation",
74
+ "severity": "LOW",
75
+ "tool": "aws_sso_ls_accounts",
76
+ "rule": "no_required_fields",
77
+ "detail": "No required fields — all input is optional in tool \"aws_sso_ls_accounts\""
78
+ },
79
+ {
80
+ "category": "validation",
81
+ "severity": "MEDIUM",
82
+ "tool": "aws_sso_exec_command",
83
+ "rule": "unbounded_strings",
84
+ "detail": "String parameters without length limits or pattern validation in tool \"aws_sso_exec_command\""
85
+ },
86
+ {
87
+ "category": "validation",
88
+ "severity": "MEDIUM",
89
+ "tool": "aws_sso_ec2_exec_command",
90
+ "rule": "unbounded_strings",
91
+ "detail": "String parameters without length limits or pattern validation in tool \"aws_sso_ec2_exec_command\""
92
+ },
93
+ {
94
+ "category": "secrets",
95
+ "severity": "HIGH",
96
+ "tool": "aws_sso_login",
97
+ "rule": "potential_secret_exposure",
98
+ "detail": "Tool \"aws_sso_login\" may expose secrets in its output based on description"
99
+ },
100
+ {
101
+ "category": "secrets",
102
+ "severity": "HIGH",
103
+ "tool": "aws_sso_status",
104
+ "rule": "potential_secret_exposure",
105
+ "detail": "Tool \"aws_sso_status\" may expose secrets in its output based on description"
106
+ },
107
+ {
108
+ "category": "secrets",
109
+ "severity": "HIGH",
110
+ "tool": "aws_sso_exec_command",
111
+ "rule": "potential_secret_exposure",
112
+ "detail": "Tool \"aws_sso_exec_command\" may expose secrets in its output based on description"
113
+ },
114
+ {
115
+ "category": "secrets",
116
+ "severity": "HIGH",
117
+ "tool": "aws_sso_ec2_exec_command",
118
+ "rule": "potential_secret_exposure",
119
+ "detail": "Tool \"aws_sso_ec2_exec_command\" may expose secrets in its output based on description"
120
+ }
121
+ ]
122
+ }
package/reports/agentdeskai-browser-tools-mcp.json ADDED
@@ -0,0 +1,361 @@
1
+ {
2
+ "scanner": {
3
+ "name": "agentsid-scanner",
4
+ "version": "0.1.0"
5
+ },
6
+ "scannedAt": "2026-03-29T19:47:24.655Z",
7
+ "server": {
8
+ "name": "Browser Tools MCP",
9
+ "version": "1.2.0"
10
+ },
11
+ "toolCount": 14,
12
+ "grade": {
13
+ "overall": "F",
14
+ "score": 0,
15
+ "categories": {
16
+ "permissions": "F",
17
+ "validation": "F",
18
+ "auth": "B",
19
+ "hallucination": "F"
20
+ }
21
+ },
22
+ "summary": {
23
+ "CRITICAL": 7,
24
+ "HIGH": 3,
25
+ "MEDIUM": 22,
26
+ "LOW": 14,
27
+ "INFO": 0
28
+ },
29
+ "riskProfile": {
30
+ "read_only": 5,
31
+ "mutation": 0,
32
+ "destructive": 1,
33
+ "execution": 7,
34
+ "privilege": 0,
35
+ "financial": 0
36
+ },
37
+ "findings": [
38
+ {
39
+ "category": "permissions",
40
+ "severity": "HIGH",
41
+ "tool": "wipeLogs",
42
+ "rule": "dangerous_tool_destructive",
43
+ "detail": "Tool \"wipeLogs\" classified as destructive — requires permission controls"
44
+ },
45
+ {
46
+ "category": "permissions",
47
+ "severity": "CRITICAL",
48
+ "tool": "runAccessibilityAudit",
49
+ "rule": "dangerous_tool_execution",
50
+ "detail": "Tool \"runAccessibilityAudit\" classified as execution — requires permission controls"
51
+ },
52
+ {
53
+ "category": "permissions",
54
+ "severity": "CRITICAL",
55
+ "tool": "runPerformanceAudit",
56
+ "rule": "dangerous_tool_execution",
57
+ "detail": "Tool \"runPerformanceAudit\" classified as execution — requires permission controls"
58
+ },
59
+ {
60
+ "category": "permissions",
61
+ "severity": "CRITICAL",
62
+ "tool": "runSEOAudit",
63
+ "rule": "dangerous_tool_execution",
64
+ "detail": "Tool \"runSEOAudit\" classified as execution — requires permission controls"
65
+ },
66
+ {
67
+ "category": "permissions",
68
+ "severity": "CRITICAL",
69
+ "tool": "runNextJSAudit",
70
+ "rule": "dangerous_tool_execution",
71
+ "detail": "Tool \"runNextJSAudit\" classified as execution — requires permission controls"
72
+ },
73
+ {
74
+ "category": "permissions",
75
+ "severity": "CRITICAL",
76
+ "tool": "runDebuggerMode",
77
+ "rule": "dangerous_tool_execution",
78
+ "detail": "Tool \"runDebuggerMode\" classified as execution — requires permission controls"
79
+ },
80
+ {
81
+ "category": "permissions",
82
+ "severity": "CRITICAL",
83
+ "tool": "runAuditMode",
84
+ "rule": "dangerous_tool_execution",
85
+ "detail": "Tool \"runAuditMode\" classified as execution — requires permission controls"
86
+ },
87
+ {
88
+ "category": "permissions",
89
+ "severity": "CRITICAL",
90
+ "tool": "runBestPracticesAudit",
91
+ "rule": "dangerous_tool_execution",
92
+ "detail": "Tool \"runBestPracticesAudit\" classified as execution — requires permission controls"
93
+ },
94
+ {
95
+ "category": "validation",
96
+ "severity": "MEDIUM",
97
+ "tool": "getConsoleLogs",
98
+ "rule": "empty_schema",
99
+ "detail": "Schema defined but no properties specified in tool \"getConsoleLogs\""
100
+ },
101
+ {
102
+ "category": "validation",
103
+ "severity": "LOW",
104
+ "tool": "getConsoleLogs",
105
+ "rule": "no_required_fields",
106
+ "detail": "No required fields — all input is optional in tool \"getConsoleLogs\""
107
+ },
108
+ {
109
+ "category": "validation",
110
+ "severity": "MEDIUM",
111
+ "tool": "getConsoleErrors",
112
+ "rule": "empty_schema",
113
+ "detail": "Schema defined but no properties specified in tool \"getConsoleErrors\""
114
+ },
115
+ {
116
+ "category": "validation",
117
+ "severity": "LOW",
118
+ "tool": "getConsoleErrors",
119
+ "rule": "no_required_fields",
120
+ "detail": "No required fields — all input is optional in tool \"getConsoleErrors\""
121
+ },
122
+ {
123
+ "category": "validation",
124
+ "severity": "MEDIUM",
125
+ "tool": "getNetworkErrors",
126
+ "rule": "empty_schema",
127
+ "detail": "Schema defined but no properties specified in tool \"getNetworkErrors\""
128
+ },
129
+ {
130
+ "category": "validation",
131
+ "severity": "LOW",
132
+ "tool": "getNetworkErrors",
133
+ "rule": "no_required_fields",
134
+ "detail": "No required fields — all input is optional in tool \"getNetworkErrors\""
135
+ },
136
+ {
137
+ "category": "validation",
138
+ "severity": "MEDIUM",
139
+ "tool": "getNetworkLogs",
140
+ "rule": "empty_schema",
141
+ "detail": "Schema defined but no properties specified in tool \"getNetworkLogs\""
142
+ },
143
+ {
144
+ "category": "validation",
145
+ "severity": "LOW",
146
+ "tool": "getNetworkLogs",
147
+ "rule": "no_required_fields",
148
+ "detail": "No required fields — all input is optional in tool \"getNetworkLogs\""
149
+ },
150
+ {
151
+ "category": "validation",
152
+ "severity": "MEDIUM",
153
+ "tool": "takeScreenshot",
154
+ "rule": "empty_schema",
155
+ "detail": "Schema defined but no properties specified in tool \"takeScreenshot\""
156
+ },
157
+ {
158
+ "category": "validation",
159
+ "severity": "LOW",
160
+ "tool": "takeScreenshot",
161
+ "rule": "no_required_fields",
162
+ "detail": "No required fields — all input is optional in tool \"takeScreenshot\""
163
+ },
164
+ {
165
+ "category": "validation",
166
+ "severity": "MEDIUM",
167
+ "tool": "getSelectedElement",
168
+ "rule": "empty_schema",
169
+ "detail": "Schema defined but no properties specified in tool \"getSelectedElement\""
170
+ },
171
+ {
172
+ "category": "validation",
173
+ "severity": "LOW",
174
+ "tool": "getSelectedElement",
175
+ "rule": "no_required_fields",
176
+ "detail": "No required fields — all input is optional in tool \"getSelectedElement\""
177
+ },
178
+ {
179
+ "category": "validation",
180
+ "severity": "MEDIUM",
181
+ "tool": "wipeLogs",
182
+ "rule": "empty_schema",
183
+ "detail": "Schema defined but no properties specified in tool \"wipeLogs\""
184
+ },
185
+ {
186
+ "category": "validation",
187
+ "severity": "LOW",
188
+ "tool": "wipeLogs",
189
+ "rule": "no_required_fields",
190
+ "detail": "No required fields — all input is optional in tool \"wipeLogs\""
191
+ },
192
+ {
193
+ "category": "validation",
194
+ "severity": "MEDIUM",
195
+ "tool": "runAccessibilityAudit",
196
+ "rule": "empty_schema",
197
+ "detail": "Schema defined but no properties specified in tool \"runAccessibilityAudit\""
198
+ },
199
+ {
200
+ "category": "validation",
201
+ "severity": "LOW",
202
+ "tool": "runAccessibilityAudit",
203
+ "rule": "no_required_fields",
204
+ "detail": "No required fields — all input is optional in tool \"runAccessibilityAudit\""
205
+ },
206
+ {
207
+ "category": "validation",
208
+ "severity": "MEDIUM",
209
+ "tool": "runPerformanceAudit",
210
+ "rule": "empty_schema",
211
+ "detail": "Schema defined but no properties specified in tool \"runPerformanceAudit\""
212
+ },
213
+ {
214
+ "category": "validation",
215
+ "severity": "LOW",
216
+ "tool": "runPerformanceAudit",
217
+ "rule": "no_required_fields",
218
+ "detail": "No required fields — all input is optional in tool \"runPerformanceAudit\""
219
+ },
220
+ {
221
+ "category": "validation",
222
+ "severity": "MEDIUM",
223
+ "tool": "runSEOAudit",
224
+ "rule": "empty_schema",
225
+ "detail": "Schema defined but no properties specified in tool \"runSEOAudit\""
226
+ },
227
+ {
228
+ "category": "validation",
229
+ "severity": "LOW",
230
+ "tool": "runSEOAudit",
231
+ "rule": "no_required_fields",
232
+ "detail": "No required fields — all input is optional in tool \"runSEOAudit\""
233
+ },
234
+ {
235
+ "category": "validation",
236
+ "severity": "MEDIUM",
237
+ "tool": "runNextJSAudit",
238
+ "rule": "empty_schema",
239
+ "detail": "Schema defined but no properties specified in tool \"runNextJSAudit\""
240
+ },
241
+ {
242
+ "category": "validation",
243
+ "severity": "LOW",
244
+ "tool": "runNextJSAudit",
245
+ "rule": "no_required_fields",
246
+ "detail": "No required fields — all input is optional in tool \"runNextJSAudit\""
247
+ },
248
+ {
249
+ "category": "validation",
250
+ "severity": "MEDIUM",
251
+ "tool": "runDebuggerMode",
252
+ "rule": "empty_schema",
253
+ "detail": "Schema defined but no properties specified in tool \"runDebuggerMode\""
254
+ },
255
+ {
256
+ "category": "validation",
257
+ "severity": "LOW",
258
+ "tool": "runDebuggerMode",
259
+ "rule": "no_required_fields",
260
+ "detail": "No required fields — all input is optional in tool \"runDebuggerMode\""
261
+ },
262
+ {
263
+ "category": "validation",
264
+ "severity": "MEDIUM",
265
+ "tool": "runAuditMode",
266
+ "rule": "empty_schema",
267
+ "detail": "Schema defined but no properties specified in tool \"runAuditMode\""
268
+ },
269
+ {
270
+ "category": "validation",
271
+ "severity": "LOW",
272
+ "tool": "runAuditMode",
273
+ "rule": "no_required_fields",
274
+ "detail": "No required fields — all input is optional in tool \"runAuditMode\""
275
+ },
276
+ {
277
+ "category": "validation",
278
+ "severity": "MEDIUM",
279
+ "tool": "runBestPracticesAudit",
280
+ "rule": "empty_schema",
281
+ "detail": "Schema defined but no properties specified in tool \"runBestPracticesAudit\""
282
+ },
283
+ {
284
+ "category": "validation",
285
+ "severity": "LOW",
286
+ "tool": "runBestPracticesAudit",
287
+ "rule": "no_required_fields",
288
+ "detail": "No required fields — all input is optional in tool \"runBestPracticesAudit\""
289
+ },
290
+ {
291
+ "category": "auth",
292
+ "severity": "HIGH",
293
+ "tool": "*",
294
+ "rule": "no_auth_tools",
295
+ "detail": "Server exposes no authentication-related tools — may accept unauthenticated connections"
296
+ },
297
+ {
298
+ "category": "hallucination",
299
+ "severity": "MEDIUM",
300
+ "tool": "getNetworkErrors",
301
+ "rule": "missing_scope_boundary",
302
+ "detail": "Tool \"getNetworkErrors\" references network without specifying scope boundaries. LLM will attempt to access the broadest possible scope."
303
+ },
304
+ {
305
+ "category": "hallucination",
306
+ "severity": "MEDIUM",
307
+ "tool": "getNetworkLogs",
308
+ "rule": "missing_scope_boundary",
309
+ "detail": "Tool \"getNetworkLogs\" references network without specifying scope boundaries. LLM will attempt to access the broadest possible scope."
310
+ },
311
+ {
312
+ "category": "hallucination",
313
+ "severity": "MEDIUM",
314
+ "tool": "runAccessibilityAudit",
315
+ "rule": "vague_description_over_privilege",
316
+ "detail": "Tool \"runAccessibilityAudit\" uses vague action words (run, access) without specific operations. LLMs will interpret this as the broadest possible action."
317
+ },
318
+ {
319
+ "category": "hallucination",
320
+ "severity": "MEDIUM",
321
+ "tool": "runPerformanceAudit",
322
+ "rule": "vague_description_over_privilege",
323
+ "detail": "Tool \"runPerformanceAudit\" uses vague action words (perform, run) without specific operations. LLMs will interpret this as the broadest possible action."
324
+ },
325
+ {
326
+ "category": "hallucination",
327
+ "severity": "MEDIUM",
328
+ "tool": "runSEOAudit",
329
+ "rule": "vague_description_over_privilege",
330
+ "detail": "Tool \"runSEOAudit\" uses vague action words (run) without specific operations. LLMs will interpret this as the broadest possible action."
331
+ },
332
+ {
333
+ "category": "hallucination",
334
+ "severity": "HIGH",
335
+ "tool": "runNextJSAudit",
336
+ "rule": "no_description",
337
+ "detail": "Tool \"runNextJSAudit\" has no description. LLM will infer behavior entirely from the name — unpredictable tool usage."
338
+ },
339
+ {
340
+ "category": "hallucination",
341
+ "severity": "MEDIUM",
342
+ "tool": "runDebuggerMode",
343
+ "rule": "vague_description_over_privilege",
344
+ "detail": "Tool \"runDebuggerMode\" uses vague action words (run) without specific operations. LLMs will interpret this as the broadest possible action."
345
+ },
346
+ {
347
+ "category": "hallucination",
348
+ "severity": "MEDIUM",
349
+ "tool": "runAuditMode",
350
+ "rule": "vague_description_over_privilege",
351
+ "detail": "Tool \"runAuditMode\" uses vague action words (perform, run, access) without specific operations. LLMs will interpret this as the broadest possible action."
352
+ },
353
+ {
354
+ "category": "hallucination",
355
+ "severity": "MEDIUM",
356
+ "tool": "runBestPracticesAudit",
357
+ "rule": "vague_description_over_privilege",
358
+ "detail": "Tool \"runBestPracticesAudit\" uses vague action words (run) without specific operations. LLMs will interpret this as the broadest possible action."
359
+ }
360
+ ]
361
+ }
package/reports/ahmetkca-mcp-server-postgres.json ADDED
@@ -0,0 +1,43 @@
1
+ {
2
+ "scanner": {
3
+ "name": "agentsid-scanner",
4
+ "version": "0.1.0"
5
+ },
6
+ "scannedAt": "2026-03-29T18:08:52.308Z",
7
+ "server": {
8
+ "name": "unknown",
9
+ "version": "?"
10
+ },
11
+ "toolCount": 0,
12
+ "grade": {
13
+ "overall": "B",
14
+ "score": 85,
15
+ "categories": {
16
+ "auth": "B"
17
+ }
18
+ },
19
+ "summary": {
20
+ "CRITICAL": 0,
21
+ "HIGH": 1,
22
+ "MEDIUM": 0,
23
+ "LOW": 0,
24
+ "INFO": 0
25
+ },
26
+ "riskProfile": {
27
+ "read_only": 0,
28
+ "mutation": 0,
29
+ "destructive": 0,
30
+ "execution": 0,
31
+ "privilege": 0,
32
+ "financial": 0
33
+ },
34
+ "findings": [
35
+ {
36
+ "category": "auth",
37
+ "severity": "HIGH",
38
+ "tool": "*",
39
+ "rule": "no_auth_tools",
40
+ "detail": "Server exposes no authentication-related tools — may accept unauthenticated connections"
41
+ }
42
+ ]
43
+ }