npm - @mcpskillsio/server - Versions diffs - 2.3.0 → 2.4.1 - Mend

@mcpskillsio/server 2.3.0 → 2.4.1

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (4) hide show

package/README.md CHANGED Viewed

@@ -2,7 +2,7 @@
 Trust-score any AI skill or MCP server from inside Claude Code, Cursor, or any MCP client.
-14 signals across 4 dimensions with safety scanning for prompt injection, credential theft, and supply chain attacks.
+13 standard signals (15 in Skills Mode) across 4 dimensions with safety scanning for prompt injection, credential theft, and supply chain attacks.
 ## Install
@@ -100,11 +100,19 @@ Get a boolean go/no-go decision with reasoning.
 "Should I install this MCP server? 21st-dev/magic-mcp"
 ```
+### `build_stack`
+Recommend a vetted, pre-scored stack from MCP Skills' curated packages.
+```
+"Build me a stack: auth + payments + email"
+```
 ## Full Reports
 Free tier returns trust tier + dimension scores (same as mcpskills.io free scans).
-For full 14-signal reports with detailed safety findings inside your IDE, set your API key:
+For full reports (13 standard / 15 Skills Mode signals + safety findings) inside your IDE, set your API key:
 ```bash
 export MCPSKILLS_API_KEY=your_key_here
@@ -117,8 +125,8 @@ Get your API key at [mcpskills.io/api](https://mcpskills.io/api).
 The server calls the mcpskills.io trust scoring API, which:
 1. Fetches repo data from GitHub API and OpenSSF Scorecard
-2. Scores 14 signals across 4 dimensions (Alive, Legit, Solid, Usable)
-3. Detects AI skills/MCP servers and activates Skills Mode (+2 bonus signals)
+2. Scores 13 standard signals across 4 dimensions (Alive, Legit, Solid, Usable)
+3. Detects AI skills/MCP servers and activates Skills Mode (+2 bonus signals — 15 total)
 4. Runs 5 safety scans based on ClawHavoc and ToxicSkills attack patterns
 5. Assigns a trust tier: Verified (>=7.0), Established (>=4.5), New, or Blocked

package/index.js CHANGED Viewed

@@ -396,7 +396,7 @@ function formatSafetyResult(data) {
 const server = new Server(
   {
     name: "mcpskills",
-    version: "2.2.0",
+    version: "2.4.1",
   },
   {
     capabilities: {

package/package.json CHANGED Viewed

@@ -1,7 +1,7 @@
 {
   "name": "@mcpskillsio/server",
-  "version": "2.3.0",
-  "description": "Trust-score any AI skill or MCP server from inside Claude Code, Cursor, or any MCP client. Accepts GitHub repos, npm packages, Smithery URLs, and OpenClaw skills. 14 signals, safety scanning, recommendations, badges, monitoring, batch checking, auto-gate decisions, and stack building from live trust data.",
+  "version": "2.4.1",
+  "description": "Trust-score any AI skill or MCP server from inside Claude Code, Cursor, or any MCP client. Accepts GitHub repos, npm packages, Smithery URLs, and OpenClaw skills. 15 signals (incl. OSV/KEV/EPSS vulnerability intelligence), safety scanning, OpenClaw frontmatter parsing + transparency scoring, recommendations, badges, monitoring, batch checking, auto-gate decisions, and stack building from live trust data.",
   "type": "module",
   "main": "index.js",
   "bin": {

package/.netlify/netlify.toml DELETED Viewed

@@ -1,332 +0,0 @@
-functionsDirectory = "/Users/michaelbrowne/Desktop/mcpskills/mcp-server/netlify/functions"
-functionsDirectoryOrigin = "config-v1"
-redirectsOrigin = "config"
-plugins = []
-headers = []
-[functions]
-[functions.nightly-crawl]
-schedule = "0 2 * * *"
-[functions.daily-scan]
-schedule = "0 8 * * *"
-[functions.weekly-digest]
-schedule = "0 18 * * 0"
-[functions.monthly-recap]
-schedule = "0 14 1-5 * *"
-[functions."*"]
-included_files = ["lib/fonts/**", "data/**"]
-external_node_modules = ["satori", "@resvg/resvg-js", "@netlify/blobs"]
-node_bundler = "esbuild"
-[build]
-publish = "/Users/michaelbrowne/Desktop/mcpskills/mcp-server/public"
-publishOrigin = "config"
-base = "/Users/michaelbrowne/Desktop/mcpskills/mcp-server"
-functions = "/Users/michaelbrowne/Desktop/mcpskills/mcp-server/netlify/functions"
-[build.environment]
-[build.processing]
-[build.processing.css]
-[build.processing.html]
-[build.processing.images]
-[build.processing.js]
-[build.services]
-[[redirects]]
-from = "/blog/state-of-ai-skill-security"
-to = "/blog/state-of-ai-skill-security.html"
-status = 200.0
-force = false
-[redirects.query]
-[redirects.conditions]
-[redirects.headers]
-[[redirects]]
-from = "/blog/clawhavoc-missing-trust-layer"
-to = "/blog/clawhavoc-missing-trust-layer.html"
-status = 200.0
-force = false
-[redirects.query]
-[redirects.conditions]
-[redirects.headers]
-[[redirects]]
-from = "/blog/how-to-check-ai-skill-safe"
-to = "/blog/how-to-check-ai-skill-safe.html"
-status = 200.0
-force = false
-[redirects.query]
-[redirects.conditions]
-[redirects.headers]
-[[redirects]]
-from = "/blog/score-without-github-repo"
-to = "/blog/score-without-github-repo.html"
-status = 200.0
-force = false
-[redirects.query]
-[redirects.conditions]
-[redirects.headers]
-[[redirects]]
-from = "/privacy"
-to = "/privacy.html"
-status = 200.0
-force = false
-[redirects.query]
-[redirects.conditions]
-[redirects.headers]
-[[redirects]]
-from = "/terms"
-to = "/terms.html"
-status = 200.0
-force = false
-[redirects.query]
-[redirects.conditions]
-[redirects.headers]
-[[redirects]]
-from = "/badge/*"
-to = "/.netlify/functions/badge/:splat"
-status = 200.0
-force = false
-[redirects.query]
-[redirects.conditions]
-[redirects.headers]
-[[redirects]]
-from = "/score/*"
-to = "/.netlify/functions/score-page/:splat"
-status = 200.0
-force = false
-[redirects.query]
-[redirects.conditions]
-[redirects.headers]
-[[redirects]]
-from = "/digest/rss.xml"
-to = "/.netlify/functions/digest-rss"
-status = 200.0
-force = false
-[redirects.query]
-[redirects.conditions]
-[redirects.headers]
-[[redirects]]
-from = "/digest/*"
-to = "/.netlify/functions/digest-page/:splat"
-status = 200.0
-force = false
-[redirects.query]
-[redirects.conditions]
-[redirects.headers]
-[[redirects]]
-from = "/digest"
-to = "/.netlify/functions/digest-page"
-status = 200.0
-force = false
-[redirects.query]
-[redirects.conditions]
-[redirects.headers]
-[[redirects]]
-from = "/certified"
-to = "/.netlify/functions/certified-wall"
-status = 200.0
-force = false
-[redirects.query]
-[redirects.conditions]
-[redirects.headers]
-[[redirects]]
-from = "/api/limit-capture"
-to = "/.netlify/functions/limit-capture"
-status = 200.0
-force = false
-[redirects.query]
-[redirects.conditions]
-[redirects.headers]
-[[redirects]]
-from = "/api/trending"
-to = "/.netlify/functions/trending"
-status = 200.0
-force = false
-[redirects.query]
-[redirects.conditions]
-[redirects.headers]
-[[redirects]]
-from = "/trending"
-to = "/.netlify/functions/trending"
-status = 200.0
-force = false
-[redirects.query]
-[redirects.conditions]
-[redirects.headers]
-[[redirects]]
-from = "/sitemap.xml"
-to = "/.netlify/functions/sitemap"
-status = 200.0
-force = false
-[redirects.query]
-[redirects.conditions]
-[redirects.headers]
-[[redirects]]
-from = "/data/latest.json"
-to = "/.netlify/functions/data-export"
-status = 200.0
-force = false
-[redirects.query]
-[redirects.conditions]
-[redirects.headers]
-[[redirects]]
-from = "/data/latest.csv"
-to = "/.netlify/functions/data-export"
-status = 200.0
-force = false
-[redirects.query]
-[redirects.conditions]
-[redirects.headers]
-[[redirects]]
-from = "/methodology"
-to = "/methodology.html"
-status = 200.0
-force = false
-[redirects.query]
-[redirects.conditions]
-[redirects.headers]
-[[redirects]]
-from = "/roadmap"
-to = "/roadmap.html"
-status = 200.0
-force = false
-[redirects.query]
-[redirects.conditions]
-[redirects.headers]
-[[redirects]]
-from = "/certify"
-to = "/certify.html"
-status = 200.0
-force = false
-[redirects.query]
-[redirects.conditions]
-[redirects.headers]
-[[redirects]]
-from = "/api/certify"
-to = "/.netlify/functions/certify"
-status = 200.0
-force = false
-[redirects.query]
-[redirects.conditions]
-[redirects.headers]
-[[redirects]]
-from = "/api/webhook"
-to = "/.netlify/functions/webhook"
-status = 200.0
-force = false
-[redirects.query]
-[redirects.conditions]
-[redirects.headers]
-[[redirects]]
-from = "/api/unlock"
-to = "/.netlify/functions/unlock"
-status = 200.0
-force = false
-[redirects.query]
-[redirects.conditions]
-[redirects.headers]