MCP server for Flow.cl — Chilean PSP: hosted payment orders, Webpay, refunds, HMAC-signed API
MCP server for Flow.cl — Chilean PSP: hosted payment orders, Webpay, refunds, HMAC-signed API
This is a monorepo for 110 MCP servers providing Latin American commerce integrations. The code analyzed (Sift fraud detection server) demonstrates solid engineering practices with proper authentication, clear tool definitions, and no obvious malicious patterns. However, the broad scope of the catalog—spanning payments, banking, identity, fiscal, and crypto across multiple countries—introduces inherent risk through the sheer number of credential-handling paths. The Sift implementation itself is well-structured, but the overall ecosystem's reliance on API keys and OAuth tokens across dozens of providers warrants heightened scrutiny. Most findings are quality-level; no critical vulnerabilities were detected. Supply chain analysis found 2 known vulnerabilities in dependencies (1 critical, 0 high severity). Package verification found 1 issue (1 critical, 0 high severity).
4 files analyzed · 13 issues found
Security scores are indicators to help you make informed decisions, not guarantees. Always review permissions before connecting any MCP server.
This plugin requests these system permissions. Most are normal for its category.
Unverified package source
We couldn't verify that the installable package matches the reviewed source code. Proceed with caution.
Set these up before or after installing:
Environment variable: FLOW_API_KEY
Environment variable: FLOW_SECRET_KEY
Environment variable: FLOW_ENV
Add this to your MCP configuration file:
{
"mcpServers": {
"io-github-codespar-mcp-flow-cl": {
"env": {
"FLOW_ENV": "your-flow-env-here",
"FLOW_API_KEY": "your-flow-api-key-here",
"FLOW_SECRET_KEY": "your-flow-secret-key-here"
},
"args": [
"-y",
"mcp-dev-latam"
],
"command": "npx"
}
}
}Be the first to review this server!
by Modelcontextprotocol · Developer Tools
Web content fetching and conversion for efficient LLM usage
by Modelcontextprotocol · Developer Tools
Read, search, and manipulate Git repositories programmatically
by Toleno · Developer Tools
Toleno Network MCP Server — Manage your Toleno mining account with Claude AI using natural language.