Back to Browse
Free
Server data from the Official MCP Registry
FinishKit MCP: scan GitHub repos for security vulnerabilities, deployment blockers, and quality
About
FinishKit MCP: scan GitHub repos for security vulnerabilities, deployment blockers, and quality
What You'll Need
Set these up before or after installing:
FinishKit API key (format: fk_live_...). Get one at finishkit.app/dashboard/settingsRequired
Environment variable: FINISHKIT_API_KEY
How to Install
Add this to your MCP configuration file:
{
"mcpServers": {
"io-github-finishkit-mcp": {
"env": {
"FINISHKIT_API_KEY": "your-finishkit-api-key-here"
},
"args": [
"-y",
"@finishkit/mcp"
],
"command": "npx"
}
}
}Security Report
7.0
Moderate7.0Moderate RiskThis is a well-architected MCP server that properly requires authentication via API keys and follows security best practices. All network requests go through the authenticated FinishKit SDK, token storage follows secure practices with environment variables, and there are no dangerous patterns or security vulnerabilities. Supply chain analysis found 3 known vulnerabilities in dependencies (0 critical, 2 high severity). Package verification found 1 issue.
Scanned 7 files · 6 findings
Security scores are indicators to help you make informed decisions, not guarantees. Always review permissions before connecting any MCP server.
Permissions Required
This plugin requests these system permissions. Most are normal for its category.
Reviews
No reviews yet
Be the first to review this server!