Back to Browse
Free
Server data from the Official MCP Registry
Scans Base L2 smart contracts for security risks. Risk score 0-100, detects backdoors & proxies.
About
Scans Base L2 smart contracts for security risks. Risk score 0-100, detects backdoors & proxies.
What You'll Need
Set these up before or after installing:
BaseScan API key for source code analysis (optional — basic bytecode scan works without it)Required
Environment variable: BASESCAN_API_KEY
Unverified package source
We couldn't verify that the installable package matches the reviewed source code. Proceed with caution.
How to Install
Add this to your MCP configuration file:
{
"mcpServers": {
"io-github-fino-oss-contract-scanner": {
"env": {
"BASESCAN_API_KEY": "your-basescan-api-key-here"
},
"args": [
"-y",
"contract-scanner-mcp"
],
"command": "npx"
}
}
}Security Report
5.2
Moderate5.2Moderate RiskWell-structured MCP server with proper input validation and no hardcoded credentials. The server appropriately uses environment variables for API keys and implements comprehensive security scanning functionality. Code quality is good with thorough error handling. Supply chain analysis found 3 known vulnerabilities in dependencies (0 critical, 2 high severity). Package verification found 1 issue (1 critical, 0 high severity).
Scanned 4 files · 7 findings
Security scores are indicators to help you make informed decisions, not guarantees. Always review permissions before connecting any MCP server.
Permissions Required
This plugin requests these system permissions. Most are normal for its category.
Reviews
No reviews yet
Be the first to review this server!