Server data from the Official MCP Registry
Australian property listings, prices, and suburb stats from Domain. By UnClick.
Australian property listings, prices, and suburb stats from Domain. By UnClick.
This MCP server exposes 450+ API endpoints across 178+ external services with a single API key as the only authentication mechanism. The architecture presents several critical security concerns: the server requires UNCLICK_API_KEY but does not validate it before executing tools, lacks per-tool authorization controls allowing any authenticated user to access sensitive operations (financial data, security scanning, email, SMS, payment systems), and the massive tool surface (mail sending, breach checking, virus scanning, SMS dispatch, payment processing) creates extreme blast-radius risk if credentials are compromised. While the code itself appears reasonably structured without obvious injection vulnerabilities, the security model is fundamentally broken for an MCP server that bridges to dozens of sensitive third-party APIs. Supply chain analysis found 3 known vulnerabilities in dependencies (0 critical, 3 high severity). Package verification found 1 issue (1 critical, 0 high severity).
4 files analyzed · 17 issues found
Security scores are indicators to help you make informed decisions, not guarantees. Always review permissions before connecting any MCP server.
This plugin requests these system permissions. Most are normal for its category.
Unverified package source
We couldn't verify that the installable package matches the reviewed source code. Proceed with caution.
Add this to your MCP configuration file:
{
"mcpServers": {
"io-github-malamutemayhem-domain": {
"args": [
"-y",
"unclick"
],
"command": "npx"
}
}
}Be the first to review this server!
by Modelcontextprotocol · Developer Tools
Read, search, and manipulate Git repositories programmatically
by Toleno · Developer Tools
Toleno Network MCP Server — Manage your Toleno mining account with Claude AI using natural language.
by mcp-marketplace · Developer Tools
Create, build, and publish Python MCP servers to PyPI — conversationally.