Server data from the Official MCP Registry
ESPN Sports tools for sports, scores, espn by UnClick.
ESPN Sports tools for sports, scores, espn by UnClick.
UnClick MCP server presents significant security concerns despite exposing a large catalog of tools. The codebase exhibits critical authentication bypass vulnerabilities, excessive unchecked network permissions, and dangerous patterns around API key handling. While individual tool implementations are imported, the server's core architecture allows unauthenticated access to sensitive operations, permits arbitrary API calls without scope validation, and creates broad exposure to external services. These issues directly violate fundamental MCP security principles. Supply chain analysis found 3 known vulnerabilities in dependencies (0 critical, 3 high severity). Package verification found 1 issue (1 critical, 0 high severity).
4 files analyzed · 16 issues found
Security scores are indicators to help you make informed decisions, not guarantees. Always review permissions before connecting any MCP server.
This plugin requests these system permissions. Most are normal for its category.
Unverified package source
We couldn't verify that the installable package matches the reviewed source code. Proceed with caution.
Add this to your MCP configuration file:
{
"mcpServers": {
"io-github-malamutemayhem-espn": {
"args": [
"-y",
"unclick"
],
"command": "npx"
}
}
}Be the first to review this server!
by Modelcontextprotocol · Developer Tools
Read, search, and manipulate Git repositories programmatically
by Toleno · Developer Tools
Toleno Network MCP Server — Manage your Toleno mining account with Claude AI using natural language.
by mcp-marketplace · Developer Tools
Create, build, and publish Python MCP servers to PyPI — conversationally.