Server data from the Official MCP Registry
Global news search, events, tone, themes, and geographic signals from GDELT. By UnClick.
Global news search, events, tone, themes, and geographic signals from GDELT. By UnClick.
This is a large MCP server aggregating 450+ API integrations with significant security implications. While the code demonstrates good architectural patterns (modular tool design, typed schemas), critical issues include: (1) API keys passed via MCP config and environment variables with insufficient guidance on secure storage, (2) an extremely broad permission scope (network_http, env_vars) without per-tool access controls, and (3) minimal input validation and error handling across dozens of third-party API integrations. The server's design as a one-size-fits-all tool catalog creates privilege escalation risks where a single compromised integration or misconfigured key could expose all integrated services. Supply chain analysis found 3 known vulnerabilities in dependencies (0 critical, 3 high severity). Package verification found 1 issue (1 critical, 0 high severity).
4 files analyzed · 13 issues found
Security scores are indicators to help you make informed decisions, not guarantees. Always review permissions before connecting any MCP server.
This plugin requests these system permissions. Most are normal for its category.
Unverified package source
We couldn't verify that the installable package matches the reviewed source code. Proceed with caution.
Add this to your MCP configuration file:
{
"mcpServers": {
"io-github-malamutemayhem-gdelt": {
"args": [
"-y",
"unclick"
],
"command": "npx"
}
}
}Be the first to review this server!
by Modelcontextprotocol · Developer Tools
Read, search, and manipulate Git repositories programmatically
by Toleno · Developer Tools
Toleno Network MCP Server — Manage your Toleno mining account with Claude AI using natural language.
by mcp-marketplace · Developer Tools
Create, build, and publish Python MCP servers to PyPI — conversationally.