Server data from the Official MCP Registry
Video game database: search games, companies, genres, and platforms via IGDB. By UnClick.
Video game database: search games, companies, genres, and platforms via IGDB. By UnClick.
UnClick MCP server has multiple security concerns that warrant careful review. The server accepts an UNCLICK_API_KEY via environment variables for authentication, but the codebase reveals extensive integration with 450+ third-party APIs requiring numerous API keys (Riot, Bungie, RAWG, Stripe, Shopify, etc.), many of which are passed as optional parameters directly in tool inputs. This creates a critical vulnerability where API keys can be logged, cached, or exfiltrated through user inputs. Additionally, the server exposes powerful operations (file I/O, email access, payment processing, infrastructure management) without clear per-tool authentication boundaries, and the massive number of tool integrations creates a substantial attack surface with minimal visible security controls. Supply chain analysis found 3 known vulnerabilities in dependencies (0 critical, 3 high severity). Package verification found 1 issue (1 critical, 0 high severity).
4 files analyzed · 15 issues found
Security scores are indicators to help you make informed decisions, not guarantees. Always review permissions before connecting any MCP server.
This plugin requests these system permissions. Most are normal for its category.
Unverified package source
We couldn't verify that the installable package matches the reviewed source code. Proceed with caution.
Add this to your MCP configuration file:
{
"mcpServers": {
"io-github-malamutemayhem-igdb": {
"args": [
"-y",
"unclick"
],
"command": "npx"
}
}
}Be the first to review this server!
by Modelcontextprotocol · Developer Tools
Read, search, and manipulate Git repositories programmatically
by Toleno · Developer Tools
Toleno Network MCP Server — Manage your Toleno mining account with Claude AI using natural language.
by mcp-marketplace · Developer Tools
Create, build, and publish Python MCP servers to PyPI — conversationally.