Server data from the Official MCP Registry
Open music metadata: artists, releases, and recordings from MusicBrainz. No API key. By UnClick.
Open music metadata: artists, releases, and recordings from MusicBrainz. No API key. By UnClick.
UnClick is a broad API aggregation server exposing 450+ endpoints across 178+ third-party tools. While the code structure is organized and authentication via UNCLICK_API_KEY is required, the server's expansive scope and credential handling practices present moderate security concerns. The server passes API keys through environment variables and accepts them as tool parameters, which could enable credential leakage or misuse. Additionally, the pervasive use of third-party integrations without visible input validation, error handling verification, or scope-limiting mechanisms across memory operations, tool discovery, and dynamic endpoint calling creates a larger attack surface than typical MCP servers. Supply chain analysis found 3 known vulnerabilities in dependencies (0 critical, 3 high severity). Package verification found 1 issue (1 critical, 0 high severity).
4 files analyzed · 13 issues found
Security scores are indicators to help you make informed decisions, not guarantees. Always review permissions before connecting any MCP server.
This plugin requests these system permissions. Most are normal for its category.
Unverified package source
We couldn't verify that the installable package matches the reviewed source code. Proceed with caution.
Add this to your MCP configuration file:
{
"mcpServers": {
"io-github-malamutemayhem-musicbrainz": {
"args": [
"-y",
"unclick"
],
"command": "npx"
}
}
}Be the first to review this server!
by Modelcontextprotocol · Developer Tools
Read, search, and manipulate Git repositories programmatically
by Toleno · Developer Tools
Toleno Network MCP Server — Manage your Toleno mining account with Claude AI using natural language.
by mcp-marketplace · Developer Tools
Create, build, and publish Python MCP servers to PyPI — conversationally.