Server data from the Official MCP Registry
Country data: flags, currencies, languages, regions, capitals, and more. No API key. By UnClick.
Country data: flags, currencies, languages, regions, capitals, and more. No API key. By UnClick.
This MCP server exposes 450+ API endpoints across 178+ tools without visible authentication enforcement in the tool-wiring layer. The code shows critical architectural issues: API keys are passed as optional string parameters in tool inputs (allowing exposure in logs/history), there is no evidence of per-tool scope validation or rate limiting, and the server appears to grant unrestricted access to all integrated APIs. While individual tool implementations may have security controls, the exposed tool definitions and parameter handling create significant attack surface and credential leakage risks. Supply chain analysis found 3 known vulnerabilities in dependencies (0 critical, 3 high severity). Package verification found 1 issue (1 critical, 0 high severity).
4 files analyzed · 16 issues found
Security scores are indicators to help you make informed decisions, not guarantees. Always review permissions before connecting any MCP server.
This plugin requests these system permissions. Most are normal for its category.
Unverified package source
We couldn't verify that the installable package matches the reviewed source code. Proceed with caution.
Add this to your MCP configuration file:
{
"mcpServers": {
"io-github-malamutemayhem-restcountries": {
"args": [
"-y",
"unclick"
],
"command": "npx"
}
}
}Be the first to review this server!
by Modelcontextprotocol · Developer Tools
Read, search, and manipulate Git repositories programmatically
by Toleno · Developer Tools
Toleno Network MCP Server — Manage your Toleno mining account with Claude AI using natural language.
by mcp-marketplace · Developer Tools
Create, build, and publish Python MCP servers to PyPI — conversationally.