Back to Browse
Free
Server data from the Official MCP Registry
npm package search, audit, bundle analysis for AI agents
About
npm package search, audit, bundle analysis for AI agents
How to Install
Add this to your MCP configuration file:
{
"mcpServers": {
"io-github-rog0x-npm": {
"args": [
"-y",
"@rog0x/mcp-npm-tools"
],
"command": "npx"
}
}
}Security Report
6.2
Moderate6.2Moderate RiskThis is a well-structured MCP server for npm package management with proper API integration and reasonable error handling. The code demonstrates good security practices with appropriate timeout handling and input validation, making it suitable for developer tooling purposes. Supply chain analysis found 2 known vulnerabilities in dependencies (0 critical, 2 high severity). Package verification found 1 issue.
Scanned 7 files · 5 findings
Security scores are indicators to help you make informed decisions, not guarantees. Always review permissions before connecting any MCP server.
Permissions Required
This plugin requests these system permissions. Most are normal for its category.
Reviews
No reviews yet
Be the first to review this server!