Review recommended
assessed on 2 of 4 dimensions
ProvenanceNo public source repository linked — origin is an unverified claim.Official MCP Registry · as of Jul 11, 2026
ReviewSupply chainNo known vulnerabilities in scanned package dependencies (OSV).OSV (Google Open Source Vulnerabilities) · as of Jul 11, 2026
PassMaintenanceRepository maintenance signals not yet ingested.
PendingManifest integrityManifest capture requires running the package (sandbox phase).
PendingBehavioral trustNo live endpoint to observe.
Not applicable
Connect
npm package · v1.0.2 · stdio
Provenance
- Official MCP Registry · as of Jul 11, 2026 · registry-tos
- OSV (Google Open Source Vulnerabilities) · as of Jul 11, 2026 · CC-BY-4.0
Every verdict is attributable to its sources and recomputed from our own landed copy, never read live on this page.