No blockers found
assessed on 2 of 4 dimensions
ProvenanceOrigin linked to a public source repository.Official MCP Registry · as of Jul 10, 2026
PassSupply chainNo known vulnerabilities in scanned package dependencies (OSV).OSV (Google Open Source Vulnerabilities) · as of Jul 11, 2026
PassMaintenanceRepository maintenance signals not yet ingested.
PendingManifest integrityManifest capture requires running the package (sandbox phase).
PendingBehavioral trustNo live endpoint to observe.
Not applicable
Connect
npm package · v1.0.0 · stdio
npx -y x402-facilitator-proxyProvenance
- Official MCP Registry · as of Jul 10, 2026 · registry-tos
- OSV (Google Open Source Vulnerabilities) · as of Jul 11, 2026 · CC-BY-4.0
Every verdict is attributable to its sources and recomputed from our own landed copy, never read live on this page.