Loading...
npx -y @smithery/cli install @qianniuspace/mcp-security-audit --client claude{
"mcpServers": {
"mcp-security-audit": {
"command": "npx",
"args": ["-y", "mcp-security-audit"]
}
}
}security_auditAudits npm package dependencies for security vulnerabilities.
Read-only access to npm registry; no direct write or execution capabilities.
This tool is generally safe for identifying vulnerabilities in npm dependencies. However, users should carefully review the recommended fixes and test them thoroughly before applying them to avoid introducing compatibility issues. The risk is moderate due to the reliance on an external registry and the potential for misinterpreting vulnerability reports.