mcpdone-audit

0.5.0 Not latest — view latest

Static analyzer for MCP server repos: 4 checks (BadHost / Starlette CVE-2026-48710, FastMCP wrapper-layer asyncio.run bug, loose @mcp.tool() schemas, subprocess command-injection w/ cross-function taint propagation).

License Sources
SourceLicenseClass
Licensie (detected)
Pending-
PyPI (reported)
MITPermissive

License detection is still in progress for this version.

Loading dependencies…
Versions
2 versions
VersionLicensePublishedStatus
0.6.0 Latest MIT (Unverified)Jul 1, 2026 Pending
0.5.0 ViewingMIT (Unverified)Jun 30, 2026 Pending