Loading npm security reports…
MCP server exposing recall + load_memory over a markdown vault.
Static analysis completed at 65.0% confidence. No malicious behavior was detected; 10 low-signal pattern(s) were surfaced and cleared.
Package source references child process execution.
dist/statusline-session.jsView on unpkg · L13Package source references weak cryptographic algorithms.
dist/usage-sidecar.jsView on unpkg · L76A single source file combines environment access, network access, and code or shell execution; review context before blocking.
dist/mcp-forwarder.jsView on unpkg · L41Package source references child process execution.
dist/statusline-session.jsView on unpkg · L13Package source references weak cryptographic algorithms.
dist/usage-sidecar.jsView on unpkg · L76A single source file combines environment access, network access, and code or shell execution; review context before blocking.
dist/mcp-forwarder.jsView on unpkg · L41