registry  /  clawql-mcp  /  6.4.1

clawql-mcp@6.4.1

MCP server: search + execute OpenAPI/Discovery APIs (internal GraphQL projection), optional native GraphQL HTTP and gRPC unary sources

Static Scan Results

scanned 8d ago · by rust-scanner

Static analysis completed at 65.0% confidence. No malicious behavior was detected; 8 low-signal pattern(s) were surfaced and cleared.

Static reason
No blocking static signals were detected.

Decision evidence

public snapshot
Behavioral surface
Source
CryptoDynamicRequireEnvironmentVarsFilesystemNetwork
Supply chain
HighEntropyStringsUrlStrings
ManifestNo manifest risk signals triggered.
scanned 30 file(s), 70.5 KB of source, external domains: 0.0.0.0

Source & flagged code

1 flagged · loading source
bin/clawql-mcp-http.mjsView file
8const dir = dirname(fileURLToPath(import.meta.url)); L9: await import(join(dir, "../dist/server-http.js"));
Medium
Dynamic Require

Package source references dynamic require/import behavior.

bin/clawql-mcp-http.mjsView on unpkg · L8

Findings

3 Medium5 Low
MediumDynamic Requirebin/clawql-mcp-http.mjs
MediumNetwork
MediumEnvironment Vars
LowNon Install Lifecycle Scripts
LowScripts Present
LowFilesystem
LowHigh Entropy Strings
LowUrl Strings