registry  /  ellmos-servercommander-mcp  /  0.1.0-alpha.11

ellmos-servercommander-mcp@0.1.0-alpha.11

Alpha MCP server for server operations: deploy dry-runs, mail status, log analysis, and health checks.

Static Scan Results

scanned 6h ago · by rust-scanner

Static analysis flagged 6 finding(s) at 72.0% confidence. This version is warn-only unless an AI or security-team review confirms malicious behavior.

Static reason
One or more suspicious static signals were detected.

Decision evidence

public snapshot
Behavioral surface
Source
ChildProcessEnvironmentVars
Supply chainNo supply-chain packaging signals triggered.
ManifestNo manifest risk signals triggered.
scanned 1 file(s), 1.20 KB of source

Source & flagged code

4 flagged · loading source
config/servercommander.example.tomlView file
21patternName = generic_password severity = medium line = 21 matchedText = # passwo...ets.
Medium
Secret Pattern

Package contains a possible secret pattern.

config/servercommander.example.tomlView on unpkg · L21
35patternName = generic_password severity = medium line = 35 matchedText = password...ORD"
Medium
Secret Pattern

Hardcoded password in config/servercommander.example.toml

config/servercommander.example.tomlView on unpkg · L35
src/servercommander/mail.pyView file
path = src/servercommander/mail.py kind = build_helper sizeBytes = 4133 magicHex = [redacted]
Medium
Ships Build Helper

Package ships non-JavaScript build or shell helper files.

src/servercommander/mail.pyView on unpkg
KONZEPT.mdView file
71patternName = generic_password severity = medium line = 71 matchedText = password...ORD"
Medium
Secret Pattern

Hardcoded password in KONZEPT.md

KONZEPT.mdView on unpkg · L71

Findings

5 Medium1 Low
MediumSecret Patternconfig/servercommander.example.toml
MediumEnvironment Vars
MediumShips Build Helpersrc/servercommander/mail.py
MediumSecret Patternconfig/servercommander.example.toml
MediumSecret PatternKONZEPT.md
LowScripts Present