Loading npm security reports…
The fullstack TypeScript framework for MCP and APIs — write one action, serve HTTP, WebSocket, CLI, background tasks, and MCP tools.
Static analysis flagged 11 finding(s) at 72.0% confidence. This version is warn-only unless an AI or security-team review confirms malicious behavior.
Package source references dynamic require/import behavior.
util/glob.tsView on unpkg · L24Hardcoded password in README.md
README.mdPackage source references dynamic require/import behavior.
util/glob.tsView on unpkg · L24