🔥AgentScoreMCP Security

MCP Security Scanner

Scan any npm package for security issues. Free, instant, no signup.

Enter any npm package name to scan it for security issues.

We check install scripts, prompt injection patterns, suspicious URLs, dependencies, and metadata.

🛡️

Install Scripts

Detects postinstall hooks that run arbitrary code

💉

Prompt Injection

Finds instruction-like patterns in package metadata

🔗

Suspicious URLs

Flags raw IPs, sketchy TLDs, exfiltration endpoints

Part of AgentScore. MCP package security screening.
Scans npm metadata for install scripts, suspicious URLs, prompt injection patterns, and dependency risks.