AGENTSCORE-2026-0017
MCP package: prism-mcp-server
Published 4/28/2026 · 11.6.0 → 12.5.0
prism-mcp-server updated from 11.6.0 to 12.5.0. Score changed 85/100 to 65/100 (-20). Risk: LOW to ELEVATED. 3 findings.
85 → 65
Score
LOW → ELEVATED
Risk
WARN
Verdict
Findings
- medium excessive_dependencies: Package has 23 runtime dependencies (high attack surface)
- high command_injection: Potential command injection: shell execution with template literal input
- low no_provenance: Package is not published with provenance attestations or trusted publishing. Published by: dmitricostenco