AGENTSCORE-2026-0050
MCP package: beluz-qa
Published 5/22/2026 · 0.4.0 → 0.5.0
beluz-qa updated from 0.4.0 to 0.5.0. Score changed 95/100 to 90/100 (-5). Risk: LOW to LOW. 2 findings.
95 → 90
Score
LOW → LOW
Risk
ALLOW
Verdict
Findings
- low command_injection: Potential command injection: shell execution with template literal input (downgraded — mitigators detected in scope: sanitizer:path.join)
- low no_provenance: Package is not published with provenance attestations or trusted publishing. Published by: luz.gutierrez