low

AGENTSCORE-2026-0063

Name: AgentScore MCP Package Security Scan Dataset
Creator: AgentScore

Published 6/13/2026 · 0.2.3 → 0.2.6

@diagrammo/dgmo-mcp updated from 0.2.3 to 0.2.6. Score changed 95/100 to 90/100 (-5). Risk: LOW to LOW. 2 findings.

95 → 90

Score

LOW → LOW

Risk

ALLOW

Verdict

Findings

low command_injection: Potential command injection: shell execution with template literal input (downgraded — mitigators detected in scope: sanitizer:${COPY_SCRIPT}, sanitizer:${JSON.stringify()
low no_provenance: Package is not published with provenance attestations or trusted publishing. Published by: demian0311