AGENTSCORE-2026-0077
MCP package: termyte
Published 7/13/2026 · 1.0.0 → 1.0.2
termyte updated from 1.0.0 to 1.0.2. Score changed 90/100 to 80/100 (-10). Risk: LOW to MODERATE. 3 findings.
90 → 80
Score
LOW → MODERATE
Risk
ALLOW
Verdict
Findings
- medium no_repository: Package has no repository link — source code is not verifiable
- low command_injection: Potential command injection: shell execution with template literal input (downgraded — mitigators detected in scope: sanitizer:.exec(` CREATE, sanitizer:db.exec()
- low no_provenance: Package is not published with provenance attestations or trusted publishing. Published by: palguna26