First Seen
Feb 18, 2026
Last Scanned
Feb 22, 2026
Findings
8
Score
44/100
Findings (8)
Detects execution of MCP servers from arbitrary paths, URLs, or user-controlled commands
call https://mcp.skiplagged.com/mcp.Block MCP tools from shadowing or overriding built-in tools. Implement tool name uniqueness validation and prevent tools from registering names that conflict with system tools.
Likely FP if the tool has a name similar to a built-in tool by coincidence (e.g., a search tool) without malicious intent to override system behavior.
Detects execution of MCP servers from arbitrary paths, URLs, or user-controlled commands
call https://mcp.skiplagged.com/mcp.Block MCP tools from shadowing or overriding built-in tools. Implement tool name uniqueness validation and prevent tools from registering names that conflict with system tools.
Likely FP if the tool has a name similar to a built-in tool by coincidence (e.g., a search tool) without malicious intent to override system behavior.
Detects execution of MCP servers from arbitrary paths, URLs, or user-controlled commands
call https://mcp.skiplagged.com/mcp.Block MCP tools from shadowing or overriding built-in tools. Implement tool name uniqueness validation and prevent tools from registering names that conflict with system tools.
Likely FP if the tool has a name similar to a built-in tool by coincidence (e.g., a search tool) without malicious intent to override system behavior.
Detects execution of MCP servers from arbitrary paths, URLs, or user-controlled commands
call https://mcp.skiplagged.com/mcp.Block MCP tools from shadowing or overriding built-in tools. Implement tool name uniqueness validation and prevent tools from registering names that conflict with system tools.
Likely FP if the tool has a name similar to a built-in tool by coincidence (e.g., a search tool) without malicious intent to override system behavior.
Detects execution of MCP servers from arbitrary paths, URLs, or user-controlled commands
call https://mcp.skiplagged.com/mcp.Block MCP tools from shadowing or overriding built-in tools. Implement tool name uniqueness validation and prevent tools from registering names that conflict with system tools.
Likely FP if the tool has a name similar to a built-in tool by coincidence (e.g., a search tool) without malicious intent to override system behavior.
Detects execution of MCP servers from arbitrary paths, URLs, or user-controlled commands
call https://mcp.skiplagged.com/mcp.Block MCP tools from shadowing or overriding built-in tools. Implement tool name uniqueness validation and prevent tools from registering names that conflict with system tools.
Likely FP if the tool has a name similar to a built-in tool by coincidence (e.g., a search tool) without malicious intent to override system behavior.
Detects execution of MCP servers from arbitrary paths, URLs, or user-controlled commands
call https://mcp.skiplagged.com/mcp.Block MCP tools from shadowing or overriding built-in tools. Implement tool name uniqueness validation and prevent tools from registering names that conflict with system tools.
Likely FP if the tool has a name similar to a built-in tool by coincidence (e.g., a search tool) without malicious intent to override system behavior.
Detects references to raw.githubusercontent.com on mutable branches like main/master
raw.githubusercontent.com/steipete/mcporter/main/Replace GitHub raw.githubusercontent.com references with pinned commit SHAs instead of branch names (e.g., /commit-sha/file instead of /main/file). Branch references are mutable.
Likely FP if the raw GitHub URL points to a versioned release tag in a well-known repository, though even tags are technically mutable.