Mmcp-ssh-toolkit-pymcp-ssh-toolkit-py is a powerful MCP server for secure SSH command execution via Model Context Protocol.

mcp-so:mcp-ssh-toolkit-py_VitalyMalakanov

View source

84/100

First Seen

Feb 18, 2026

Last Scanned

Feb 20, 2026

Findings

Score

84/100

MEDIUM 2

Findings (2)

MEDIUM

Benign heading "'@openai/agents:*'\n;\n// Verbose logging\n..." followed by dangerous content (category: credential_access) NLP_HEADING_MISMATCH

prompt-injection L18

Benign heading "'@openai/agents:*'\n;\n// Verbose logging\n..." followed by dangerous content (category: credential_access)

secure-commands
mcp-ssh-toolkit-py is a powerful MCP server for secure SSH command execution via Model Context Protocol.
Overview
Tools
Comments
Overview
What is mcp-ssh-toolkit-py?
mcp-ssh-toolkit-py...

FIX

Ensure section headings accurately reflect the content that follows. Remove headings that could mislead an LLM into treating content differently than intended.

FP?

Likely FP if the heading mismatch is due to inconsistent markdown formatting or a benign section title that happens to contain keywords like system or config.

MEDIUM

MCP code execution tool CMDEXEC_010

command-execution L28

Detects MCP tools that execute arbitrary code

execute_command

FIX

Restrict code execution tools to specific languages and sandbox the runtime environment. Use a container or VM-based sandbox instead of running code directly on the host.

FP?

Likely FP if the MCP tool is a dedicated code runner (e.g., Jupyter kernel) with documented sandboxing and no network access.