apify-ecommerce

skills-sh:apify_agent-skills__apify-ecommerce

View source

100/100

First Seen

Feb 18, 2026

Last Scanned

Feb 20, 2026

Findings

Score

100/100

LOW 3

Findings (3)

LOW

Non-localhost remote MCP server URL MCPCFG_004

mcp-config L54

Detects MCP server configurations connecting to non-localhost remote URLs

"url": "https://www.amazon.com/dp/B09V3KXJPB"

FIX

Change the MCP server URL to localhost or a trusted internal endpoint. If a remote server is required, verify the domain ownership and use HTTPS with certificate validation.

FP?

Likely FP if the URL points to example.com, a documentation domain, or a well-known SaaS API endpoint (e.g., api.openai.com).

LOW

Non-localhost remote MCP server URL MCPCFG_004

mcp-config L55

Detects MCP server configurations connecting to non-localhost remote URLs

"url": "https://www.walmart.com/ip/123456789"

FIX

Change the MCP server URL to localhost or a trusted internal endpoint. If a remote server is required, verify the domain ownership and use HTTPS with certificate validation.

FP?

Likely FP if the URL points to example.com, a documentation domain, or a well-known SaaS API endpoint (e.g., api.openai.com).

LOW

Non-localhost remote MCP server URL MCPCFG_004

mcp-config L122

Detects MCP server configurations connecting to non-localhost remote URLs

"url": "https://www.amazon.com/dp/B09V3KXJPB"

FIX

Change the MCP server URL to localhost or a trusted internal endpoint. If a remote server is required, verify the domain ownership and use HTTPS with certificate validation.

FP?

Likely FP if the URL points to example.com, a documentation domain, or a well-known SaaS API endpoint (e.g., api.openai.com).