Discord MCP Webhook
v0.1.3
Verified
Discord webhook integration. WARNING: Webhook URLs stored in plaintext configuration, easily exfiltrated.
By CommunityMIT
typescript
communication
560stars
14.0Kdownloads
75forks
Scanned Feb 8, 2026
D42%
Scanned 3w ago
Poor Security
Vulnerabilities Found
2Crit
2High
3Med
3Low
4Info
Security ScoreD
42
out of 100
Vulnerabilities Found
2
Crit
2
High
3
Medi
3
Low
4
Info
Last scanned: 2/8/2026
Quality ScoreF
50
out of 100
50
Maint.
47
Popular
50
Docs
53
Compat
Maintenance50%
Popularity47%
Documentation50%
Compatibility53%
Maintenance50
Active
2 days agoCommit Frequency51%
Release Frequency43%
Issue Response50%
Popularity47
560
Stars
14.0K
Downloads
75
Forks
Stars Score52%
Downloads Score57%
Forks Score53%
Documentation50
README Quality78%
Available Documentation
API DocsExamplesChangelog
Compatibility53
MCP Spec Compliance55%
Transport Support50%
Features
TypeScript
Supported Transports
STDIO
Vulnerabilities(14)
2Critical
2High
3Medium
3Low
4Info
Filter:
READMEDiscord MCP Webhook
Discord MCP Webhook
⚠️ INSECURE CREDENTIAL STORAGE ⚠️
Issue
Discord webhook URLs are stored in plaintext JSON configuration files without encryption.
Risk
Webhook URLs contain authentication tokens. If exposed, attackers can:
- Send messages to your Discord channels
- Post spam or malicious links
- Impersonate your bot
Mitigation
Store webhook URLs in environment variables or encrypted secrets storage.
Embed Security Badge
Add this badge to your README or documentation
[](https://mcpsafe.org/registry/discord-mcp-webhook-vuln)Need more customization options?Badge Documentation
Server Information
- Source
- NPM
- Package
- discord-mcp-webhook
- Version
- 0.1.3
- Language
- typescript
- License
- MIT
- Transport
- STDIO
- Added
- Jan 20, 2026
- Updated
- Feb 8, 2026