Registry/mcp-evals

mcp-evals

v2.0.1

Verified

GitHub Action for evaluating MCP server tool calls using LLM-based scoring

MIT

typescript

developer tools

Scanned Jun 28, 2026

Website Repository NPM

mcp evaluation github-actions llm

?70%

Not Scanned

Vulnerabilities Found

0Crit

0High

0Med

0Low

0Info

Security Score?

out of 100

Vulnerabilities Found

Crit

High

Medi

Low

Info

Quality Score?

—

out of 100

Maint.

Popular

Docs

Compat

Maintenance0%

Popularity0%

Documentation0%

Compatibility0%

Maintenance0

Unknown

Commit Frequency0%

Release Frequency0%

Issue Response0%

Popularity0

Stars

Downloads

Forks

Stars Score0%

Downloads Score0%

Forks Score0%

Documentation0

README Quality0%

Available Documentation

API DocsExamplesChangelog

Compatibility0

MCP Spec Compliance0%

Transport Support0%

Features

TypeScript

Agentic MCP Risk Intelligence

MCPSafe checks risks unique to AI-connected MCP servers — prompt surfaces, model-controlled tools, credentials, filesystems, and network reachability.

agentic findings

No advanced MCP issues detected

The current scan did not find prompt-injection, agent command, exfiltration, unbounded filesystem, or MCP SSRF patterns.

Prompt Injection Surface

Tool metadata can steer or hijack AI clients before a user invokes the tool.

AI → Command Execution

Model-selected tool arguments can reach shell/process execution.

Secret Exfiltration Path

Tool context combines credential access with outbound network capability.

Unbounded Filesystem

AI-controlled paths may access files outside the intended workspace.

Agent SSRF

AI-controlled URLs may reach local, metadata, or internal network services.

Vulnerabilities(2)

2High

Filter:

README

No README available for this server.

View repository

Embed Security Badge

Add this badge to your README or documentation

Badge Type

Style

[![mcp-evals MCPSafe Security](https://api.mcpsafe.org
/api/badge/mcp-evals.svg)](https://mcpsafe.org/registry/mcp-evals)

Need more customization options?Badge Documentation

Server Information

Source: NPM
Package: mcp-evals
Version: 2.0.1
Language: typescript
License: MIT
Added: Jun 28, 2026
Updated: Jun 28, 2026

Actions

Compare with other servers Request rescan

mcp-evals

Security Score?

Vulnerabilities Found

Quality Score?

Maintenance0

Popularity0

Documentation0

Available Documentation

Compatibility0

Features

Agentic MCP Risk Intelligence

Vulnerabilities(2)

Potential Typosquatting Package Name

Potential Typosquatting Package Name

README

Embed Security Badge

Server Information

Actions