Registry/Ssh MCP Server

Ssh MCP Server

v1.0.4
Verified

An MCP server for SSH operations

By CommunityISC
typescript
developer tools
560stars
274downloads
75forks
Scanned Jul 13, 2026
NPM
F0%
Scanned 6d ago

Critical Issues

Vulnerabilities Found
3Crit
4High
1Med
1Low
0Info

Security ScoreF

0
out of 100

Vulnerabilities Found

3
Crit
4
High
1
Medi
1
Low
0
Info
Last scanned: 7/13/2026

Quality ScoreC

53
out of 100
48
Maint.
60
Popular
35
Docs
73
Compat
Maintenance48%
Popularity60%
Documentation35%
Compatibility73%

Maintenance48

Unknown
Commit Frequency30%
Release Frequency70%
Issue Response45%

Popularity60

560
Stars
274
Downloads
75
Forks
Stars Score77%
Downloads Score44%
Forks Score66%

Documentation35

README Quality40%

Available Documentation

API DocsExamplesChangelog

Compatibility73

MCP Spec Compliance80%
Transport Support50%

Features

TypeScript

Supported Transports

STDIO

Agentic MCP Risk Intelligence

MCPSafe checks risks unique to AI-connected MCP servers — prompt surfaces, model-controlled tools, credentials, filesystems, and network reachability.

2
agentic findings
Agentic risk detected

This server has at least one issue specific to AI-agent/MCP execution flows.

Prompt Injection Surface
0

Tool metadata can steer or hijack AI clients before a user invokes the tool.

AI → Command Execution
1

Model-selected tool arguments can reach shell/process execution.

Secret Exfiltration Path
0

Tool context combines credential access with outbound network capability.

Unbounded Filesystem
1

AI-controlled paths may access files outside the intended workspace.

Agent SSRF
0

AI-controlled URLs may reach local, metadata, or internal network services.

Vulnerabilities(9)

3Critical
4High
1Medium
1Low
Filter:

READMESsh MCP Server

SSH MCP Server

⚠️ KEY EXPOSURE VULNERABILITY ⚠️

Issue

SSH private keys and passphrases may be exposed through:

  • Verbose error messages
  • Debug log output
  • Stack traces

Impact

  • Complete server compromise
  • Lateral movement in networks
  • Persistent unauthorized access

Mitigation

Disable verbose logging, rotate compromised keys.

Embed Security Badge

Add this badge to your README or documentation

Ssh MCP Server MCPSafe Security
[![Ssh MCP Server MCPSafe Security](https://api.mcpsafe.org
/api/badge/ssh-mcp-server-vuln.svg)](https://mcpsafe.org/registry/ssh-mcp-server-vuln)
Need more customization options?Badge Documentation

Server Information

Source
NPM
Package
ssh-mcp-server
Version
1.0.4
Language
typescript
License
ISC
Transport
STDIO
Added
Jan 20, 2026
Updated
Jul 13, 2026