mcp-best-practicesBuild production MCP servers with the TypeScript SDK. Covers spec 2025-11-25, SDK v1.28+/v2, transport selection, tool design, error handling, security, perf...
Install via ClawdBot CLI:
clawdbot install tenequm/mcp-best-practicesGrade Limited — based on market validation, documentation quality, package completeness, maintenance status, and authenticity signals.
Accesses sensitive credential files or environment variables
~/.ssh/id_rsaSends data to undocumented external endpoint (potential exfiltration)
post → https://github.com/modelcontextprotocol/ext-apps/blob/main/specification/2026-01Potentially destructive shell commands in tool definitions
rm -rf /Accesses system directories or attempts privilege escalation
sudo rmUsage Guide
Loading usage data… refresh in a few seconds.
Scored Apr 19, 2026
Calls external URL not in known-safe list
https://spec.modelcontextprotocol.ioAI Analysis
This is a legitimate technical documentation skill about MCP server development best practices. The 'signals' appear to be false positives from pattern matching on example code snippets (like SSH key paths, rm commands, and spec URLs) that are part of instructional content, not actual malicious functionality. The skill does not execute code or exfiltrate data.
Audited Apr 16, 2026 · audit v1.0
Use the mcporter CLI to list, configure, auth, and call MCP servers/tools directly (HTTP or stdio), including ad-hoc servers, config edits, and CLI/type generation.
Secure, sandboxed filesystem access enabling agents to list, read, write, create, move, delete, search files and directories within allowed paths.
Provides access to MCP tools for web search, advanced search, code context, deep research, crawling, company research, and LinkedIn search.
Use Model Context Protocol servers to access external tools and data sources. Enable AI agents to discover and execute tools from configured MCP servers (legal databases, APIs, database connectors, weather services, etc.).
Use the mcporter CLI to list, configure, auth, and call MCP servers/tools directly (HTTP or stdio), including ad-hoc servers, config edits, and CLI/type gene...
Crypto news search, AI ratings, trading signals, and real-time updates via the OpenNews 6551 API. Supports keyword search, coin filtering, source filtering,...