MCP Fullstack

Unverified
REPOjacobfv/mcp-fullstack
FRisk gradecritical blast radius
Catalogue entry updated 2 days ago
Auth postureNot probedno remote endpoint probed yet
Tools666 Destructive · 14 Execute · 13 Write · 33 Read
Worst categoryDestructivegrade tracks the peak, not the average
Capability mix
Destructive 6Execute 14Write 13Read 33
What it can reach
Ingests untrusted inputTouches secretsReaches networkRuns codeTouches filesChanges permissionsSends external commsPersistsDeletes dataMoves money
Exfiltration pathReads content an attacker can plant and can send data outward — a prompt-injection-to-exfiltration route.
Tools 66
messages.delete_messageDestructiveHighrender.deployment_cancelDestructiveHighsecrets.deleteDestructiveCriticalsupabase.storage_deleteDestructiveHighvercel.deployment_cancelDestructiveHigh
View all 66 tools
vercel.domain_removeDestructiveHighbrowser.end_sessionExecuteMediumbrowser.start_sessionExecuteHighdb.start_connectionExecuteHighrender.deployExecuteHighrender.redeployExecuteHighrender.scaleExecuteHighsupabase.functions_invokeExecuteHighsupabase.restExecuteHighsupabase.rpcExecuteHighsupabase.sqlExecuteCriticaltracking.funnels_runExecuteHighvercel.deployExecuteHighvercel.promoteExecuteHighvercel.redeployExecuteHighdb.end_connectionWriteMediummessages.create_threadWriteLowmessages.mark_readWriteLowmessages.post_messageWriteMediummessages.update_messageWriteLowrender.env_setWriteHighsecrets.putWriteHighsupabase.storage_putWriteHightracking.captureWriteLowtracking.identifyWriteMediumtracking.pageviewWriteLowvercel.domain_addWriteMediumvercel.env_setWriteHighmessages.get_threadReadLowmessages.inboxReadLowmessages.list_threadsReadLowrender.deployment_getReadLowrender.deployments_listReadLowrender.env_listReadMediumrender.logsReadLowrender.service_getReadLowrender.service_statusReadLowrender.services_listReadLowsearch.crawlReadLowsearch.extractReadLowsearch.fetchReadLowsearch.webReadLowsecrets.getReadHighsecrets.listReadHighsupabase.auth_adminReadLowsupabase.healthReadLowsupabase.projects_infoReadLowsupabase.storage_get_signed_urlReadMediumtracking.ask_question_about_recordingReadLowtracking.feature_flag_evalReadLowtracking.feature_flags_listReadLowtracking.recording_framesReadLowtracking.recordings_listReadLowtracking.sessions_listReadLowvercel.deployment_getReadLowvercel.deployments_listReadLowvercel.domains_listReadLowvercel.env_listReadLowvercel.logsReadLowvercel.project_getReadLowvercel.projects_listReadLow
Change history
No changes recorded since first scan. Watched servers surface a diff within the hour.
Recommended policy
messages.delete_messagedeny
browser.end_sessionrequire approval
db.end_connectionrate limit
Read-only toolsallow
Full policy breakdown with enforcement rules →
// LOOK UP ANOTHER SERVER

Every MCP server has a record like this.

Type a name, get the same breakdown: verified identity, auth posture, risk grade, capabilities, recommended policy.

Teams ship this data inside their own products. See what a licence covers →

// GET IN TOUCH

Have a question or want to learn more? Send us a message.

Message sent.

We'll get back to you soon.