MCP Workspace Server
UnverifiedREPOshayyeffet/ultimate_mcp_server
F
Catalogue entry updated 3 days ago
Auth postureNot probedno remote endpoint probed yet
Tools362 Destructive · 11 Execute · 11 Write · 12 Read
Worst categoryDestructivegrade tracks the peak, not the average
Capability mix
Destructive 2Execute 11Write 11Read 12
What it can reach
Ingests untrusted inputTouches secretsReaches networkRuns codeTouches filesChanges permissionsSends external commsPersistsDeletes dataMoves money
Exfiltration pathReads content an attacker can plant and can send data outward — a prompt-injection-to-exfiltration route.
Tools 36
cloud_storagedelete_filecode_formatdatabase_querydocker_manage
View all 36 tools
encrypt_decryptgit_branchhttp_requestkill_processpackage_managerrun_commandschedule_tasktext_processapply_patchcompress_filescopy_filecreate_foldercsv_processextract_archiveimage_processmove_filepdf_manipulatesend_notificationwrite_filefind_filesget_file_infogit_diffgit_loggit_statusjson_processlist_fileslist_processesread_filesearch_filessystem_infoweb_scrape
Change history
No changes recorded since first scan. Watched servers surface a diff within the hour.
Recommended policy
cloud_storagedeny
code_formatrequire approval
apply_patchrate limit
Read-only toolsallow
Full policy breakdown with enforcement rules →