Solafon MCP
UnverifiedREPOsolafon/solafon-mcp
F
Catalogue entry updated 3 days ago
Auth postureNot probedno remote endpoint probed yet
Tools171 Financial · 1 Destructive · 1 Execute · 4 Write · 10 Read
Worst categoryFinancialgrade tracks the peak, not the average
Capability mix
Financial 1Destructive 1Execute 1Write 4Read 10
What it can reach
Ingests untrusted inputTouches secretsReaches networkRuns codeTouches filesChanges permissionsSends external commsPersistsDeletes dataMoves money
Exfiltration pathReads content an attacker can plant and can send data outward — a prompt-injection-to-exfiltration route.
Change history
No changes recorded since first scan. Watched servers surface a diff within the hour.
Recommended policy
send_transactionrequire approval
delete_messagedeny
simulate_transactionrequire approval
edit_messagerate limit
Read-only toolsallow
Full policy breakdown with enforcement rules →