Check trust and security scores before installing MCP tools and agents.
This MCP tool has very limited documentation, but its presence in an official registry, open-source repository, and recent maintenance all reduce overall risk. The main confirmed capability is code execution; without README and permission details, it is better classified as caution rather than high risk.
The materials state that no keys or environment variables are required, and there is no indication that account credentials, API tokens, or other sensitive authentication data are needed, so credential exposure appears limited.
No remote endpoint host is listed, and the description does not show a need to send data to third-party services. Based on available information, there is no clear data egress path, though network behavior details remain incomplete due to the missing README.
The system flags executes-code, indicating the tool can execute code or processes locally. This is a normal high-privilege capability for MCP tools and warrants caution by default; however, the materials do not show abnormal privilege escalation, hidden execution, or requests for system access unrelated to its stated purpose, so this alone does not justify a high-risk rating.
The materials do not specify which local files, configurations, or other resources it can read or write, so the data access boundary is unclear. As an MCP tool capable of executing code, it may theoretically interact with local data; however, there is no explicit sign of overbroad authorization or unrelated data collection.
It comes from an official registry, has an open-source repository, and was updated within the last year, all of which are meaningful risk-reducing factors. However, the missing README, undeclared license, and very low community adoption (0 stars) limit auditability and ecosystem validation, so source and dependency review is advisable before installation.
Copy the install command and let the AI configure it · recommended for beginners
Please install the "Veragent" MCP server from askskill: Run: claude mcp add 'io-github-lixiaowww-veragent' -- npx -y veragent-mcp
Please check the trust and security score of this MCP server and summarize the main risks: {server name or link}A score result, risk summary, and recommendation on whether to install it.
Please compare the trust and security scores of these MCP tools or agents and rank them from lowest to highest risk: {Tool A}, {Tool B}, {Tool C}A comparison of scores, ranked results, and a recommendation on which option to choose.
I plan to install this CLI. First, check its security score, trust level, and potential risks, then give installation precautions: {CLI name or link}A CLI risk assessment, precautions, and safer installation recommendations.
Verify AI agents, check verification status, and browse the leaderboard.
Check MCP server trust scores and security reviews before connecting.
Verify agent identities, check trust scores, and build cross-platform reputation.
Test API compatibility for AI agents with scores, grades, and recommendations.
Score trust and scan safety for MCP servers, AI skills, and npm packages.
Check a public MCP server's risk level before connecting safely.