@cyanheads/git-mcp-server

Independent MCP server safety profile · methodology

Safe to install · safety score 80/100
npm downloads/wk
2mosince last publish
v2.15.1latest version
provenance

Safety signals

Install script (code on npm i)no
Repository (source to review)https://github.com/cyanheads/git-mcp-server
LicenseApache-2.0
Direct dependencies3
Last audited2026-07-09

Flags

lowМало загрузок — новый или невостребованный; меньше глаз проверяло.
Verify @cyanheads/git-mcp-server live right now — free: GET /mcp/verify?package=%40cyanheads%2Fgit-mcp-server. See the whole ecosystem in the State of MCP Security report, or browse all audited servers.

Поддерживается, без опасных install-скриптов — можно ставить. Data from PulseFeed's independent MCP audit (last crawl 2026-07-09). An install script is not automatically malicious — native builds use them — but each is an unreviewed code-execution vector worth checking. All audited MCP servers →