I Scanned 2,386 MCP Packages on npm. 402 Were Critical. Here's What I Found.

Two weeks ago I was setting up MCP tools for Claude Code. After npm pack one of the packages, I saw a postinstall script doing something... weird. That night I couldn't sleep. So I built a scanner ...

By · · 1 min read
I Scanned 2,386 MCP Packages on npm. 402 Were Critical. Here's What I Found.

Source: DEV Community

Two weeks ago I was setting up MCP tools for Claude Code. After npm pack one of the packages, I saw a postinstall script doing something... weird. That night I couldn't sleep. So I built a scanner and audited every single MCP package on npm. What I found scared me more than I expected. _SSH key theft. Hidden prompt injection. Delayed backdoors. Environment variable harvesting. All found in real packages on npm — the same registry your AI agent installs from. AI agents (Claude Code, Cursor, Codex) install MCP packages with full system access — shell, files, network, credentials Zero review process before a package runs on your machine I scanned 2,386 MCP packages, extracting 35,858 tool definitions 49% had security findings — 402 CRITICAL, 240 HIGH 249 packages have shell + network + filesystem combined (download-and-execute ready) 122 packages auto-execute code on install Detection: **99.4% precision (near-zero false positives), 39.9% recall (catches known patterns, improving as new ru

Related Posts

Similar Topics

#research (4931)#artificial intelligence (3984)#machine learning & data science (2642)#machine learning (1705)#china (1102)#data science (1000)#industry (1099)#deep learning (707)#united states (600)#conference (637)#computer vision & graphics (595)#artificial intelligence_ (641)#llm (627)#nature language tech (393)#global news (439)#ai weekly (270)#programming (430)#featured (466)#large language models (308)#computer vision (331)

Trending on ShareHub

  1. Understanding Modern JavaScript Frameworks in 2026
    by Alex Chen · Feb 12, 2026 · 0 likes
  2. The System Design Primer
    by Sarah Kim · Feb 12, 2026 · 0 likes
  3. Just shipped my first open-source project!
    by Alex Chen · Feb 12, 2026 · 0 likes
  4. OpenAI Blog
    by Sarah Kim · Feb 12, 2026 · 0 likes
  5. Building Accessible Web Applications: A Practical Guide
    by Alex Chen · Feb 12, 2026 · 0 likes
  6. Rapper Lil Poppa dead at 25, days after releasing new music
    Rapper Lil Poppa dead at 25, days after releasing new music
    by Anonymous User · Feb 19, 2026 · 0 likes
  7. write-for-us
    by Volt Raven · Mar 7, 2026 · 0 likes
  8. Before the Coffee Gets Cold: Heartfelt Story of Time Travel and Second Chances
    Before the Coffee Gets Cold: Heartfelt Story of Time Travel and Second Chances
    by Anonymous User · Feb 12, 2026 · 0 likes
    #coffee gets cold #the #time travel
  9. Best DoorDash Promo Code Reddit Finds for Top Discounts
    Best DoorDash Promo Code Reddit Finds for Top Discounts
    by Anonymous User · Feb 12, 2026 · 0 likes
    #doordash #promo #reddit
  10. Premium SEO Services That Boost Rankings & Revenue | VirtualSEO.Expert
    by Anonymous User · Feb 12, 2026 · 0 likes
  11. NBC under fire for commentary about Team USA women's hockey team
    NBC under fire for commentary about Team USA women's hockey team
    by Anonymous User · Feb 18, 2026 · 0 likes
  12. Where to Watch The Nanny: Streaming and Online Viewing Options
    Where to Watch The Nanny: Streaming and Online Viewing Options
    by Anonymous User · Feb 12, 2026 · 0 likes
    #streaming #the nanny #where
  13. How Much Is Kindle Unlimited? Subscription Cost and Plan Details
    How Much Is Kindle Unlimited? Subscription Cost and Plan Details
    by Anonymous User · Feb 12, 2026 · 0 likes
    #kindle unlimited #subscription #unlimited
  14. Russian skater facing backlash for comment about Amber Glenn
    Russian skater facing backlash for comment about Amber Glenn
    by Anonymous User · Feb 18, 2026 · 0 likes
  15. Google News
    Google News
    by Anonymous User · Feb 18, 2026 · 0 likes

Latest on ShareHub

Browse Topics

#artificial intelligence (36884)#data science (24144)#generative ai (19046)#ai (17870)#crypto (15051)#machine learning (14735)#bitcoin (14333)#featured (13584)#news & insights (13064)#crypto news (11118)

Around the Network