pty-mcp — security audit

pty-mcp: trust score 25/100 — 1 capability surface.

↗ View server in catalog

Trust score

25

Grade F

Risk flags

  • Shell execution exposed

    This server can run arbitrary shell commands when invoked by an LLM. Audit prompt injection vectors before exposing it to untrusted text.

  • Community-authored

    Maintained by qododavid. Confirm the repo and signing before installing.

Capability surface

  • Shell execution

    High risk

    Executes arbitrary shell commands. Treat as remote code execution if exposed.

    Evidence: terminal

Trust signals

Total trust score is the sum of these contributions. Each signal carries a fixed weight.

  • Verified by Loadout

    +0 / 20

    Not in our manually-verified set yet.

  • Official author

    +0 / 15

    Maintained by community contributors.

  • Community traction

    +0 / 20

    No star data available.

  • Public source

    +15 / 15

    Source is publicly auditable.

  • Stability

    +0 / 15

    Stability not yet assessed.

  • Capability surface

    +10 / 15

    1 high-risk capability detected.

Disclaimer

This is an automated heuristic triage. It does not replace a hand-rolled code audit. Use it to prioritise which servers deserve a deeper look — especially anything carrying high-risk capabilities like shell execution or filesystem write.