Skip to content

Add MseeP.ai badge to README #8

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
lwsinclair wants to merge 1 commit into
base: main
Choose a base branch
from
Open

Add MseeP.ai badge to README #8

lwsinclair wants to merge 1 commit into from

Conversation

@lwsinclair
Copy link

@lwsinclair lwsinclair commented May 5, 2025

Hi there,

This pull request shares a security update on mcp-ragdocs.

We also have an entry for mcp-ragdocs in our directory, MseeP.ai, where we provide regular security and trust updates on your app.

We invite you to add our badge for your MCP server to your README to help your users learn from a third party that provides ongoing validation of mcp-ragdocs.

You can easily take control over your listing for free: visit it at https://mseep.ai/app/qpd-v-mcp-ragdocs.

Yours Sincerely,

Lawrence W. Sinclair
CEO/SkyDeck AI
Founder of MseeP.ai
MCP servers you can trust

MseeP.ai Security Assessment Badge

Here are our latest evaluation results of mcp-ragdocs

Security Scan Results

Security Score: 93/100

Risk Level: low

Scan Date: 2025-04-29

Score starts at 100, deducts points for security issues, and adds points for security best practices

Detected Vulnerabilities

Medium Severity

  • @qdrant/js-client-rest

    • ['undici']
    • Fixed in version: unknown

  • axios

    • [{'source': 1103618, 'name': 'axios', 'dependency': 'axios', 'title': 'axios Requests Vulnerable To Possible SSRF and Credential Leakage via Absolute URL', 'url': 'https://github.com/advisories/GHSA-jr5f-v2jv-69x6', 'severity': 'high', 'cwe': ['CWE-918'], 'cvss': {'score': 0, 'vectorString': None}, 'range': '>=1.0.0 <1.8.2'}]
    • Fixed in version: unknown

  • undici

    • [{'source': 1097200, 'name': 'undici', 'dependency': 'undici', 'title': "Undici's fetch with integrity option is too lax when algorithm is specified but hash value is in incorrect", 'url': 'https://github.com/advisories/GHSA-9qxr-qj54-h672', 'severity': 'low', 'cwe': ['CWE-284'], 'cvss': {'score': 2.6, 'vectorString': 'CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:N/I:L/A:N'}, 'range': '<5.28.4'}, {'source': 1101609, 'name': 'undici', 'dependency': 'undici', 'title': 'Use of Insufficiently Random Values in undici', 'url': 'https://github.com/advisories/GHSA-c76h-2ccp-4975', 'severity': 'moderate', 'cwe': ['CWE-330'], 'cvss': {'score': 6.8, 'vectorString': 'CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:N'}, 'range': '>=6.0.0 <6.21.1'}, {'source': 1101610, 'name': 'undici', 'dependency': 'undici', 'title': 'Use of Insufficiently Random Values in undici', 'url': 'https://github.com/advisories/GHSA-c76h-2ccp-4975', 'severity': 'moderate', 'cwe': ['CWE-330'], 'cvss': {'score': 6.8, 'vectorString': 'CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:N'}, 'range': '>=4.5.0 <5.28.5'}, {'source': 1102442, 'name': 'undici', 'dependency': 'undici', 'title': "Undici's Proxy-Authorization header not cleared on cross-origin redirect for dispatch, request, stream, pipeline", 'url': 'https://github.com/advisories/GHSA-m4v8-wqvr-p9f7', 'severity': 'low', 'cwe': ['CWE-200', 'CWE-285', 'CWE-863'], 'cvss': {'score': 3.9, 'vectorString': 'CVSS:3.1/AV:N/AC:H/PR:H/UI:R/S:U/C:L/I:L/A:L'}, 'range': '<5.28.4'}]
    • Fixed in version: unknown

This security assessment was conducted by MseeP.ai, an independent security validation service for MCP servers. Visit our website to learn more about our security reviews.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@lwsinclair