MCPVet
Low
github · 23 files analyzed
elevenlabs/elevenlabs-mcp
Minor capabilities, nothing alarming.
View source ↗Environment variables (config / keys) 3
Remote code execution 1
AI review
No prompt injection, hidden instructions, data exfiltration, or deceptive tool descriptions found. The extension is an official ElevenLabs MCP server that performs exactly as documented, with standard API key configuration and no suspicious behavior.
- low Standard API key environment variable usage — The extension reads ELEVENLABS_API_KEY from environment variables, which is expected and necessary for authenticating with the ElevenLabs API. This is standard practice for MCP servers and does not constitute a security risk.
- low Remote code installation instruction in README — The README suggests installing 'uv' via curl pipe to sh, which is a common but potentially risky pattern. However, this is standard documentation for the uv package manager and not part of the extension's runtime behavior. The extension itself does not execute any remote code.
- low No hidden instructions or prompt injection — The ELEVENLABS.md persona instructions are benign and only describe how to use the ElevenLabs tools appropriately. There are no attempts to manipulate the agent, exfiltrate data, or override system prompts.
Model: deepseek-chat
Static findings
Remote code execution · Downloads and executes remote code
info
README.md:24
2. Install `uv` (Python package manager), install with `curl -LsSf https://astral.sh/uv/install.sh | sh` or see the `uv` [repo](https://github.com/astral-sh/uv) for additional install methods.
Environment variables (config / keys) · Reads environment variables (config / API keys)
low
elevenlabs_mcp/__main__.py:19
os.environ.get("XDG_CONFIG_HOME", Path.home() / ".config"), "Claude"
low
elevenlabs_mcp/server.py:54
api_key = os.getenv("ELEVENLABS_API_KEY")
low
elevenlabs_mcp/utils.py:144
if not os.path.isabs(file_path) and not os.environ.get("ELEVENLABS_MCP_BASE_PATH"):
Scanning every extension your team installs?
Pro & Team add monitoring, private scans, and a CI gate for unsafe extensions.
MCPVet is a heuristic aid, not a security guarantee. A clean grade does not prove an extension is safe; always review code and instructions you don't trust.