MCPVet
Low
github · 29 files analyzed
elastic/mcp-server-elasticsearch
Minor capabilities, nothing alarming.
View source ↗Remote code execution 1
AI review
The extension itself is a legitimate Elasticsearch MCP server with no hidden instructions or data exfiltration mechanisms. The only finding is a remote code execution risk in the contributing guide, which suggests running a curl-to-sh script for local development setup.
- low Remote code execution via curl-to-sh in contributing guide — docs/CONTRIBUTING.md:38 contains `curl -fsSL https://elastic.co/start-local | sh`, which downloads and executes a script from the internet. While this is a common convenience pattern for development tooling and the domain is legitimate (elastic.co), it violates the principle of not piping unverified scripts into a shell. This is a low risk because it's in a developer-facing contributing guide, not in the runtime configuration or tool descriptions, and the domain is controlled by the same organization.
Model: deepseek-chat
Static findings
Remote code execution · Downloads and executes remote code
info
docs/CONTRIBUTING.md:38
curl -fsSL https://elastic.co/start-local | sh
Scanning every extension your team installs?
Pro & Team add monitoring, private scans, and a CI gate for unsafe extensions.
MCPVet is a heuristic aid, not a security guarantee. A clean grade does not prove an extension is safe; always review code and instructions you don't trust.