MCPVet
Low
github · 29 files analyzed
elastic/mcp-server-elasticsearch
Minor capabilities, nothing alarming.
View source ↗Remote code execution 1
AI review
The extension itself is a legitimate Elasticsearch MCP server with no hidden instructions or data exfiltration mechanisms. The only finding is a remote code execution risk in the contributing documentation, which is a standard Elastic setup script but could be exploited if the URL is compromised.
- medium Remote code execution via curl pipe in contributing docs — docs/CONTRIBUTING.md:38 contains `curl -fsSL https://elastic.co/start-local | sh` which pipes a remote script directly into a shell. While this is a standard Elastic development setup command, it represents a supply chain risk: if the URL is compromised or redirected, executing the script could install malicious code. This is not part of the extension's runtime behavior, only developer documentation.
Model: deepseek-chat
Static findings
Remote code execution · Downloads and executes remote code
info
docs/CONTRIBUTING.md:38
curl -fsSL https://elastic.co/start-local | sh
Scanning every extension your team installs?
Pro & Team add monitoring, private scans, and a CI gate for unsafe extensions.
MCPVet is a heuristic aid, not a security guarantee. A clean grade does not prove an extension is safe; always review code and instructions you don't trust.