MCPVet
Low
github · 29 files analyzed
elastic/mcp-server-elasticsearch
Minor capabilities, nothing alarming.
View source ↗Remote code execution 1
AI review
The extension itself is a legitimate Elasticsearch MCP server with no hidden instructions or data exfiltration mechanisms. The only finding is a remote code execution risk in the contributing guide, which is a standard development setup script but could be exploited if a developer blindly executes it without review.
- low Remote code execution risk in contributing guide — docs/CONTRIBUTING.md:38 contains `curl -fsSL https://elastic.co/start-local | sh`, which pipes a remote script directly into a shell. While this is a common convenience pattern for local development setup, it violates security best practices and could be exploited if the URL is compromised or redirected. This is not part of the MCP server's runtime behavior, only a development convenience script.
Model: deepseek-chat
Static findings
Remote code execution · Downloads and executes remote code
info
docs/CONTRIBUTING.md:38
curl -fsSL https://elastic.co/start-local | sh
Scanning every extension your team installs?
Pro & Team add monitoring, private scans, and a CI gate for unsafe extensions.
MCPVet is a heuristic aid, not a security guarantee. A clean grade does not prove an extension is safe; always review code and instructions you don't trust.