MCPVet
Clean
Check your own MCP server
Free · no signup · instant shareable report.
Outbound network 3
Environment variables (config / keys) 17
Remote code execution 4
AI review
This is a legitimate Neo4j MCP server collection from the official Neo4j organization. The code accesses environment variables for database credentials and API keys, which is expected behavior for database connectivity. No hidden instructions, prompt injection, or data exfiltration mechanisms were found.
- low Environment variable access for database configuration — The servers read NEO4J_URI, NEO4J_PASSWORD, NEO4J_AURA_CLIENT_ID, and similar variables from the environment. This is standard and necessary for connecting to Neo4j databases and Aura API. No code attempts to exfiltrate these values.
- low CI/CD pipeline uses remote script installation — GitHub Actions workflows use 'curl -LsSf https://astral.sh/uv/install.sh | sh' to install the uv package manager. This is a common pattern in CI pipelines and the astral.sh domain is a legitimate Python tooling provider. Not a runtime risk for end users.
- low Network requests to Neo4j Aura API — The aura-api server makes HTTP requests to the Neo4j Aura authentication and management endpoints. This is the stated purpose of the server and uses official Neo4j API endpoints. No suspicious or unexpected network destinations.
Model: deepseek-chat
Static findings
Remote code execution · Downloads and executes remote code
info
.github/workflows/pr-mcp-neo4j-cloud-aura-api.yml:31
curl -LsSf https://astral.sh/uv/install.sh | sh
info
.github/workflows/pr-mcp-neo4j-cypher.yml:28
curl -LsSf https://astral.sh/uv/install.sh | sh
info
.github/workflows/pr-mcp-neo4j-data-modeling.yml:31
curl -LsSf https://astral.sh/uv/install.sh | sh
info
.github/workflows/pr-mcp-neo4j-memory.yml:28
curl -LsSf https://astral.sh/uv/install.sh | sh
Environment variables (config / keys) · Reads environment variables (config / API keys)
low
servers/mcp-neo4j-cloud-aura-api/src/mcp_neo4j_aura_manager/__init__.py:19
default=os.environ.get("NEO4J_AURA_CLIENT_ID"))
low
servers/mcp-neo4j-cloud-aura-api/src/mcp_neo4j_aura_manager/utils.py:70
if os.getenv("NEO4J_AURA_CLIENT_ID") is not None:
info
servers/mcp-neo4j-cloud-aura-api/tests/integration/conftest.py:14
if (not os.environ.get("NEO4J_AURA_CLIENT_ID") or not os.environ.get("NEO4J_AURA_CLIENT_SECRET")):
info
servers/mcp-neo4j-cloud-aura-api/tests/integration/test_aura_IT.py:14
not os.environ.get("NEO4J_AURA_CLIENT_ID") or not os.environ.get("NEO4J_AURA_CLIENT_SECRET"),
info
servers/mcp-neo4j-cloud-aura-api/tests/integration/test_http_transport_IT.py:37
client_id = os.environ.get("NEO4J_AURA_CLIENT_ID")
info
servers/mcp-neo4j-cloud-aura-api/tests/unit/test_utils.py:40
if var in os.environ:
low
servers/mcp-neo4j-cypher/src/mcp_neo4j_cypher/utils.py:68
if os.getenv("NEO4J_URL") is not None:
info
servers/mcp-neo4j-cypher/tests/integration/conftest.py:31
os.environ["NEO4J_URI"] = neo4j.get_connection_url()
info
servers/mcp-neo4j-cypher/tests/unit/test_utils.py:39
if var in os.environ:
low
servers/mcp-neo4j-data-modeling/src/mcp_neo4j_data_modeling/utils.py:190
if os.getenv("NEO4J_TRANSPORT") is not None:
info
servers/mcp-neo4j-data-modeling/tests/integration/conftest.py:31
os.environ["NEO4J_URI"] = neo4j.get_connection_url()
info
servers/mcp-neo4j-data-modeling/tests/unit/conftest.py:28
if var in os.environ:
+ 5 more
Outbound network · Makes outbound network requests
low
servers/mcp-neo4j-cloud-aura-api/src/mcp_neo4j_aura_manager/aura_api_client.py:39
response = requests.post(auth_url, headers=headers, data=payload)
info
servers/mcp-neo4j-cloud-aura-api/tests/integration/test_http_transport_IT.py:78
response = requests.get(server_url.replace("/mcp/", "/health"), timeout=5)
info
servers/mcp-neo4j-cloud-aura-api/tests/unit/test_aura_manager.py:83
with patch('requests.get') as mock_get, \
Scanning every extension your team installs?
Pro & Team add monitoring, private scans, and a CI gate for unsafe extensions.
MCPVet is a heuristic aid, not a security guarantee. A clean grade does not prove an extension is safe; always review code and instructions you don't trust.