Sidecar

jrenaldi79/sidecarMITโญ 8๐Ÿ”ง 10 tools

F1.7SpiderScore (registry)
โš  Hard constraint applied: critical vulnerability
Decision
Not Recommended
Confidence
90%

Sidecar is not recommended โ€” low score (1.68/10) with 1 critical issues.

Recommended Actions

  • high
    Run In Container
    1 critical vulnerabilities require isolation
  • high
    Limit Permissions
    Restrict tool access to minimum required scope

Do Not

  • โœ—running in production without container isolation
  • โœ—using for security-sensitive tasks
Risk Flags (6)
  • critical
    ts_async_injection
    Async process spawn with user-controlled command -- injection risk
  • high
    ts_path_traversalร—2
    Potential path traversal -- user input used in file system operations
  • high
    ts_token_leakageร—2
    Secret or token may be leaked through error messages, logs, or return values
  • high
    token_leakageร—2
    Secret or token may be leaked through error messages, logs, or return values
  • high
    prototype_pollutionร—3
    Potential prototype pollution -- user-controlled keys may modify Object.prototype
  • medium
    ts_input_reflectionร—2
    User input reflected directly in tool output -- may enable prompt injection via reflection
How This Was Decided
  • negativew=0.5Overall quality score = 1.68/10 (grade F)
  • negativew=0.81 critical security issue(s) detected
  • negativew=0.59 high-severity issue(s) detected
  • negativew=0.3Tool description clarity score = 1.2/10
Source: SpiderRating automated security scanUpdated: 2026-03-22Protocol: v1.1

Description Quality

Composite: 1.2 / 10

3-Layer Breakdown

Description (38%)
1.2
Security (34%)
6.0
Metadata (28%)
6.4

Description Dimensions

Intent Clarity
0.8
Permission Scope
0.0
Side Effects
2.0
Capability Disclosure
2.3
Operational Boundaries
1.1

Security Analysis

6.0
Score
1
Critical
9
High
2
Medium
0
Low

Findings Redacted

Detailed security findings are hidden during the 90-day responsible disclosure window. Maintainers have been notified.

9 HIGH2 MEDIUM1 CRITICAL

Metadata Health

Provenance (40%)
7.0
Maintenance (35%)
8.0
Popularity (25%)
3.1

Badge

Add this badge to your README:

[![SpiderRating](https://spiderrating.com/badge/jrenaldi79__sidecar.svg)](https://spiderrating.com/servers/jrenaldi79/sidecar)
๐Ÿ›ก๏ธ

Protect Your Agents

Get a free API key. Every MCP tool call checked against 15,923 rated servers in real-time.

Get Free API Key โ†’
๐Ÿ“Š

Monitor All Your Servers

Dashboard for your entire MCP portfolio. Score tracking, alerts, and compliance reports.

Start Free Trial โ†’
โญ

Scan Locally (Open Source)

Run SpiderShield on your own machine. 46+ security rules, zero data leaves your system.

Star on GitHub โ†’

Similar Servers

Telegram Mcp ServerbatianVolyc/telegram-mcp-server
1.7F
Selenetercumantanumut/selene
1.7F
Programmatic Tool Calling Ai Sdkcameronking4/programmatic-tool-calling-ai-sdk
1.6F
Mcp Workspace Serveranswerlink/MCP-Workspace-Server
1.6F
Mcp Server Text Editorbhouston/mcp-server-text-editor
1.6F