← Back to search

genkitx-mcp

firebase Apache-2.0 5,989 stars Scanned 13h ago

A Genkit plugin that provides interoperability between Genkit and Model Context Protocol (MCP). Both client and server use cases are supported.

npm
B
76.9 / 100

Versions

1.0.0 latest
May 20, 2026
PermissionsTool SafetyAuthAnnotationsCode QualityStabilitySpecVuln HistoryAuthorTransparencyCommunity

Tools 1

test_http
unchecked low

Permissions 4

network medium
network
filesystem low
filesystem
shell high
shell
env_vars low
env_vars

Scan Findings 25

info
package.json metadata manifest_parser · 100%
info
pyproject.toml metadata manifest_parser · 100%
info
Tool: test_http manifest_parser · 70%
info
Transport: streamable-http manifest_parser · 80%
info
Required env vars (56) manifest_parser · 80%
low
Tool 'test_http' has no annotations annotation_checker · 100%
medium
OAuth implementation without PKCE auth_checker · 75%
medium
Permission: network access detected permission_analyzer · 90%
low
Permission: filesystem access detected permission_analyzer · 90%
high
Permission: shell access detected permission_analyzer · 95%
low
Permission: env_vars access detected permission_analyzer · 90%
medium
Excessive dependency count: 947 direct dependencies dependency_analyzer · 90%
info
OSV.dev API query failed dependency_analyzer · 100%
high
Hardcoded Password found in js/plugins/cloud-sql-pg/README.md secret_scanner · 65%
high
Generic API Key Assignment found in genkit-tools/common/src/utils/analytics.ts secret_scanner · 75%
medium
High-entropy string (6.02 bits/char) in go/plugins/googlegenai/gemini_test.go:692 entropy_analyzer · 55%
medium
High-entropy string (6.02 bits/char) in go/plugins/googlegenai/gemini_test.go:727 entropy_analyzer · 55%
medium
Buffer.from base64 in js/plugins/firebase/src/context.ts:373 entropy_analyzer · 75%
info
SLSA Build Level 3 detected slsa_assessor · 85%
high
High-risk OAuth scope: https://www.googleapis.com/auth/cloud-platform oauth_scope_analyzer · 80%
info
Could not connect to MCP server for output poisoning scan output_poisoning · 100%
info
Could not connect to MCP server for behavioral verification behavioral_verifier · 100%
info
SBOM generated: 2329 components sbom_generator · 100%
info
MITRE ATLAS technique coverage summary atlas_annotator · 100%
info
ATLAS: Poison Training Data (AML.T0020) atlas_annotator · 100%