@microsoft/teams.mcp | Ultra Ledger

← Back to search

<p> <a href="https://www.npmjs.com/package/@microsoft/teams.mcp" target="_blank"> <img src="https://img.shields.io/npm/v/@microsoft/teams.mcp/latest" /> </a> <a href="https://www.npmjs.com/package/@microsoft/teams.mcp?activeTab=code" t

npm ↗

61.6 / 100

Versions

1.0.0 latest

May 20, 2026

Tools 0

No tools indexed yet.

Permissions 4

network medium

network

filesystem low

filesystem

shell high

shell

env_vars low

env_vars

Scan Findings 31

info

package.json metadata manifest_parser · 100%

info

Transport: streamable-http manifest_parser · 80%

info

Required env vars (29) manifest_parser · 80%

high

Hardcoded OAuth client secret in packages/apps/src/app.spec.ts auth_checker · 95%

high

Hardcoded OAuth client secret in packages/apps/src/token-manager.spec.ts auth_checker · 95%

high

Hardcoded OAuth client secret in packages/apps/src/test-utils.ts auth_checker · 95%

medium

Permission: network access detected permission_analyzer · 70%

low

Permission: filesystem access detected permission_analyzer · 90%

high

Permission: shell access detected permission_analyzer · 95%

low

Permission: env_vars access detected permission_analyzer · 90%

medium

Excessive dependency count: 155 direct dependencies dependency_analyzer · 90%

medium

Suspicious package name: react-dom dependency_analyzer · 60%

medium

Suspicious package name: react-markdown dependency_analyzer · 60%

medium

Suspicious package name: react-router dependency_analyzer · 60%

medium

Suspicious package name: react-refresh dependency_analyzer · 60%

medium

Suspicious package name: lodash.camelcase dependency_analyzer · 60%

medium

Vulnerable dependency: turbo@2.4.0 (GHSA-3qcw-2rhx-2726) dependency_analyzer · 95%

medium

Vulnerable dependency: turbo@2.4.0 (GHSA-hcf7-66rw-9f5r) dependency_analyzer · 95%

medium

Vulnerable dependency: hono@4.12.16 (GHSA-hm8q-7f3q-5f36) dependency_analyzer · 95%

medium

Vulnerable dependency: hono@4.12.16 (GHSA-p77w-8qqv-26rm) dependency_analyzer · 95%

medium

Vulnerable dependency: hono@4.12.16 (GHSA-qp7p-654g-cw7p) dependency_analyzer · 95%

medium

Vulnerable dependency: @modelcontextprotocol/sdk@1.25.2 (GHSA-345p-7cg4-v4c7) dependency_analyzer · 95%

medium

Vulnerable dependency: uuid@11.0.5 (GHSA-w5hq-g745-h8pq) dependency_analyzer · 95%

medium

Vulnerable dependency: ws@8.18.1 (GHSA-58qx-3vcg-4xpx) dependency_analyzer · 95%

info

SLSA Build Level 1 detected slsa_assessor · 85%

info

Could not connect to MCP server for output poisoning scan output_poisoning · 100%

info

Could not connect to MCP server for behavioral verification behavioral_verifier · 100%

info

SBOM generated: 1683 components sbom_generator · 100%

info

MITRE ATLAS technique coverage summary atlas_annotator · 100%

info

ATLAS: Adversarial ML Supply Chain (AML.T0043) atlas_annotator · 100%

info

ATLAS: Poison Training Data (AML.T0020) atlas_annotator · 100%