← Back to search
io.github.vercel/next-devtools-mcp
Next.js development tools MCP server with stdio transport
? Not scanned yet
Versions
1.0.0 latest May 20, 2026
0.2.1 Jun 5, 2026
0.3.10 Jan 8, 2026
0.3.8 Jan 2, 2026
0.3.7 Dec 12, 2025
0.3.6 Dec 5, 2025
0.3.5 Nov 25, 2025
0.3.4 Nov 21, 2025
0.3.3 Nov 13, 2025
0.3.2 Nov 8, 2025
0.3.1 Nov 6, 2025
0.3.0 Nov 5, 2025
0.2.6 Nov 4, 2025
0.2.5 Nov 3, 2025
0.2.4 Nov 3, 2025
0.2.3 Oct 29, 2025
0.2.2 Oct 28, 2025
0.2.0 Oct 22, 2025
Tools 0
No tools indexed yet.
Permissions 0
No permissions indexed yet.
Scan Findings 63
info
package.json metadata
info
Transport: stdio
info
Required env vars (4)
medium
Permission: network access detected
low
Permission: filesystem access detected
high
Permission: shell access detected
low
Permission: env_vars access detected
medium
Suspicious package name: react-dom
medium
Vulnerable dependency: @modelcontextprotocol/sdk@1.24.3 (GHSA-345p-7cg4-v4c7)
medium
Vulnerable dependency: @modelcontextprotocol/sdk@1.24.3 (GHSA-8r9q-7v3j-jr4g)
medium
Vulnerable dependency: undici@7.18.2 (GHSA-2mjp-6q6p-2qxm)
medium
Vulnerable dependency: undici@7.18.2 (GHSA-4992-7rv2-5pvq)
medium
Vulnerable dependency: undici@7.18.2 (GHSA-f269-vfmq-vjvj)
medium
Vulnerable dependency: undici@7.18.2 (GHSA-phc3-fgpg-7m6h)
medium
Vulnerable dependency: undici@7.18.2 (GHSA-v9p9-hfj2-hcw8)
medium
Vulnerable dependency: undici@7.18.2 (GHSA-vrm6-8vpv-qv8q)
medium
Vulnerable dependency: next@16.0.7 (GHSA-267c-6grr-h53f)
medium
Vulnerable dependency: next@16.0.7 (GHSA-26hh-7cqf-hhc6)
medium
Vulnerable dependency: next@16.0.7 (GHSA-36qx-fr4f-26g5)
medium
Vulnerable dependency: next@16.0.7 (GHSA-3g8h-86w9-wvmq)
medium
Vulnerable dependency: next@16.0.7 (GHSA-3x4c-7xq6-9pq8)
medium
Vulnerable dependency: next@16.0.7 (GHSA-492v-c6pp-mqqv)
medium
Vulnerable dependency: next@16.0.7 (GHSA-5f7q-jpqc-wp7h)
medium
Vulnerable dependency: next@16.0.7 (GHSA-8h8q-6873-q5fj)
medium
Vulnerable dependency: next@16.0.7 (GHSA-9g9p-9gw9-jx7f)
medium
Vulnerable dependency: next@16.0.7 (GHSA-c4j6-fc7j-m34r)
medium
Vulnerable dependency: next@16.0.7 (GHSA-ffhc-5mcf-pf4q)
medium
Vulnerable dependency: next@16.0.7 (GHSA-ggv3-7p47-pfv8)
medium
Vulnerable dependency: next@16.0.7 (GHSA-gx5p-jg67-6x7h)
medium
Vulnerable dependency: next@16.0.7 (GHSA-h25m-26qc-wcjf)
medium
Vulnerable dependency: next@16.0.7 (GHSA-h27x-g6w4-24gq)
medium
Vulnerable dependency: next@16.0.7 (GHSA-h64f-5h5j-jqjh)
medium
Vulnerable dependency: next@16.0.7 (GHSA-jcc7-9wpm-mj36)
medium
Vulnerable dependency: next@16.0.7 (GHSA-mg66-mrh9-m8jx)
medium
Vulnerable dependency: next@16.0.7 (GHSA-mq59-m269-xvcx)
medium
Vulnerable dependency: next@16.0.7 (GHSA-mwv6-3258-q52c)
medium
Vulnerable dependency: next@16.0.7 (GHSA-q4gf-8mx6-v5v3)
medium
Vulnerable dependency: next@16.0.7 (GHSA-vfv6-92ff-j949)
medium
Vulnerable dependency: next@16.0.7 (GHSA-w37m-7fhw-fmv9)
medium
Vulnerable dependency: next@16.0.7 (GHSA-wfc6-r584-vfw7)
medium
Vulnerable dependency: next@14.2.33 (GHSA-36qx-fr4f-26g5)
medium
Vulnerable dependency: next@14.2.33 (GHSA-3g8h-86w9-wvmq)
medium
Vulnerable dependency: next@14.2.33 (GHSA-3x4c-7xq6-9pq8)
medium
Vulnerable dependency: next@14.2.33 (GHSA-5j59-xgg2-r9c4)
medium
Vulnerable dependency: next@14.2.33 (GHSA-8h8q-6873-q5fj)
medium
Vulnerable dependency: next@14.2.33 (GHSA-9g9p-9gw9-jx7f)
medium
Vulnerable dependency: next@14.2.33 (GHSA-c4j6-fc7j-m34r)
medium
Vulnerable dependency: next@14.2.33 (GHSA-ffhc-5mcf-pf4q)
medium
Vulnerable dependency: next@14.2.33 (GHSA-ggv3-7p47-pfv8)
medium
Vulnerable dependency: next@14.2.33 (GHSA-gx5p-jg67-6x7h)
medium
Vulnerable dependency: next@14.2.33 (GHSA-h25m-26qc-wcjf)
medium
Vulnerable dependency: next@14.2.33 (GHSA-h64f-5h5j-jqjh)
medium
Vulnerable dependency: next@14.2.33 (GHSA-mwv6-3258-q52c)
medium
Vulnerable dependency: next@14.2.33 (GHSA-q4gf-8mx6-v5v3)
medium
Vulnerable dependency: next@14.2.33 (GHSA-vfv6-92ff-j949)
medium
Vulnerable dependency: next@14.2.33 (GHSA-wfc6-r584-vfw7)
info
SLSA Build Level 3 detected
info
Could not connect to MCP server for output poisoning scan
info
Could not connect to MCP server for behavioral verification
info
SBOM generated: 24 components
info
MITRE ATLAS technique coverage summary
info
ATLAS: Adversarial ML Supply Chain (AML.T0043)
info
ATLAS: Poison Training Data (AML.T0020)