apisql-mcp
Unknown developer
Threat Summary
Key Security Threats
MCP transport security issue: HARDCODED-TOKEN-bin/server/index.js
bin/server/index.js
YARA rule match: -postinstall_network_communication
/tmp/extract-5e517762c16a3bb3528aaa4a22e898e47586ac37ce1acc1ee170c5c95e41548a-3494853349/bin/transports/stdio.js
YARA rule match: -postinstall_file_manipulation
/tmp/extract-5e517762c16a3bb3528aaa4a22e898e47586ac37ce1acc1ee170c5c95e41548a-3494853349/README.md
YARA rule match: -postinstall_network_communication
/tmp/extract-5e517762c16a3bb3528aaa4a22e898e47586ac37ce1acc1ee170c5c95e41548a-3494853349/README.md
YARA rule match: -postinstall_system_command
/tmp/extract-5e517762c16a3bb3528aaa4a22e898e47586ac37ce1acc1ee170c5c95e41548a-3494853349/README.md
All Findings (111)
View all 111 security findings
MCP transport security issue: HARDCODED-TOKEN-bin/server/index.js
YARA rule match: -postinstall_network_communication
YARA rule match: -postinstall_file_manipulation
YARA rule match: -postinstall_network_communication
YARA rule match: -postinstall_system_command
YARA rule match: -credential_env_files
YARA rule match: -postinstall_system_command
MCP tool poisoning risk: CREDENTIAL-ACCESS-bin/server/index.js-12
MCP tool poisoning risk: CREDENTIAL-ACCESS-bin/server/index.js-14
YARA rule match: -HavingAPermissiveCrossOriginResourceSharingPolicy
YARA rule match: -postinstall_file_manipulation
YARA rule match: -postinstall_network_communication
YARA rule match: -postinstall_file_download
MCP tool poisoning risk: CREDENTIAL-ACCESS-bin/server/index.js-13
MCP tool poisoning risk: CREDENTIAL-ACCESS-bin/server/index.js-13
YARA rule match: -postinstall_system_command
YARA rule match: -postinstall_file_download
YARA rule match: -postinstall_system_command
XIOC detected IP: ::c
XIOC detected IP: 5::
XIOC detected IP: 0.0.0.0
XIOC detected URL: https://github.com/apisql-dev/apisql-mcp#readme
XIOC detected MD5 Hash: 7dd9b66d38f8aff81f091ecfcf259f70
XIOC detected URL: https://docs.apisql.cn)
XIOC detected URL: https://github.com/apisql-dev/apisql-mcp/issues)
XIOC detected URL: https://www.npmjs.com/package/apisql-mcp)
XIOC detected URL: https://www.apisql.cn)
XIOC detected URL: https://open.apisql.cn/api/mytest/$sudb';
XIOC detected URL: https://open.apisql.cn/api/mytest/$sudb')
XIOC detected URL: https://github.com/apisql-dev/apisql-mcp.git
XIOC detected URL: https://raw.githubusercontent.com/apisql-dev/apisql-mcp/main/images/banner.jpg)](https://www.apisql.cn)
XIOC detected URL: https://open.apisql.cn/api/mytest/$sudb
XIOC detected URL: https://open.apisql.cn)
XIOC detected URL: https://docs.apisql.cn/apisql/010@%E5%85%A5%E9%97%A8/020@%E5%BF%AB%E9%80%9F%E5%85%A5%E9%97%A8/readme.html)
XIOC detected URL: https://open.apisql.cn/api/mytest/$sudb
XIOC detected URL: https://open.apisql.cn/api/mytest/$sudb
XIOC detected URL: https://github.com/apisql-dev/apisql-mcp.git
XIOC detected Domain: c18.ma
XIOC detected Domain: apisql.cn
XIOC detected Domain: readme.md
XIOC detected IP: a::
XIOC detected IP: 9::b
XIOC detected URL: https://img.shields.io/badge/License-MIT-yellow.svg)](https://opensource.org/licenses/MIT)
XIOC detected URL: https://img.shields.io/badge/node-%3E%3D18.0.0-brightgreen.svg)](https://nodejs.org/)
XIOC detected Domain: ȩ.fj
XIOC detected Domain: 86.ni
XIOC detected Domain: z.nr
XIOC detected Domain: r.mv
XIOC detected Domain: l.io
XIOC detected Domain: o.mk
XIOC detected Domain: 4h.is
XIOC detected Domain: ꡔkc.et
XIOC detected Domain: m.zm
XIOC detected Domain: 1.so
XIOC detected Domain: w.kz
XIOC detected Domain: bnn.bb
XIOC detected Domain: 6.tl
XIOC detected Domain: h.aaa
XIOC detected Domain: request.params.arguments.sc
XIOC detected Domain: axiosinstance.post
XIOC detected Domain: response.data
XIOC detected Domain: ӕ.mw
XIOC detected Domain: y.gg
XIOC detected Domain: g.mr
XIOC detected Domain: vo0.vc
XIOC detected Domain: www.npmjs.com
XIOC detected Domain: opensource.org
XIOC detected Domain: nodejs.org
XIOC detected Domain: www.apisql.cn
XIOC detected Domain: options.host
XIOC detected Domain: args.sc
XIOC detected Domain: request.params.name
XIOC detected IP: 8::b
XIOC detected IP: 18::
XIOC detected Domain: img.shields.io
XIOC detected Domain: raw.githubusercontent.com
XIOC detected Domain: open.apisql.cn
XIOC detected Domain: docs.apisql.cn
XIOC detected Domain: github.com
XIOC detected IP: ::9
XIOC detected IP: ::8
XIOC detected IP: b8::
XIOC detected IP: ::2
XIOC detected IP: 68::
XIOC detected URL: https://img.shields.io/npm/v/apisql-mcp.svg)](https://www.npmjs.com/package/apisql-mcp)
XIOC detected IP: ::a
XIOC detected IP: 1::
XIOC detected IP: ::6
XIOC detected IP: f8::6
XIOC detected IP: 69::
XIOC detected IP: ::f
XIOC detected IP: e0::
XIOC detected IP: 3338::
XIOC detected IP: 0::
XIOC detected IP: 9::
XIOC detected IP: 8::
XIOC detected IP: 6::
XIOC detected IP: 3::
XIOC detected IP: 4::
XIOC detected IP: f73::
XIOC detected IP: 127.0.0.1
XIOC detected IP: ::
XIOC detected IP: c::
XIOC detected IP: ::e
XIOC detected Email: [email protected]
HASH-6f0f643599eaa875
HASH-7e8a9edd6b223e6f
HASH-321f5719fcf55b7c
HASH-b7647c2adaffc92c
HASH-e97c8833321a1c83
HASH-6f4665382e91ae43
Recommended Action
This extension has significant security concerns that warrant careful review. Consider uninstalling or finding a safer alternative. If you must use it, limit the permissions and monitor for suspicious activity.