Is Aamangeldi Dad Jokes MCP Server safe to use?

Aamangeldi Dad Jokes MCP Server has no known CVEs as of the latest MCPpedia security scan. It does not require authentication, so any local process can connect — keep this in mind in shared environments.

How do I install Aamangeldi Dad Jokes MCP Server?

Aamangeldi Dad Jokes MCP Server supports copy-paste install configs on its MCPpedia page for Claude Desktop, Cursor, and Claude Code. Scroll to the Quick Install section and select your client.

What can Aamangeldi Dad Jokes MCP Server do?

Aamangeldi Dad Jokes MCP Server provides 3 tools: get_random_joke_tool, search_jokes_tool, get_joke_by_id_tool. See the full tools list on the server page for descriptions and parameters.

What AI clients work with Aamangeldi Dad Jokes MCP Server?

Aamangeldi Dad Jokes MCP Server is compatible with claude-desktop, cursor, claude-code. It uses stdio transport.

Is Aamangeldi Dad Jokes MCP Server actively maintained?

Aamangeldi Dad Jokes MCP Server is less actively maintained — last commit was 231 days ago.

Aamangeldi Dad Jokes MCP Server

fastmcp

Get a random dad joke or search by keyword to fit any moment. Retrieve specific jokes by ID for re…

3 tools GitHub PyPI

No known CVEs

No license

Stale

Last commit 231d ago

Works with most clients

Transport: stdio

3 tools · ~196 tok

Grade A · 0.1% of 200K ctx

Edit this pageView history

Entertainment

Step 1

Install in your client

Config is the same across clients — only the file and path differ.

Supported in Claude Desktopstdio · Node 18+

Paste into ~/Library/Application Support/Claude/claude_desktop_config.json

{
  "mcpServers": {
    "ai-smithery-aamangeldi-dad-jokes-mcp": {
      "args": [
        "fastmcp"
      ],
      "command": "uvx"
    }
  }
}

Are you the author?

Add this badge to your README to show your security score and help users find safe servers.

Embed in your READMEAbout badges →

[![MCPpedia Score](https://mcppedia.org/api/badge/ai-smithery-aamangeldi-dad-jokes-mcp)](https://mcppedia.org/s/ai-smithery-aamangeldi-dad-jokes-mcp)

Read me

What Aamangeldi Dad Jokes MCP Server does

Get a random dad joke or search by keyword to fit any moment. Retrieve specific jokes by ID for re…

Test This Server

Run this in your terminal to verify the server starts. Then let us know if it worked — your result helps other developers.

uvx 'fastmcp' 2>&1 | head -1 && echo "✓ Server started successfully"

After testing, let us know if it worked:

Loading README…

Scored, not listed

Why this score

Five weighted categories — click any category to see the underlying evidence.

Score breakdown

77/100across 5 weighted dimensions

How we score →

0255075100

−23

Security

Maintenance

Efficiency

Documentation

Compatibility

Categoriesclick a row to see evidence

Security

OSV.dev

8 fixed

CVE-2026-32871low · fixedCVSS 3.1

FastMCP OpenAPI Provider has an SSRF & Path Traversal Vulnerability

## Technical Description The `OpenAPIProvider` in FastMCP exposes internal APIs to MCP clients by parsing OpenAPI specifications. The `RequestDirector` class is responsible for constructing HTTP requests to the backend service. A critical vulnerability exists in the `_build_url()` method. When an OpenAPI operation defines path parameters (e.g., `/api/v1/users/{user_id}`), the system directly substitutes parameter values into the URL template string **without URL-encoding**. Subsequently, `urll

Affected: >= 0Fixed in 3.2.0source →

CVE-2026-27124medium · fixedCVSS 4

FastMCP: Missing Consent Verification in OAuth Proxy Callback Facilitates Confused Deputy Vulnerabilities

## Summary While testing the *GitHubProvider* OAuth integration, which allows authentication to a FastMCP MCP server via a FastMCP OAuthProxy using GitHub OAuth, it was discovered that the FastMCP OAuthProxy does not properly validate the user's consent upon receiving the authorization code from GitHub. In combination with GitHub’s behavior of skipping the consent page for previously authorized clients, this introduces a Confused Deputy vulnerability. ## Technical Details An adversary can initi

Affected: >= 0Fixed in 3.2.0source →

CVE-2025-64340low · fixedCVSS 3.1

FastMCP has a Command Injection vulnerability - Gemini CLI

Server names containing shell metacharacters (e.g., `&`) can cause command injection on Windows when passed to `fastmcp install claude-code` or `fastmcp install gemini-cli`. These install paths use `subprocess.run()` with a list argument, but on Windows the target CLIs often resolve to `.cmd` wrappers that are executed through `cmd.exe`, which interprets metacharacters in the flattened command string. PoC: ```python from fastmcp import FastMCP mcp = FastMCP(name="test&calc") @mcp.tool def rol

Affected: >= 0Fixed in 3.2.0source →

CVE-2025-69196medium · fixedCVSS 4

FastMCP OAuth Proxy token reuse across MCP servers

While testing the OAuth Proxy implementation, it was noticed that the server does not properly respect the `resource` parameter submitted by the client in the authorization and token request. Instead of issuing the token explicitly for this MCP server, the token is issued for the `base_url` passed to the `OAuthProxy` during initialization. **Affected File:** *https://github.com/jlowin/fastmcp/blob/main/src/fastmcp/server/auth/oauth_proxy.py#L828* **Affected Code:** ```python self._jwt_issuer:

Affected: >= 0Fixed in 2.14.2source →

GHSA-rcfx-77hg-w2wvinfo · fixed

FastMCP updated to MCP 1.23+ due to CVE-2025-66416

There was a recent CVE report on MCP: https://nvd.nist.gov/vuln/detail/CVE-2025-66416. FastMCP does not use any of the affected components of the MCP SDK directly. However, FastMCP versions prior to 2.14.0 did allow MCP SDK versions <1.23 that were vulnerable to CVE-2025-66416. Users should upgrade to FastMCP 2.14.0 or later.

Affected: >= 0Fixed in 2.14.0source →

Inventory

Tools (3)

Click any tool to inspect its schema.

~196 tokens total

Help improve this page

This server is missing a description.If you've used it, help the community.

Add information

Community

Reviews

Be the first to review

Have you used this server?

Share your experience — it helps other developers decide.

How easy was setup?Did it work reliably?How was the documentation?

Frequently Asked Questions

Is Aamangeldi Dad Jokes MCP Server safe to use?: Aamangeldi Dad Jokes MCP Server has no known CVEs as of the latest MCPpedia security scan. It does not require authentication, so any local process can connect — keep this in mind in shared environments.
How do I install Aamangeldi Dad Jokes MCP Server?: Aamangeldi Dad Jokes MCP Server supports copy-paste install configs on its MCPpedia page for Claude Desktop, Cursor, and Claude Code. Scroll to the Quick Install section and select your client.
What can Aamangeldi Dad Jokes MCP Server do?: Aamangeldi Dad Jokes MCP Server provides 3 tools: get_random_joke_tool, search_jokes_tool, get_joke_by_id_tool. See the full tools list on the server page for descriptions and parameters.
What AI clients work with Aamangeldi Dad Jokes MCP Server?: Aamangeldi Dad Jokes MCP Server is compatible with claude-desktop, cursor, claude-code. It uses stdio transport.
Is Aamangeldi Dad Jokes MCP Server actively maintained?: Aamangeldi Dad Jokes MCP Server is less actively maintained — last commit was 231 days ago.

Similar servers

Others in entertainment

View all →

com.mux/mcp94

The official MCP Server for the Mux API

179 7

ai.smithery/ChiR24-unreal_mcp_server92

A comprehensive Model Context Protocol (MCP) server that enables AI assistants to control Unreal E…

618 11

Strudel Mcp Server91

A Model Context Protocol (MCP) server that gives Claude direct control over Strudel.cc for AI-assisted music generation and live coding.

200 34

Ue Mcp90

Unreal Engine MCP server — 19 tools, 300+ actions for AI-driven editor control

103 15

MCP Security Weekly

Get CVE alerts and security updates for Aamangeldi Dad Jokes MCP Server and similar servers.

Community

Discussion

Start a conversation

Ask a question, share a tip, or report an issue.

Has anyone used this with Cursor?How do you handle auth?Any alternatives?

Edit this pageView history

Entertainment

Step 1

Install in your client

Config is the same across clients — only the file and path differ.

Supported in Claude Desktopstdio · Node 18+

Paste into ~/Library/Application Support/Claude/claude_desktop_config.json

{
  "mcpServers": {
    "ai-smithery-aamangeldi-dad-jokes-mcp": {
      "args": [
        "fastmcp"
      ],
      "command": "uvx"
    }
  }
}

Are you the author?

Add this badge to your README to show your security score and help users find safe servers.

Embed in your READMEAbout badges →

[![MCPpedia Score](https://mcppedia.org/api/badge/ai-smithery-aamangeldi-dad-jokes-mcp)](https://mcppedia.org/s/ai-smithery-aamangeldi-dad-jokes-mcp)

Read me

What Aamangeldi Dad Jokes MCP Server does

Get a random dad joke or search by keyword to fit any moment. Retrieve specific jokes by ID for re…

Test This Server

Run this in your terminal to verify the server starts. Then let us know if it worked — your result helps other developers.

uvx 'fastmcp' 2>&1 | head -1 && echo "✓ Server started successfully"

After testing, let us know if it worked:

README

Dad Jokes MCP Server

A lightweight Model Context Protocol (MCP) server that provides dad jokes from icanhazdadjoke.com.

Features

🎭 Get random dad jokes
🔍 Search jokes by keyword
🆔 Retrieve specific jokes by ID
⚡ Fast and lightweight
🚀 Ready for Smithery deployment

Tools

`get_random_joke_tool`

Get a random dad joke.

Example:

{}

`search_jokes_tool`

Search for dad jokes containing a specific term.

Parameters:

term (string, required): Search term to find jokes
limit (integer, optional): Number of jokes to return (default: 5, max: 30)

Example:

{
  "term": "pizza",
  "limit": 3
}

`get_joke_by_id_tool`

Retrieve a specific joke by its ID.

Parameters:

joke_id (string, required): The ID of the joke to retrieve

Example:

{
  "joke_id": "R7UfaahVfFd"
}

Local Development

Prerequisites

Python 3.11+
pip

Setup

Clone the repository:

git clone https://github.com/aamangeldi/dad-jokes-mcp.git
cd dad-jokes-mcp

Create a virtual environment and install dependencies:

python3 -m venv venv
source venv/bin/activate  # On Windows: venv\Scripts\activate
pip install fastmcp smithery httpx

Run the server locally:

fastmcp run server.py

Deployment to Smithery

Push your code to GitHub
Connect your repository to Smithery
Smithery will automatically detect the configuration and deploy your server

The server uses:

runtime: python in smithery.yaml
FastMCP for the server implementation
@smithery.server() decorator for configuration

Configuration

The server requires no authentication or configuration. It uses the free icanhazdadjoke.com API with the following defaults:

API: https://icanhazdadjoke.com
No API key required
Rate limiting follows icanhazdadjoke.com policies

Credits

Dad jokes provided by icanhazdadjoke.com

License

MIT License - see LICENSE file for details

Loading README…

Scored, not listed

Why this score

Five weighted categories — click any category to see the underlying evidence.

Score breakdown

77/100across 5 weighted dimensions

How we score →

0255075100

−23

Security

Maintenance

Efficiency

Documentation

Compatibility

Categoriesclick a row to see evidence

Security

OSV.dev

8 fixed

CVE-2026-32871low · fixedCVSS 3.1

FastMCP OpenAPI Provider has an SSRF & Path Traversal Vulnerability

Affected: >= 0Fixed in 3.2.0source →

CVE-2026-27124medium · fixedCVSS 4

FastMCP: Missing Consent Verification in OAuth Proxy Callback Facilitates Confused Deputy Vulnerabilities

Affected: >= 0Fixed in 3.2.0source →

CVE-2025-64340low · fixedCVSS 3.1

FastMCP has a Command Injection vulnerability - Gemini CLI

Affected: >= 0Fixed in 3.2.0source →

CVE-2025-69196medium · fixedCVSS 4

FastMCP OAuth Proxy token reuse across MCP servers

Affected: >= 0Fixed in 2.14.2source →

GHSA-rcfx-77hg-w2wvinfo · fixed

FastMCP updated to MCP 1.23+ due to CVE-2025-66416

Affected: >= 0Fixed in 2.14.0source →

Inventory

Tools (3)

Click any tool to inspect its schema.

~196 tokens total

Help improve this page

This server is missing a description.If you've used it, help the community.

Add information

Community

Reviews

Be the first to review

Have you used this server?

Share your experience — it helps other developers decide.

How easy was setup?Did it work reliably?How was the documentation?

Frequently Asked Questions

Is Aamangeldi Dad Jokes MCP Server safe to use?: Aamangeldi Dad Jokes MCP Server has no known CVEs as of the latest MCPpedia security scan. It does not require authentication, so any local process can connect — keep this in mind in shared environments.
How do I install Aamangeldi Dad Jokes MCP Server?: Aamangeldi Dad Jokes MCP Server supports copy-paste install configs on its MCPpedia page for Claude Desktop, Cursor, and Claude Code. Scroll to the Quick Install section and select your client.
What can Aamangeldi Dad Jokes MCP Server do?: Aamangeldi Dad Jokes MCP Server provides 3 tools: get_random_joke_tool, search_jokes_tool, get_joke_by_id_tool. See the full tools list on the server page for descriptions and parameters.
What AI clients work with Aamangeldi Dad Jokes MCP Server?: Aamangeldi Dad Jokes MCP Server is compatible with claude-desktop, cursor, claude-code. It uses stdio transport.
Is Aamangeldi Dad Jokes MCP Server actively maintained?: Aamangeldi Dad Jokes MCP Server is less actively maintained — last commit was 231 days ago.