Step 1
Install in your client
Config is the same across clients — only the file and path differ.
CD
Supported in Claude Desktopsse, http · Node 18+
Paste into ~/Library/Application Support/Claude/claude_desktop_config.json
{
"mcpServers": {
"aitoearn": {
"url": "https://aitoearn.ai/api/unified/mcp",
"type": "http",
"headers": {
"x-api-key": "你的API-Key"
}
}
}
}Are you the author?
Add this badge to your README to show your security score and help users find safe servers.
Embed in your READMEAbout badges →
[](https://mcppedia.org/s/aitoearn)
Read me
What AiToEarn does
简体中文 | English | 日本語
Test This Server
This server supports HTTP transport. Be the first to test it — help the community know if it works.
Scored, not listed
Why this score
Five weighted categories — click any category to see the underlying evidence.
Score breakdown
67/100across 5 weighted dimensions
0255075100
22
22
13
10
−33
Security
Maintenance
Efficiency
Documentation
Compatibility
Categoriesclick a row to see evidence
Security
OSV.dev12 fixed
CVE-2026-24131medium · fixedCVSS 4
pnpm has Path Traversal via arbitrary file permission modification
### Summary When pnpm processes a package's `directories.bin` field, it uses `path.join()` without validating the result stays within the package root. A malicious npm package can specify `"directories": {"bin": "../../../../tmp"}` to escape the package directory, causing pnpm to chmod 755 files at arbitrary locations. **Note:** Only affects Unix/Linux/macOS. Windows is not affected (`fixBin` gated by `EXECUTABLE_SHEBANG_SUPPORTED`). ### Details Vulnerable code in `pkg-manager/package-bins/src
CVE-2026-23888low · fixedCVSS 3.1
pnpm: Binary ZIP extraction allows arbitrary file write via path traversal (Zip Slip)
### Summary A path traversal vulnerability in pnpm's binary fetcher allows malicious packages to write files outside the intended extraction directory. The vulnerability has two attack vectors: (1) Malicious ZIP entries containing `../` or absolute paths that escape the extraction root via AdmZip's `extractAllTo`, and (2) The `BinaryResolution.prefix` field is concatenated into the extraction path without validation, allowing a crafted prefix like `../../evil` to redirect extracted files outsid
CVE-2026-23889low · fixedCVSS 3.1
pnpm has Windows-specific tarball Path Traversal
### Summary A path traversal vulnerability in pnpm's tarball extraction allows malicious packages to write files outside the package directory on Windows. The path normalization only checks for `./` but not `.\`. On Windows, backslashes are directory separators, enabling path traversal. **This vulnerability is Windows-only.** ### Details **1. Incomplete Path Normalization (`store/cafs/src/parseTarball.ts:107-110`)** ```typescript if (fileName.includes('./')) { fileName = path.posix.join('/'
CVE-2026-23890low · fixedCVSS 3.1
pnpm scoped bin name Path Traversal allows arbitrary file creation outside node_modules/.bin
### Summary A path traversal vulnerability in pnpm's bin linking allows malicious npm packages to create executable shims or symlinks outside of `node_modules/.bin`. Bin names starting with `@` bypass validation, and after scope normalization, path traversal sequences like `../../` remain intact. ### Details The vulnerability exists in the bin name validation and normalization logic: **1. Validation Bypass (`pkg-manager/package-bins/src/index.ts`)** The filter allows any bin name starting wit
CVE-2026-24056low · fixedCVSS 3.1
pnpm has symlink traversal in file:/git dependencies
### Summary When pnpm installs a `file:` (directory) or `git:` dependency, it follows symlinks and reads their target contents without constraining them to the package root. A malicious package containing a symlink to an absolute path (e.g., `/etc/passwd`, `~/.ssh/id_rsa`) causes pnpm to copy that file's contents into `node_modules`, leaking local data. **Preconditions:** Only affects `file:` and `git:` dependencies. Registry packages (npm) have symlinks stripped during publish and are NOT affe
Community
Reviews
Be the first to review
Have you used this server?
Share your experience — it helps other developers decide.
How easy was setup?Did it work reliably?How was the documentation?
Sign in to write a review.
Frequently Asked Questions
- Is AiToEarn safe to use?
- AiToEarn has no known CVEs as of the latest MCPpedia security scan. It does not require authentication, so any local process can connect — keep this in mind in shared environments. Licensed under MIT.
- How do I install AiToEarn?
- AiToEarn supports copy-paste install configs on its MCPpedia page for Claude Desktop, Cursor, and Claude Code. Scroll to the Quick Install section and select your client.
- What AI clients work with AiToEarn?
- AiToEarn is compatible with claude-desktop, cursor, claude-code. It uses sse and http transport.
- Is AiToEarn actively maintained?
- AiToEarn is actively maintained — last commit was 4 days ago. It has 15,375 GitHub stars.
Related
Similar servers
Others in ai-ml / marketing
Memory MCP Server98Persistent memory using a knowledge graph
85.9k 5
Antigravity Workspace Template96Workspace template + MCP server for Claude Code, Codex CLI, Cursor & Windsurf. Multi-agent knowledge engine (ag-refresh / ag-ask) that turns any codebase into a queryable AI assistant.
1.2k 2
Context Mode95Privacy-first. MCP is the protocol for tool access. We're the virtualization layer for context.
15.1k 6
Gemini Cli95An open-source AI agent that brings the power of Gemini directly into your terminal.
104.3k 8
MCP Security Weekly
Get CVE alerts and security updates for AiToEarn and similar servers.
Community
Discussion
Start a conversation
Ask a question, share a tip, or report an issue.
Has anyone used this with Cursor?How do you handle auth?Any alternatives?
Sign in to join the discussion.