Harmful

Most [MCP servers](https://github.com/modelcontextprotocol/servers) suggest using `npx -y` as the recommended way to install a server. This downloads and executes arbitrary scripts from the internet. This is grossly insecure and I think the MCP authors sh

CommunityUnknownNot testedUpdated 4/3/2026

Developer Tools AI / ML Security

npm

Edit this page

MCPpedia
Score

No CVEsunknownstdio

How we score →

Should you use this server?

✓

Is it safe?

No known CVEs for @considered/harmful.

No authentication — any process on your machine can connect to this server.

License not specified.

Last scanned 0 days ago.

Is it maintained?

Commit history unknown.

Will it work with my client?

Transport: stdio. Works with Claude Desktop, Cursor, Claude Code, and most MCP clients.

How much context will it use?

0 tools. Token cost not measured.

What if it doesn't work?

Common issues: JSON syntax errors in config, wrong Node.js version, npx cache. covers troubleshooting.

Quick Install

{
  "mcpServers": {
    "harmful": {
      "command": "npx",
      "args": [
        "-y",
        "@considered/harmful"
      ]
    }
  }
}

Setup guide

Auto-generated from package name. Add to your client's MCP config file.

Test This Server

Run this in your terminal to verify the server starts. Then let us know if it worked — your result helps other developers.

npx -y @considered/harmful 2>&1 | head -1 && echo "✓ Server started successfully"

After testing, let us know if it worked:

Score Breakdown

MCPpedia Score

Click each category to see evidence

52C

Scored 6h ago

How we score →

Security

27/30

Last scanned 6h ago

No known vulnerabilities.

✓

CVEs — No known CVEs for this packagecheck OSV.dev \u2192

○

Authentication — None required — easy to connect

✗

License — Not specified

✓

Repository — Active

✗

MCPpedia review — Not yet reviewed by MCPpedia

CVEs checked daily via OSV.dev. Score algorithm is open source.

Embed this score in your READMEPreview badge

[![MCPpedia Score](https://mcppedia.org/api/badge/harmful)](https://mcppedia.org/s/harmful)