Step 1
Install in your client
Config is the same across clients — only the file and path differ.
CD
Supported in Claude Desktopstdio · Node 18+
Paste into ~/Library/Application Support/Claude/claude_desktop_config.json
{
"mcpServers": {
"io-github-plagtech-spraay-solana-gateway": {
"args": [
"-y",
"@modelcontextprotocol/sdk"
],
"command": "npx"
}
}
}Are you the author?
Add this badge to your README to show your security score and help users find safe servers.
Embed in your READMEAbout badges →
[](https://mcppedia.org/s/io-github-plagtech-spraay-solana-gateway)
Read me
What Spraay Solana Gateway MCP Server does
x402-powered batch payment infrastructure for AI agents on Solana.
Test This Server
Run this in your terminal to verify the server starts. Then let us know if it worked — your result helps other developers.
npx -y '@modelcontextprotocol/sdk' 2>&1 | head -1 && echo "✓ Server started successfully"
After testing, let us know if it worked:
Loading README…
Scored, not listed
Why this score
Five weighted categories — click any category to see the underlying evidence.
Score breakdown
55/100across 5 weighted dimensions
0255075100
19
12
14
10
−45
Security
Maintenance
Efficiency
Documentation
Compatibility
Categoriesclick a row to see evidence
Security
OSV.dev3 fixed
CVE-2026-25536low · fixedCVSS 3.1
@modelcontextprotocol/sdk has cross-client data leak via shared server/transport instance reuse
### Summary Cross-client data leak via two distinct issues: (1) reusing a single `StreamableHTTPServerTransport` across multiple client requests, and (2) reusing a single `McpServer`/`Server` instance across multiple transports. Both are most common in stateless deployments. ### Impact This advisory covers two related but distinct vulnerabilities. A deployment may be affected by one or both. #### Issue 1: Transport re-use **What happens:** When a single `StreamableHTTPServerTransport` insta
CVE-2026-0621medium · fixedCVSS 4
Anthropic's MCP TypeScript SDK has a ReDoS vulnerability
### Impact A ReDoS vulnerability in the `UriTemplate` class allows attackers to cause denial of service. The `partToRegExp()` function generates a regex pattern with nested quantifiers (`([^/]+(?:,[^/]+)*)`) for exploded template variables (e.g., `{/id*}`, `{?tags*}`), causing catastrophic backtracking on malicious input. **Who is affected:** MCP servers that register resource templates with exploded array patterns and accept requests from untrusted clients. **Attack result:** An attacker sen
CVE-2025-66414medium · fixedCVSS 4
Model Context Protocol (MCP) TypeScript SDK does not enable DNS rebinding protection by default
The Model Context Protocol (MCP) TypeScript SDK does not enable DNS rebinding protection by default for HTTP-based servers. When an HTTP-based MCP server is run on localhost without authentication with `StreamableHTTPServerTransport` or `SSEServerTransport` and has not enabled `enableDnsRebindingProtection`, a malicious website could exploit DNS rebinding to bypass same-origin policy restrictions and send requests to the local MCP server. This could allow an attacker to invoke tools or access re
Community
Reviews
Be the first to review
Have you used this server?
Share your experience — it helps other developers decide.
How easy was setup?Did it work reliably?How was the documentation?
Sign in to write a review.
Frequently Asked Questions
- Is Spraay Solana Gateway MCP Server safe to use?
- Spraay Solana Gateway MCP Server has no known CVEs as of the latest MCPpedia security scan. It does not require authentication, so any local process can connect — keep this in mind in shared environments.
- How do I install Spraay Solana Gateway MCP Server?
- Spraay Solana Gateway MCP Server supports copy-paste install configs on its MCPpedia page for Claude Desktop, Cursor, and Claude Code. Scroll to the Quick Install section and select your client.
- What AI clients work with Spraay Solana Gateway MCP Server?
- Spraay Solana Gateway MCP Server is compatible with claude-desktop, cursor, claude-code. It uses stdio transport.
- Is Spraay Solana Gateway MCP Server actively maintained?
- Spraay Solana Gateway MCP Server is recently maintained — last commit was 81 days ago.
Related
Similar servers
Others in finance
A
Alpha Vantage Mcp93Real-time financial market data: stocks, forex, crypto, commodities, and economic indicators
150 3
Spreedly Mcp92A Model Context Protocol (MCP) server that provides AI assistants with direct access to the Spreedly payments API. Enables LLMs to manage gateways, process transactions, tokenize payment methods, and more, through structured, validated tool calls.
9 8
I
io.github.rezmeplxrf/insightsentry_mcp91MCP server for InsightSentry financial data API - market data, options, screeners, and more
3
I
io.github.xkumakichi/xaip-mcp-server90AI agents get on-chain identity, credentials, reputation, escrow, and persistent memory on XRPL.
8
MCP Security Weekly
Get CVE alerts and security updates for Spraay Solana Gateway MCP Server and similar servers.
Community
Discussion
Start a conversation
Ask a question, share a tip, or report an issue.
Has anyone used this with Cursor?How do you handle auth?Any alternatives?
Sign in to join the discussion.