Is io.github.wyre-technology/blackpoint-mcp safe to use?

io.github.wyre-technology/blackpoint-mcp has no known CVEs as of the latest MCPpedia security scan. It does not require authentication, so any local process can connect — keep this in mind in shared environments.

How do I install io.github.wyre-technology/blackpoint-mcp?

io.github.wyre-technology/blackpoint-mcp can be installed by cloning its GitHub repository and following the setup instructions in the README.

What AI clients work with io.github.wyre-technology/blackpoint-mcp?

io.github.wyre-technology/blackpoint-mcp is compatible with claude-desktop, cursor, claude-code. It uses stdio transport.

io.github.wyre-technology/blackpoint-mcp

MCP server for Blackpoint Cyber MDR — alerts, threats, and operations.

0 tools GitHub

No known CVEs

No license

Maintenance unknown

No commit data

Works with most clients

Transport: stdio

0 tools

Grade F

Edit this pageView history

Security

Step 1

Install in your client

Config is the same across clients — only the file and path differ.

Supported in Claude Desktopstdio · Node 18+

Paste into ~/Library/Application Support/Claude/claude_desktop_config.json

{
  "mcpServers": {
    "io-github-wyre-technology-blackpoint-mcp": {
      "command": "<see-readme>",
      "args": []
    }
  }
}

Are you the author?

Add this badge to your README to show your security score and help users find safe servers.

Embed in your READMEAbout badges →

[![MCPpedia Score](https://mcppedia.org/api/badge/io-github-wyre-technology-blackpoint-mcp)](https://mcppedia.org/s/io-github-wyre-technology-blackpoint-mcp)

Read me

What io.github.wyre-technology/blackpoint-mcp does

MCP server for Blackpoint Cyber MDR — alerts, threats, and operations.

Test This Server

No automated test available for this server. Check the GitHub README for setup instructions.

Loading README…

Scored, not listed

Why this score

Five weighted categories — click any category to see the underlying evidence.

Score breakdown

22/100across 5 weighted dimensions

How we score →

0255075100

−78

Security

Maintenance

Efficiency

Documentation

Compatibility

Categoriesclick a row to see evidence

Security

OSV.dev

No known CVEs.

No package registry to scan.

Help improve this page

This server is missing a description. Tools and install config are also missing.If you've used it, help the community.

Add information

Community

Reviews

Be the first to review

Have you used this server?

Share your experience — it helps other developers decide.

How easy was setup?Did it work reliably?How was the documentation?

Frequently Asked Questions

Is io.github.wyre-technology/blackpoint-mcp safe to use?: io.github.wyre-technology/blackpoint-mcp has no known CVEs as of the latest MCPpedia security scan. It does not require authentication, so any local process can connect — keep this in mind in shared environments.
How do I install io.github.wyre-technology/blackpoint-mcp?: io.github.wyre-technology/blackpoint-mcp can be installed by cloning its GitHub repository and following the setup instructions in the README.
What AI clients work with io.github.wyre-technology/blackpoint-mcp?: io.github.wyre-technology/blackpoint-mcp is compatible with claude-desktop, cursor, claude-code. It uses stdio transport.

Similar servers

Others in security

View all →

Evil Mcp Server93

An evil MCP server used for redteam testing

30 1

io.github.jasonxkensei/xproof92

Proof primitive for AI agents on MultiversX. Anchor file hashes on-chain as verifiable proofs.

1 1

Ida Pro Mcp92

AI-powered reverse engineering assistant that bridges IDA Pro with language models through MCP.

9.0k 3

Mcpki Server92

mcpki-server is the backend infrastructure for https://www.mcpki.org, enabling secure public key management and autonomous certificate handling for large language models (LLMs).

MCP Security Weekly

Get CVE alerts and security updates for io.github.wyre-technology/blackpoint-mcp and similar servers.

Community

Discussion

Start a conversation

Ask a question, share a tip, or report an issue.

Has anyone used this with Cursor?How do you handle auth?Any alternatives?

Edit this pageView history

Security

Step 1

Install in your client

Config is the same across clients — only the file and path differ.

Supported in Claude Desktopstdio · Node 18+

Paste into ~/Library/Application Support/Claude/claude_desktop_config.json

{
  "mcpServers": {
    "io-github-wyre-technology-blackpoint-mcp": {
      "command": "<see-readme>",
      "args": []
    }
  }
}

Are you the author?

Add this badge to your README to show your security score and help users find safe servers.

Embed in your READMEAbout badges →

[![MCPpedia Score](https://mcppedia.org/api/badge/io-github-wyre-technology-blackpoint-mcp)](https://mcppedia.org/s/io-github-wyre-technology-blackpoint-mcp)

Read me

What io.github.wyre-technology/blackpoint-mcp does

MCP server for Blackpoint Cyber MDR — alerts, threats, and operations.

Test This Server

No automated test available for this server. Check the GitHub README for setup instructions.

README

blackpoint-mcp

Model Context Protocol (MCP) server for Blackpoint Cyber CompassOne - Managed Detection and Response (MDR) platform.

Features

This MCP server provides access to CompassOne's security capabilities through a decision-tree navigation interface:

Available Domains

🏢 Tenants: Customer tenant management
💻 Assets: Endpoint and server inventory (endpoint, server, network, cloud, mobile, iot)
🔍 Detections: Security detections and telemetry
🛡️ Vulnerabilities: Vulnerability management, dark web monitoring, external exposure scanning

Domain Structure

The server uses decision-tree navigation to organize tools:

Initial State: Navigation tools only (blackpoint_navigate, blackpoint_status)
Domain Entry: Navigate to a domain to see its specific tools
Domain Tools: Use domain-specific operations
Return: Use blackpoint_back to return to navigation

Tool Naming Convention

All tools follow the pattern: blackpoint_{domain}_{action}

Examples:

blackpoint_assets_list - List assets by class
blackpoint_detections_list - List security detections
blackpoint_vulnerabilities_scans_list - List vulnerability scans

Installation

npm install blackpoint-mcp

Configuration

Environment Variables

Variable	Description	Required
`BLACKPOINT_API_TOKEN`	CompassOne API token	Yes
`BLACKPOINT_BASE_URL`	API base URL (may vary by region/partner)	No
`MCP_TRANSPORT`	Transport mode: `stdio` or `http`	No (default: stdio)
`MCP_HTTP_PORT`	HTTP port for gateway mode	No (default: 8080)
`AUTH_MODE`	Set to `gateway` for header-based auth	No
`LOG_LEVEL`	Logging level: debug, info, warn, error	No (default: info)

Gateway Mode

When AUTH_MODE=gateway, the server reads credentials from HTTP headers:

X-Blackpoint-API-Token → BLACKPOINT_API_TOKEN

This enables per-request authentication for multi-tenant gateways.

Usage

Standalone Mode (stdio)

# Set credentials
export BLACKPOINT_API_TOKEN="your-api-token"

# Run the server
blackpoint-mcp

Gateway Mode (HTTP)

export AUTH_MODE=gateway
export MCP_TRANSPORT=http
export MCP_HTTP_PORT=8080

blackpoint-mcp

Example Tool Calls

// Start by checking available domains
await tools.call("blackpoint_status");

// Navigate to assets domain
await tools.call("blackpoint_navigate", { domain: "assets" });

// List endpoint assets
await tools.call("blackpoint_assets_list", { 
  class: "endpoint",
  pageSize: 10 
});

// Get specific asset details
await tools.call("blackpoint_assets_get", { 
  id: "asset_12345" 
});

// Return to navigation
await tools.call("blackpoint_back");

API Coverage

✅ Implemented

Domain	Tools	Description
tenants	`list`, `get`	Customer tenant management
assets	`list`, `get`, `relationships`, `search`	Asset inventory and relationships
detections	`list`, `get`	Security detections and telemetry
vulnerabilities	`list`, `scans_list`, `darkweb_list`, `external_list`	Vuln management, dark web, external exposure

📋 Planned

Domain	Status	Notes
partners	SDK ready	Account management - ready to implement
alerts	Models only	API handlers not available in CompassOne wrapper
tickets	Models only	API handlers not available in CompassOne wrapper
cloud_security	SDK ready	M365/Google/Cisco onboarding - ready to implement
notifications	SDK ready	Contact groups and channels - ready to implement

Partner vs Tenant Scoping

CompassOne uses hierarchical scoping: Partner → Tenants → Assets

Partner tokens can access all associated tenants
Tenant-scoped tokens are limited to specific customers
Always specify tenantId parameters to avoid c

... View full README on GitHub

Loading README…

Scored, not listed

Why this score

Five weighted categories — click any category to see the underlying evidence.

Score breakdown

22/100across 5 weighted dimensions

How we score →

0255075100

−78

Security

Maintenance

Efficiency

Documentation

Compatibility

Categoriesclick a row to see evidence

Security

OSV.dev

No known CVEs.

No package registry to scan.

Help improve this page

This server is missing a description. Tools and install config are also missing.If you've used it, help the community.

Add information

Community

Reviews

Be the first to review

Have you used this server?

Share your experience — it helps other developers decide.

How easy was setup?Did it work reliably?How was the documentation?

Frequently Asked Questions

Is io.github.wyre-technology/blackpoint-mcp safe to use?: io.github.wyre-technology/blackpoint-mcp has no known CVEs as of the latest MCPpedia security scan. It does not require authentication, so any local process can connect — keep this in mind in shared environments.
How do I install io.github.wyre-technology/blackpoint-mcp?: io.github.wyre-technology/blackpoint-mcp can be installed by cloning its GitHub repository and following the setup instructions in the README.
What AI clients work with io.github.wyre-technology/blackpoint-mcp?: io.github.wyre-technology/blackpoint-mcp is compatible with claude-desktop, cursor, claude-code. It uses stdio transport.

Similar servers

Others in security

View all →

Evil Mcp Server93

An evil MCP server used for redteam testing

30 1

io.github.jasonxkensei/xproof92

Proof primitive for AI agents on MultiversX. Anchor file hashes on-chain as verifiable proofs.

1 1

Ida Pro Mcp92

AI-powered reverse engineering assistant that bridges IDA Pro with language models through MCP.

9.0k 3

Mcpki Server92

mcpki-server is the backend infrastructure for https://www.mcpki.org, enabling secure public key management and autonomous certificate handling for large language models (LLMs).

MCP Security Weekly

Get CVE alerts and security updates for io.github.wyre-technology/blackpoint-mcp and similar servers.

Community

Discussion

Start a conversation

Ask a question, share a tip, or report an issue.

Has anyone used this with Cursor?How do you handle auth?Any alternatives?