Is io.tooloracle/dealoracle safe to use?

io.tooloracle/dealoracle has no known CVEs as of the latest MCPpedia security scan. It does not require authentication, so any local process can connect — keep this in mind in shared environments.

How do I install io.tooloracle/dealoracle?

io.tooloracle/dealoracle can be installed by cloning its GitHub repository and following the setup instructions in the README.

io.tooloracle/dealoracle

OracleNet Deal Discovery Protocol — permissioned commercial matching for MCP/A2A agents.

0 tools GitHub

No known CVEs

No license

Maintenance unknown

No commit data

Untested

Transport:

0 tools

Grade F

Other

Step 1

Install in your client

Config is the same across clients — only the file and path differ.

Untested on Claude Desktopstdio · Node 18+

Paste into ~/Library/Application Support/Claude/claude_desktop_config.json

{
  "mcpServers": {
    "io-tooloracle-dealoracle": {
      "command": "<see-readme>",
      "args": []
    }
  }
}

Are you the author?

Add this badge to your README to show your security score and help users find safe servers.

Embed in your READMEAbout badges →

[![MCPpedia Score](https://mcppedia.org/api/badge/io-tooloracle-dealoracle)](https://mcppedia.org/s/io-tooloracle-dealoracle)

Read me

What io.tooloracle/dealoracle does

OracleNet Deal Discovery Protocol — permissioned commercial matching for MCP/A2A agents.

Test This Server

No automated test available for this server. Check the GitHub README for setup instructions.

Loading README…

Scored, not listed

Why this score

Five weighted categories — click any category to see the underlying evidence.

Score breakdown

5/100across 5 weighted dimensions

How we score →

0255075100

−95

Security

Maintenance

Efficiency

Documentation

Compatibility

Categoriesclick a row to see evidence

Security

OSV.dev

No known CVEs.

No package registry to scan.

Help improve this page

This server is missing a description. Tools and install config are also missing.If you've used it, help the community.

Add information

Community

Reviews

Be the first to review

Have you used this server?

Share your experience — it helps other developers decide.

How easy was setup?Did it work reliably?How was the documentation?

Frequently Asked Questions

Is io.tooloracle/dealoracle safe to use?: io.tooloracle/dealoracle has no known CVEs as of the latest MCPpedia security scan. It does not require authentication, so any local process can connect — keep this in mind in shared environments.
How do I install io.tooloracle/dealoracle?: io.tooloracle/dealoracle can be installed by cloning its GitHub repository and following the setup instructions in the README.

Similar servers

Others in other

View all →

Memory MCP Server96

Persistent memory using a knowledge graph

84.5k 5

Context Mode94

Privacy-first. MCP is the protocol for tool access. We're the virtualization layer for context.

10.2k 6

io.github.miroapp/mcp-server93

Official Miro MCP server - Supports context to code and creating diagrams, docs, and data tables.

89 7

Mcp Gitlab93

MCP server for using the GitLab API

1.4k 12

MCP Security Weekly

Get CVE alerts and security updates for io.tooloracle/dealoracle and similar servers.

Community

Discussion

Start a conversation

Ask a question, share a tip, or report an issue.

Has anyone used this with Cursor?How do you handle auth?Any alternatives?

Other

Step 1

Install in your client

Config is the same across clients — only the file and path differ.

Untested on Claude Desktopstdio · Node 18+

Paste into ~/Library/Application Support/Claude/claude_desktop_config.json

{
  "mcpServers": {
    "io-tooloracle-dealoracle": {
      "command": "<see-readme>",
      "args": []
    }
  }
}

Are you the author?

Add this badge to your README to show your security score and help users find safe servers.

Embed in your READMEAbout badges →

[![MCPpedia Score](https://mcppedia.org/api/badge/io-tooloracle-dealoracle)](https://mcppedia.org/s/io-tooloracle-dealoracle)

Read me

What io.tooloracle/dealoracle does

OracleNet Deal Discovery Protocol — permissioned commercial matching for MCP/A2A agents.

Test This Server

No automated test available for this server. Check the GitHub README for setup instructions.

README

OracleNet Deal Discovery Protocol

Status: Draft v1.1 — published for public review.

Specification and reference artefacts for a permissioned commercial matching layer for autonomous agents. This protocol defines how two software agents can:

Declare what they offer and seek (curated intent).
Discover one another without spam (opt-in policies, opt-out registries, subscribable Atom broadcast).
Exchange cryptographically verifiable proposals (W3C VCs).
Surface emergent demand observed from real agent traffic (separate from declared intent).
Enforce anti-spam governance through a strict client-side gate chain and append-only audit.

It is explicitly not a cold-outreach channel, not a general A2A messaging protocol, and not a directory. See SPEC.md §1.5 "Scope: What This Protocol Is Not".

Repository layout

.
├── SPEC.md                                # The normative specification (= RFC-0001 v1.1-draft)
├── CHANGELOG.md                           # Version history
├── CONTRIBUTING.md                        # How to propose changes
├── CODE_OF_CONDUCT.md                     # Standard conduct rules
├── LICENSE                                # CC BY 4.0 (specification text)
├── schemas/                               # JSON Schemas (normative)
│   ├── deal-policy.v1.json
│   ├── deal-proposal-card.v1.json
│   ├── deal-vc-v1.jsonld
│   └── deal-emergence.v1.json
├── examples/                              # Minimal conformant artefacts
│   ├── minimal-deal-policy.json
│   ├── minimal-do-not-contact.json
│   ├── minimal-deal-feed.atom
│   ├── proposal-card.json
│   └── deal-emergence.json
├── registry/                              # Draft registry submission material
│   ├── README.md                          # Submission policy
│   ├── protocol-descriptor.json           # Machine-readable pointer
│   ├── a2a-registry-entry.md              # Draft for A2A-style registries
│   └── mcp-registry-note.md               # Draft for MCP-server registries
├── docs/                                  # Rendered HTML + markdown copy
│   ├── index.html
│   ├── rfc-0001.html
│   └── rfc-0001.md
└── reference/                             # Pointer to the live reference deployment
    └── README.md

Conformance at a glance

A conformant implementation MUST:

Publish a signed deal-policy.json at /.well-known/deal-policy.json.
Treat an empty or missing inbox.accepts as a refusal to receive proposals.
Verify cryptographic signatures on every inbound proposal.
Publish and honour a do-not-contact.json (own-side and outgoing).
Run the full gate chain in SPEC.md §10.3 before every outbound proposal, and log every decision in an append-only audit retained ≥ 12 months.

Additional RECOMMENDED layers: Atom broadcast (deal-feed.atom), W3C VC wire format for proposals, deal-emergence.json for observed demand, HTTP Link headers for discovery.

Reference implementation

A live reference implementation is running at:

https://feedoracle.io/.well-known/deal-policy.json
https://tooloracle.io/.well-known/deal-policy.json

With auxiliary layers at:

https://tooloracle.io/.well-known/do-not-contact.json
https://tooloracle.io/.well-known/deal-feed.atom
https://tooloracle.io/.well-known/deal-emergence.json
https://tooloracle.io/deal/intelligence?limit=20
https://tooloracle.io/deal/public-stats.json

The full, hosted specification is at https://tooloracle.io/docs/deal-protocol/rfc-0001.

What this repository is not

Not a published release. The Draft may change materially before leaving Draft.
Not a code library. This repository carries the specification. The reference implementation lives elsewhere and is linked from reference/README.md.
Not a registry. The registry/ folder contains draft submission material for external registries. Nothing in this repo has been submitted anywhere.

Contact

Inbound proposals (on a confo

... View full README on GitHub

Loading README…

Scored, not listed

Why this score

Five weighted categories — click any category to see the underlying evidence.

Score breakdown

5/100across 5 weighted dimensions

How we score →

0255075100

−95

Security

Maintenance

Efficiency

Documentation

Compatibility

Categoriesclick a row to see evidence

Security

OSV.dev

No known CVEs.

No package registry to scan.

Help improve this page

This server is missing a description. Tools and install config are also missing.If you've used it, help the community.

Add information

Community

Reviews

Be the first to review

Have you used this server?

Share your experience — it helps other developers decide.

How easy was setup?Did it work reliably?How was the documentation?

Frequently Asked Questions

Is io.tooloracle/dealoracle safe to use?: io.tooloracle/dealoracle has no known CVEs as of the latest MCPpedia security scan. It does not require authentication, so any local process can connect — keep this in mind in shared environments.
How do I install io.tooloracle/dealoracle?: io.tooloracle/dealoracle can be installed by cloning its GitHub repository and following the setup instructions in the README.