intercept-mcp

Give your AI the ability to read the web. Fetches URLs as clean markdown with 9 fallback strategies.

→ bighippoman/intercept-mcp · listed on glama

Is this your MCP?

Claim it to get a verified publisher badge, a free copy of our full audit findings, and direct contact for any high-priority issues we find.

Install from

Glama PulseMCP

M8ven verifies MCPs across every public registry — install directly from whichever one you prefer.

// key findings

🚨

Known vulnerabilities in dependencies: 1 critical, 3 high

Affects packages this MCP installs at runtime. Upgrade or remove the affected dependency.

🔐

You'll be asked for 4 credentials: ADMIN_SECRET, BRAVE_API_KEY, CF_API_TOKEN, GITHUB_TOKEN

These are read from process.env at runtime. Make sure you trust where they’ll be sent.

// required environment variables

This server reads these from process.env. You'll be asked to provide them before it can run.

🔐 secretADMIN_SECRET

configALL_PROXY

🔐 secretBRAVE_API_KEY— Uses Brave Search API if is set, then SearXNG if SEARXNG_URL is set, then DuckDuckGo as an unreliable last resort. freshness and page are ignored by the DuckDuckGo fallback.

configCF_ACCOUNT_ID— No Cloudflare account ID (required if CF_API_TOKEN is set)

🔐 secretCF_API_TOKEN— No Cloudflare API token with "Browser Rendering - Edit" permission

configFLARESOLVERR_URL— No URL of a [FlareSolverr](https://github.com/FlareSolverr/FlareSolverr) instance (e.g. http://localhost:8191) to solve Cloudflare/DDoS-Guard challenges

🔐 secretGITHUB_TOKEN— The GitHub API endpoints work unauthenticated (60 requests/hour). Set to raise the limit.

configHTTPS_PROXY— / HTTP_PROXY No Standard proxy passthrough — routes all outbound fetches (including stealth) through the proxy. Honors NO_PROXY.

configHTTP_PROXY— HTTPS_PROXY / No Standard proxy passthrough — routes all outbound fetches (including stealth) through the proxy. Honors NO_PROXY.

configINTERCEPT_AUTH— No JSON map of domain → headers/cookies, to fetch content you're logged in to (see [Per-domain authentication](#per-domain-authentication-intercept_auth))

configINTERCEPT_CACHE_READ_ONLY— Opt out entirely with INTERCEPT_SHARED_CACHE=false, or use read-only mode (consume but never contribute) with =true.

configINTERCEPT_PROXIES— No Comma/space-separated list of HTTP(S) proxies to rotate across, with automatic retry through the next proxy on a blocked response. Takes precedence over HTTPS_PROXY.

configINTERCEPT_SHARED_CACHE— Opt out entirely with =false, or use read-only mode (consume but never contribute) with INTERCEPT_CACHE_READ_ONLY=true.

configSEARXNG_URL— Uses Brave Search API if BRAVE_API_KEY is set, then SearXNG if is set, then DuckDuckGo as an unreliable last resort. freshness and page are ignored by the DuckDuckGo fallback.

configUSE_STEALTH_FETCH— No Set to true to enable stealth fetcher (see warning below)

configWEB_UNLOCKER_URL— No GET template (with a {url} placeholder and your API key) for a commercial web-unlocker like ScrapingBee/ScraperAPI/ZenRows — the paid last resort for the hardest sites

configall_proxy

confighttp_proxy

confighttps_proxy

// full audit trail

The full breakdown of what we checked, the deductions that landed, the network hosts, the dependency advisories, and concrete fix guidance is available to verified publishers.

// improvement guidance — verified publishers only

We have 6 concrete improvements we can share with the publisher of this MCP. Each comes with specific guidance to raise the trust score.

// embed badge in your README

[![M8ven Score](https://m8ven.ai/badge/mcp/bighippoman-intercept-mcp-0vphbh)](https://m8ven.ai/mcp/bighippoman-intercept-mcp-0vphbh)

commit: b2e82069b4ea91497181900e130f18515f266413

code hash: bc680417b057b69445655b82e2ff68080af4f391206f83134914fe8d54ba952a

verified: 6/15/2026, 1:47:42 PM

view raw JSON →