37
grade F
2 days ago
npm
cyanheads/git-mcp-server
A secure and scalable Git MCP server enabling AI agents to perform comprehensive Git version control operations via STDIO and Streamable HTTP.
Install from
M8ven verifies MCPs across every public registry — install directly from whichever one you prefer.
// key findings
⚠️
Known vulnerabilities in dependencies: 2 high
Affects packages this MCP installs at runtime. Upgrade or remove the affected dependency.
✅
No credential exfiltration, no sensitive file access, no obfuscation
Static analysis found nothing flowing your secrets to unexpected places.
✅
Open source with a license and README
Anyone can audit the code, the license is declared, and the publisher documents what it does.
// required environment variables
This server reads these from
process.env. You'll be asked to provide them before it can run.config
FORCE_COLORconfig
GIT_PARAMSconfig
HUSKYconfig
IS_SERVERLESSconfig
MCP_DEBUG_TOOL_INPUTSconfig
MCP_DEBUG_VERBOSEconfig
MCP_TRANSPORT_TYPE— "": "stdio",config
NO_COLORconfig
TERM// full audit trail
The full breakdown of what we checked, the deductions that landed, the network hosts, the dependency advisories, and concrete fix guidance is available to verified publishers.
// improvement guidance — verified publishers only
We have 2 concrete improvements we can share with the publisher of this MCP. Each comes with specific guidance to raise the trust score.
// embed badge in your README
[](https://m8ven.ai/mcp/cyanheads-git-mcp-server-xygomm)commit: f23c3b68356c991d4beb48b349e6ede3bbcbdf90
code hash: 2eddd6676e2bd3c9bfe7f14e596eb1a951487dec1630a1ae184f1855296574c8
verified: 4/18/2026, 4:10:30 PM