Enterprise MCP server with memory management, API key control, and system health tools, ready for Claude integration with Supabase.
Claim it to get a verified publisher badge, a free copy of our full audit findings, and direct contact for any high-priority issues we find.
Install from
M8ven verifies MCPs across every public registry — install directly from whichever one you prefer.
Disclosed vulnerabilities in this server's declared npm dependencies (via OSV). Whether each is reachable depends on the installed versions.
@modelcontextprotocol/sdk has cross-client data leak via shared server/transport instance reuse
Anthropic's MCP TypeScript SDK has a ReDoS vulnerability
axios Vulnerable to Full Man-in-the-Middle via Prototype Pollution Gadget in `config.proxy`
axios Vulnerable to Credential Theft and Response Hijacking via Prototype Pollution Gadget in Config Merge
Axios is Vulnerable to Denial of Service via __proto__ Key in mergeConfig
process.env. You'll be asked to provide them before it can run.ALLOWED_ORIGINSAPI_KEY_ENCRYPTION_KEYCORS_ORIGINCORS_ORIGINSEMERGENCY_BOOTSTRAP_TOKENENABLE_HTTPENABLE_SSEENABLE_STDIOENABLE_WEBSOCKETFORCE_COLORGATEWAY_HOSTGATEWAY_PORTHOSTJWT_SECRETLANONASIS_MAAS_URLLANONASIS_TOKENLANONASIS_VENDOR_KEYLOG_LEVELMCP_HOSTMCP_MAX_CONNECTIONSMCP_RATE_LIMITMCP_RATE_LIMIT_WINDOWMCP_SERVER_PORTMCP_SSE_PORTMCP_VERBOSEMCP_WEBSOCKET_URLMCP_WS_PORTMEMORY_API_URLOAUTH_CLIENT_IDOAUTH_CLIENT_SECRETOAUTH_REDIRECT_URIOAUTH_SCOPEONASIS_CORE_URLONASIS_SUPABASE_SERVICE_KEY— your_service_key_hereONASIS_SUPABASE_URL— "": "https://api.lanonasis.com",OPENAI_API_KEYPORTREDIS_URLSUPABASE_SERVICE_KEYSUPABASE_SSL_CERT_PATH— /opt/certs/prod-ca-2021.crtSUPABASE_URLTOOL_DISCOVERY_TIMEOUT_MSTUNNEL_PORTVPS_HOSTVPS_PORT[](https://m8ven.ai/mcp/lanonasis-onasis-mcp-server-1onriq)