krzysztofsurdy/sniffo

MCP server for Sniffo codebase knowledge graph

→ krzysztofsurdy/sniffo· npm: @sniffo/mcp-server· listed on npm

Install from

npm npm

M8ven verifies MCPs across every public registry — install directly from whichever one you prefer.

// key findings

⚠️

Known vulnerabilities in dependencies: 3 high

Affects packages this MCP installs at runtime. Upgrade or remove the affected dependency.

✅

No credential exfiltration, no sensitive file access, no obfuscation

Static analysis found nothing flowing your secrets to unexpected places.

// required environment variables

This server reads these from process.env. You'll be asked to provide them before it can run.

configPROJECT_DIR

// full audit trail

The full breakdown of what we checked, the deductions that landed, the network hosts, the dependency advisories, and concrete fix guidance is available to verified publishers.

// improvement guidance — verified publishers only

We have 7 concrete improvements we can share with the publisher of this MCP. Each comes with specific guidance to raise the trust score.

// embed badge in your README

[![M8ven Score](https://m8ven.ai/badge/mcp/npm-https-github-com-krzysztofsurdy-sniffo)](https://m8ven.ai/mcp/npm-https-github-com-krzysztofsurdy-sniffo)

commit: a833f7c28c11129b2708b4c46efeeb25cbfe07ee

code hash: dc130e134d851a3521b90b1661f58c6d533a9083fd90a0ff5d5145aa15c8369e

verified: 4/13/2026, 5:32:39 PM

view raw JSON →