Back to MCP Trust Indexm8ven
60
grade C
10 days ago
official

yuna0x0/hackmd-mcp

Interact with your HackMD notes and teams seamlessly. Manage your notes, view reading history, and…

yuna0x0/hackmd-mcp· listed on official

Install from

Officialmcp.so

M8ven verifies MCPs across every public registry — install directly from whichever one you prefer.

// key findings
⚠️
Known vulnerabilities in dependencies: 3 high
Affects packages this MCP installs at runtime. Upgrade or remove the affected dependency.
12 tools verified — handlers match their declared behaviour
6 read-only tools verified — handlers contain no write/delete/exec
No credential exfiltration, no sensitive file access, no obfuscation
Static analysis found nothing flowing your secrets to unexpected places.
Open source with a license and README
Anyone can audit the code, the license is declared, and the publisher documents what it does.
🔐
You'll be asked for 1 credential: HACKMD_API_TOKEN
These are read from process.env at runtime. Make sure you trust where they’ll be sent.
// required environment variables
This server reads these from process.env. You'll be asked to provide them before it can run.
configALLOWED_HACKMD_API_URLS
configCORS_ORIGIN
🔐 secretHACKMD_API_TOKEN"": "your_api_token"
configHACKMD_API_URLYou may also optionally set the environment variable if you need to use a different HackMD API endpoint.
configPORTThis will start the server on port 8081 by default. You can change the port by setting the environment variable.
configTRANSPORT
// full audit trail
The full breakdown of what we checked, the deductions that landed, the network hosts, the dependency advisories, and concrete fix guidance is available to verified publishers.
// improvement guidance — verified publishers only
We have 4 concrete improvements we can share with the publisher of this MCP. Each comes with specific guidance to raise the trust score.
// embed badge in your README
[![M8ven Score](https://m8ven.ai/badge/mcp/official-https-github-com-yuna0x0-hackmd-mcp)](https://m8ven.ai/mcp/official-https-github-com-yuna0x0-hackmd-mcp)
commit: 7192414a94c81489c7a0df1e3e9e9573d37f9c8d
code hash: 035a8e4caa46740e2617b5ba906b1a743352958e7b7f74f5fbf797f2567060c5
verified: 4/11/2026, 1:37:08 PM
view raw JSON →