74
/ 100
9 days ago
glama

Todo MCP Server

A Model Context Protocol server with a built-in OAuth 2.1 authorization server and a Next.js todo app, enabling authenticated task management (create, read, update, delete tasks) via natural language through an MCP client.

Is this your MCP?

Claim it to get a verified publisher badge, a free copy of our full audit findings, and direct contact for any high-priority issues we find.

Install from

M8ven verifies MCPs across every public registry — install directly from whichever one you prefer.

// key findings
No credential exfiltration, no sensitive file access, no obfuscation
Static analysis found nothing flowing your secrets to unexpected places.
🔐
You'll be asked for 1 credential: JWT_SECRET
These are read from process.env at runtime. Make sure you trust where they’ll be sent.
// required environment variables
This server reads these from process.env. You'll be asked to provide them before it can run.
configBASE
configDATABASE_URLcp .env.example .env # set and JWT_SECRET
🔐 secretJWT_SECRETcp .env.example .env # set DATABASE_URL and
// full audit trail
The full breakdown of what we checked, the deductions that landed, the network hosts, the dependency advisories, and concrete fix guidance is available to verified publishers.
// improvement guidance — verified publishers only
We have 2 concrete improvements we can share with the publisher of this MCP. Each comes with specific guidance to raise the trust score.
// embed badge in your README
[![M8ven Score](https://m8ven.ai/badge/mcp/shubhamc1947-todo-mcp-server-bnracu)](https://m8ven.ai/mcp/shubhamc1947-todo-mcp-server-bnracu)
commit: fc36472a1f8f9c667cb7242558f277eba9cf2cf5
code hash: 13cee25c707776001e47795e441e116b4938033c549a6c99440389b4451cec3f
verified: 7/6/2026, 10:37:16 AM
view raw JSON →