69
/ 100
10 days ago
mcp_so
Upstash MCP Server✓ Official
Upstash Model Context Server
Is this your MCP?
Claim it to get a verified publisher badge, a free copy of our full audit findings, and direct contact for any high-priority issues we find.
Install from
M8ven verifies MCPs across every public registry — install directly from whichever one you prefer.
// key findings
⚠️
Known vulnerabilities in dependencies: 3 high
Affects packages this MCP installs at runtime. Upgrade or remove the affected dependency.
✅
No credential exfiltration, no sensitive file access, no obfuscation
Static analysis found nothing flowing your secrets to unexpected places.
✅
Open source with a license and README
Anyone can audit the code, the license is declared, and the publisher documents what it does.
🔐
You'll be asked for 2 credentials: UPSTASH_API_KEY, UPSTASH_BOX_API_KEY
These are read from process.env at runtime. Make sure you trust where they’ll be sent.
// required environment variables
This server reads these from
process.env. You'll be asked to provide them before it can run.🔐 secret
UPSTASH_API_KEY— UPSTASH_API_KEY>config
UPSTASH_API_KEY_READONLY🔐 secret
UPSTASH_BOX_API_KEY— "": "YOUR_BOX_API_KEY"config
UPSTASH_EMAIL— UPSTASH_EMAIL>// full audit trail
The full breakdown of what we checked, the deductions that landed, the network hosts, the dependency advisories, and concrete fix guidance is available to verified publishers.
// improvement guidance — verified publishers only
We have 1 concrete improvement we can share with the publisher of this MCP. Each comes with specific guidance to raise the trust score.
// embed badge in your README
[](https://m8ven.ai/mcp/upstash-mcp-server-upstash-1wulh9)commit: 1c3beba163db17c83b108207bbe70dba2dd9603a
code hash: 1ef53b13593938253f2dd097502debc0c58015e62bfa461aef85f7691bc8d6dd
verified: 6/16/2026, 12:24:57 PM