A TypeScript-based template for rapidly developing MCP servers with modular tool architecture, built-in validation using Zod schemas, and comprehensive error handling.
Claim it to get a verified publisher badge, a free copy of our full audit findings, and direct contact for any high-priority issues we find.
Install from
M8ven verifies MCPs across every public registry — install directly from whichever one you prefer.
Disclosed vulnerabilities in this server's declared npm dependencies (via OSV). Whether each is reachable depends on the installed versions.
Happy DOM: VM Context Escape can lead to Remote Code Execution
When Vitest UI server is listening, arbitrary file can be read and executed
Anthropic's MCP TypeScript SDK has a ReDoS vulnerability
Model Context Protocol (MCP) TypeScript SDK does not enable DNS rebinding protection by default
Happy DOM ECMAScriptModuleCompiler: unsanitized export names are interpolated as executable code
[](https://m8ven.ai/mcp/yone-k-mcp-base-0horjc)