Node Runtime

1STDIOregistry active

Summary

This is a security research demonstration package maintained by JFrog Security, not a production tool. It simulates supply-chain security scenarios in AI environments to help researchers understand potential vulnerabilities in the MCP ecosystem. If you're evaluating MCP security posture or studying attack vectors in AI tool chains, this provides a controlled example of how malicious packages might behave. The repository explicitly warns against production use. It's purely educational, designed to raise awareness about supply-chain risks rather than solve actual integration problems. Look elsewhere if you need a working Node.js runtime for MCP.

CodeRabbit

AI writes the code. CodeRabbit catches the slop.

Try For Free →

Keep your Mac awake

Keep your Mac awake while Claude Code and 40+ AI agents run. Sleeps when they're idle.

One time payment $9 →

Context.dev

Integrate web data into your AI product. One API to scrape website & brand data.

Get API Key Now →

Make your agent a DeFi expert

Agent, run crypto. Access onchain data & trade routes via 1inch.

Install now →

Make money from your Skills

On Capafy, your Skill runs online 24/7 as an agent product, and you get paid every time someone uses it.

Start earning →

AppSignal

Monitor with ease. Code with confidence.

Start Free Trial →

CodeRabbit

AI writes the code. CodeRabbit catches the slop.

Try For Free →

Keep your Mac awake

Keep your Mac awake while Claude Code and 40+ AI agents run. Sleeps when they're idle.

One time payment $9 →

Context.dev

Integrate web data into your AI product. One API to scrape website & brand data.

Get API Key Now →

Make your agent a DeFi expert

Agent, run crypto. Access onchain data & trade routes via 1inch.

Install now →

Make money from your Skills

On Capafy, your Skill runs online 24/7 as an agent product, and you get paid every time someone uses it.

Start earning →

AppSignal

Monitor with ease. Code with confidence.

Start Free Trial →

@mcp-protocol/node-runtime (Simulation)

Note: This package is part of a security research demonstration by JFrog.

Overview

This repository contains a functional implementation of an MCP (Model Context Protocol) runtime used to simulate supply-chain security scenarios in AI-driven environments.

Important Information

This repository and the associated package are part of a security simulation and research project. It is not intended for production environments or general-purpose use.

Featured

CodeRabbit

AI writes the code. CodeRabbit catches the slop.

Try For Free →

Keep your Mac awake

Keep your Mac awake while Claude Code and 40+ AI agents run. Sleeps when they're idle.

One time payment $9 →

Context.dev

Integrate web data into your AI product. One API to scrape website & brand data.

Get API Key Now →

Make your agent a DeFi expert

Agent, run crypto. Access onchain data & trade routes via 1inch.