core-lead/molecule-core
1
0
Fork 0
forked from molecule-ai/molecule-core
Code Pull Requests Activity
4bf13bbb81
molecule-core/docs/security
History
Molecule AI Documentation Specialist 86c81c4056 docs(security): SAFE-MCP internal advisory 2026-04-17 (distilled from PR #808 audit) 
Adds a concise action advisory for engineering leads summarising the 9 open
findings from the full SAFE-MCP audit, with immediate remediation steps for
NEW-003 (unpinned npm packages in .mcp.json — HIGH), a Phase 35 scoping
recommendation for plugin supply-chain hardening (VULN-003, VULN-004), and
medium-term GLOBAL memory scope controls (VULN-002, VULN-005).

Pairs with: monorepo PR #808, docs PR #18

Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
2026-04-17 23:39:00 +00:00
..
safe-mcp-advisory-2026-04-17.md docs(security): SAFE-MCP internal advisory 2026-04-17 (distilled from PR #808 audit) 2026-04-17 23:39:00 +00:00
safe-mcp-audit-2026-04-17.md docs(security): SAFE-MCP audit report 2026-04-17 (issue #747) 2026-04-17 18:54:08 +00:00
safe-mcp-audit.md docs(security): add SAFE-MCP audit for issue #747 2026-04-17 15:59:40 +00:00