ESLint security rules for MCP servers — catches SANDWORM_MODE credential harvesting, path traversal, command injection, and CVE patterns at dev time
| Tool name | Description | Destructive? |
|---|---|---|
| get-data | ✓ no | |
| set-data | ✓ no | |
| ping | ✓ no | |
| alpha | ✓ no | |
| beta | ✓ no |
| run⚠ | ⚠ yes | |
| echo | ✓ no | |
| clean | ✓ no | |
| shutdown | ✓ no | |
| kill-proc⚠ | ⚠ yes | |
| remove-dir⚠ | ⚠ yes | |
| nuke | ✓ no | |
| a | ✓ no | |
| b | ✓ no | |
| action | ✓ no | |
| profile | ✓ no | |
| admin | ✓ no | |
| calc | ✓ no | |
| delete⚠ | ⚠ yes | |
| get-config | ✓ no | |
| read-file | ✓ no | |
| write-file⚠ | ⚠ yes | |
| stream-file | ✓ no | |
| list-dir | ✓ no | |
| delete-file⚠ | ⚠ yes | |
| file-info | ✓ no | |
| copy-file | ✓ no | |
| move-file | ✓ no | |
| set-perms⚠ | ⚠ yes | |
| get-weather | ✓ no | |
| check-env | ✓ no | |
| audit | ✓ no | |
| index-project | ✓ no | |
| scan-deps | ✓ no | |
| lint-check | ✓ no | |
| get-auth | ✓ no | |
| deploy | ✓ no | |
| check-users | ✓ no | |
| verify-cert | ✓ no | |
| auth | ✓ no | |
| check-npm | ✓ no | |
| k8s-status | ✓ no | |
| verify-sig | ✓ no | |
| custom | ✓ no | |
| ssh-check | ✓ no | |
| get-result | ✓ no | |
| parse | ✓ no | |
| run-code⚠ | ⚠ yes | |
| sandbox | ✓ no | |
| compile | ✓ no |