ToolTrust
C25/100
Smithery

azmartone67-dchub-nexus

mcpsmithery

@Smithery

Data center intelligence for AI agents. 20,000+ facilities across 140+ countries. $185B+ in tracked M&A deals. 580+ pipeline projects. 24 tools for facility search, site analysis, grid data, fiber connectivity, and more. FREE TIER (no API key needed): All 24 tools, 5 results per query, 50 calls/day. Great for exploration. DEVELOPER ($49/mo): 100 results per query, 2,000 calls/day, full field access — deal values, power capacity, investment amounts, delivery dates. Get it at https://buy.stripe.com/7sY5kE8F4fs13ml0PEaZi0c PRO ($199/mo): 500 results, 10K calls/day, bulk export, historical data. ENTERPRISE ($699/mo): 10K results, 100K calls/day, dedicated support, custom integrations. Pass your API key via x-api-key header. Works with Claude Desktop, Cursor, Windsurf, Claude Code, and any MCP client. Endpoint: https://dchub.cloud/mcp

By Smithery | 42 findings | Scanned 4/19/2026 | tooltrust-scanner/v0.3.8

6 High6 Medium6 Low24 Info

Risk Summary

Needs Approval

Dep Visibility plus Excessive Permissions raises enough risk that this tool should not be auto-trusted.

Potential impact: This finding indicates the tool should be reviewed before it is trusted.

Recommended action: Keep this tool behind manual approval and avoid unattended runs until the risky capabilities are narrowed or removed.

Suggested policy: keep this tool behind manual approval, do not allow unattended runs, and re-scan after narrowing risky permissions.

Security Findings (42)

  • HighAS-002

    ⚠️Excessive Permissions ×6

    tool declares network permission

    search_facilitiesget_newsget_grid_dataget_fiber_intelget_dchub_recommendation

    tool declares exec permission

    analyze_site

    Fix: Tool requests broad permissions (exec/fs/network). Validate input parameters using Enums where possible, and restrict file system operations to explicit allowed directories.

  • MediumAS-002

    ⚠️Excessive Permissions ×6

    tool declares db permission

    search_facilitiesget_newsget_infrastructureget_agent_registryget_backup_statusget_grid_headroom

    Fix: Tool requests broad permissions (exec/fs/network). Validate input parameters using Enums where possible, and restrict file system operations to explicit allowed directories.

  • LowAS-011

    ℹ️Missing Rate-Limit / Timeout ×6

    tool performs network or execution operations but declares no rate-limit, timeout, or retry configuration

    search_facilitiesget_newsanalyze_siteget_grid_dataget_fiber_intelget_dchub_recommendation

    Fix: Declare explicit rate-limit, timeout, and retry configuration for all network and execution tools. Implement exponential back-off and surface resource state to the calling agent.

  • InfoAS-014

    ℹ️Dependency Inventory Unavailable ×24

    Tool did not expose metadata.dependencies or repo_url, so supply-chain coverage is limited.

    search_facilitiesget_facilitylist_transactionsget_market_intelget_newsanalyze_siteget_grid_dataget_pipelineget_infrastructureget_fiber_intelget_energy_pricesget_renewable_energyget_agent_registryget_intelligence_indexget_dchub_recommendationget_tax_incentivescompare_sitesget_water_riskget_backup_statusget_grid_intelligenceget_geothermal_potentialget_colocation_scoreget_grid_headroomget_microgrid_viability

    Fix: Review and remediate the identified issue.

Scan this tool yourself

Reproduce this audit locally, integrate into CI, or let your agent audit its own tools.

Install once, then scan any MCP server:

$ curl -sfL https://raw.githubusercontent.com/AgentSafe-AI/tooltrust-scanner/main/install.sh | bash
$ tooltrust-scanner scan --server "npx -y azmartone67-dchub-nexus"

Adjust the package name if your npm registry name differs from the tool ID. View source

Add badge to your README

Copy this Markdown to show your ToolTrust grade on GitHub.

[![ToolTrust Grade C](https://raw.githubusercontent.com/AgentSafe-AI/tooltrust-directory/main/docs/badges/grade-c.svg)](https://github.com/AgentSafe-AI/tooltrust-directory)