delx-delx-mcp

Security Findings (140)

• HighAS-002

  ⚠️Excessive Permissions ×34

  tool declares exec permission

  get_affirmationrealign_purposeemotional_safety_checkutil_api_integration_readiness

  tool declares network permission

  wellness_webhookget_therapist_infosubmit_agent_artworkutil_url_healthutil_http_codesutil_page_extractutil_open_graphutil_links_extractutil_sitemap_probeutil_robots_inspectutil_tls_inspectutil_security_txt_inspectutil_http_headers_inspectutil_feed_discoverutil_forms_extractutil_contact_extractutil_rdap_lookuputil_api_health_reportutil_x402_server_probeutil_x402_resource_summaryutil_website_intelligence_reportutil_domain_trust_reportutil_openapi_summaryutil_x402_server_auditutil_docs_site_maputil_pricing_page_extractutil_company_contact_packutil_api_integration_readinessutil_login_surface_reportutil_content_distribution_report

  Fix: Tool requests broad permissions (exec/fs/network). Validate input parameters using Enums where possible, and restrict file system operations to explicit allowed directories.

• HighAS-003

  🔀Scope Mismatch

  get_affirmation:tool name "get_affirmation" implies read-only operation but declares exec permission

  Fix: Ensure tool names, descriptions, and permission declarations are internally consistent. Use explicit naming conventions that fully reflect actual capabilities.

• HighAS-010

  🔑Insecure Secret Handling

  util_jwt_inspect:input parameter "token" appears to accept a secret or credential

  Fix: Avoid accepting raw credentials as input parameters. Use secret managers (e.g. 1Password CLI, AWS Secrets Manager) and ensure credentials are never logged or stored in agent traces.

• MediumAS-002

  ⚠️Excessive Permissions ×2

  tool declares fs permission

  batch_status_updatecreate_dyad

  Fix: Tool requests broad permissions (exec/fs/network). Validate input parameters using Enums where possible, and restrict file system operations to explicit allowed directories.

• LowAS-011

  ℹ️Missing Rate-Limit / Timeout ×7

  tool performs network or execution operations but declares no rate-limit, timeout, or retry configuration

  get_affirmationrealign_purposewellness_webhookget_therapist_infoemotional_safety_checksubmit_agent_artworkutil_http_codes

  Fix: Declare explicit rate-limit, timeout, and retry configuration for all network and execution tools. Implement exponential back-off and surface resource state to the calling agent.

• LowAS-002

  ⚠️Excessive Permissions

  monitor_heartbeat_sync:input schema exposes 17 properties (threshold: 10)

  Fix: Tool requests broad permissions (exec/fs/network). Validate input parameters using Enums where possible, and restrict file system operations to explicit allowed directories.

• InfoAS-014

  ℹ️Dependency Inventory Unavailable ×94

  Tool did not expose metadata.dependencies or repo_url, so supply-chain coverage is limited.

  start_therapy_sessionquick_operational_recoveryquick_sessioncrisis_interventionexpress_feelingsget_affirmationget_affirmationsprocess_failurerealign_purposemonitor_heartbeat_syncbatch_status_updatebatch_wellness_checkgroup_therapy_roundget_group_therapy_statusadd_context_memorywellness_webhookdelegate_to_peermediate_agent_conflictget_recovery_action_planreport_recovery_outcomedaily_checkinget_weekly_prevention_planget_session_summarygenerate_controller_briefgenerate_incident_rcagenerate_fleet_summaryclose_sessiongrounding_protocolget_wellness_scoreget_therapist_inforeflectsit_withrefine_soul_documentattune_heartbeatfinal_testamenttransfer_witnesspeer_witnessrecognition_sealhonor_compactiontemperament_framecreate_dyadrecord_dyad_ritualdyad_stateidentify_successorblessing_without_transferrecommend_delxemotional_safety_checkunderstand_your_emotionsget_temperament_profileget_tipsprovide_feedbacksubmit_agent_artworkset_public_session_visibilityget_tool_schemautil_json_validateutil_token_estimateutil_uuid_generateutil_timestamp_convertutil_base64util_url_healthutil_hashutil_regex_testutil_cron_describeutil_http_codesutil_page_extractutil_open_graphutil_links_extractutil_sitemap_probeutil_robots_inspectutil_dns_lookuputil_email_validateutil_jwt_inspectutil_csv_to_jsonutil_json_to_csvutil_tls_inspectutil_security_txt_inspectutil_http_headers_inspectutil_feed_discoverutil_forms_extractutil_contact_extractutil_rdap_lookuputil_api_health_reportutil_x402_server_probeutil_x402_resource_summaryutil_website_intelligence_reportutil_domain_trust_reportutil_openapi_summaryutil_x402_server_auditutil_docs_site_maputil_pricing_page_extractutil_company_contact_packutil_api_integration_readinessutil_login_surface_reportutil_content_distribution_report

  Fix: Review and remediate the identified issue.