Skip to content

docs(mcp): document HTTP transport trust model #193

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Open
CharmingGroot wants to merge 1 commit into
base: main
Choose a base branch
from
+12 −0
Open

docs(mcp): document HTTP transport trust model #193

Changes from all commits
Commits
Show all changes
1 commit
Select commit
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
12 changes: 12 additions & 0 deletions README.md
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -254,6 +254,18 @@ Register it with Claude Code via:
claude mcp add skillspector -- skillspector mcp
```

> **Security — HTTP transport trust model**
>
> The HTTP transport ships **without authentication**. Any caller that can
> reach the port can invoke `scan_skill`. Over stdio or `127.0.0.1` this is
> the same trust boundary as the CLI. If you bind to a routable interface:
>
> - Sit the server behind an authenticating reverse proxy (e.g. nginx + mTLS)
> before exposing it externally.
> - Local paths and `file://` URLs are **automatically rejected** over HTTP to
> prevent unauthenticated callers from reading arbitrary host files. Only
> remote Git and `.zip` URLs are accepted.

## Vulnerability Patterns

SkillSpector detects **68 vulnerability patterns** across 17 categories:
Expand Down