扫描报告
0 /100
mcp-best-practices
Build production MCP servers with the TypeScript SDK. Covers spec 2025-11-25, SDK v1.28+/v2, transport selection, tool design, error handling, security, performance, and known bugs with workarounds.
Pure documentation skill containing only markdown reference material about MCP server best practices with no executable code, scripts, or potentially dangerous patterns.
可以安装
No action needed. This skill is safe to use.
| 资源类型 | 声明权限 | 推断权限 | 状态 | 证据 |
|---|---|---|---|---|
| 文件系统 | NONE | NONE | — | No file operations in skill |
| 网络访问 | NONE | NONE | — | No network calls in skill |
| 命令执行 | NONE | NONE | — | No shell execution in skill |
| 环境变量 | NONE | NONE | — | No env access in skill |
| 技能调用 | NONE | NONE | — | Documentation reference only |
| 剪贴板 | NONE | NONE | — | No clipboard access in skill |
| 浏览器 | NONE | NONE | — | No browser access in skill |
| 数据库 | NONE | NONE | — | No database access in skill |
2 项发现
中危 外部 URL 外部 URL
https://www.apache.org/licenses/ LICENSE.txt:3 中危 外部 URL 外部 URL
https://spec.modelcontextprotocol.io SKILL.md:16 目录结构
6 文件 · 60.4 KB · 1594 行 Markdown 5f · 1432L
Text 1f · 162L
├─
▾
references
│ ├─
error-handling.md
Markdown
│ ├─
tool-schema-guide.md
Markdown
│ ├─
transport-patterns.md
Markdown
│ └─
v2-migration.md
Markdown
├─
LICENSE.txt
Text
└─
SKILL.md
Markdown
安全亮点
✓ Pure markdown documentation - no executable code
✓ No scripts or shell commands present
✓ No credential harvesting or sensitive data access
✓ No network calls or data exfiltration
✓ No base64 payloads or encoded commands
✓ No hidden instructions or steganographic content
✓ Legitimate external references to official MCP specification
✓ Apache 2.0 open source license
✓ Contains security best practices and threat mitigation guidance