Home / AI/LLM / sandcheck

sandcheck

sandcheck/sandcheck
★ 0 stars TypeScript 🤖 AI/LLM Updated 6d ago
Check your npm packages against a curated list of known-compromised versions. CLI, MCP server, and JSON dataset, free, open, citation-driven.
View on GitHub →

Quick Install

Copy the config for your editor. Some servers may need additional setup — check the README.

Add to claude_desktop_config.json:

{
  "mcpServers": {
    "sandcheck": {
      "command": "npx",
      "args": [
        "-y",
        "sandcheck/sandcheck"
      ]
    }
  }
}

README Excerpt

> Check your npm packages against a curated list of known-compromised versions. Built for the AI-coding era. Sandcheck is a curated, citation-driven aggregator of compromised and malicious npm package data, paired with a small CLI and an MCP server so AI coding assistants can check packages *before* they ever land in your `package.json`.

Related AI/LLM Servers

gemini-cli ★ 97.7K
An open-source AI agent that brings the power of Gemini directly into your terminal.
🤖 AI/LLM TypeScript
context7 ★ 49.0K
Context7 Platform -- Up-to-date code documentation for LLMs and AI code editors
🤖 AI/LLM TypeScript
litellm ★ 43.7K
Python SDK, Proxy Server (AI Gateway) to call 100+ LLM APIs in OpenAI (or native) format, with cost tracking,...
🤖 AI/LLM Python
LocalAI ★ 43.6K
The free, Open Source alternative to OpenAI, Claude and others. Self-hosted and local-first. Drop-in replacement, ...
🤖 AI/LLM Go