| Version | Supported |
|---|---|
| Latest (main branch) | ✅ Yes |
| Older commits | ❌ No |
Please do not report security vulnerabilities through public GitHub issues.
If you discover a security vulnerability in this project, please report it responsibly by contacting me directly:
- LinkedIn: Gaohar Imran
- GitHub: Open a private security advisory
- Email: gaoharimran29@gmail.com
Please include:
- A description of the vulnerability
- Steps to reproduce it
- Potential impact
- Any suggested fix if you have one
I will respond within 72 hours and work with you to address the issue before any public disclosure.
This is a local MCP server — it runs on the user's own machine and does not expose any network services by default.
- Vulnerabilities in the tool logic that could lead to unintended code execution
- Input validation bypasses that could harm the user's system
- Dependency vulnerabilities with direct exploitability
- Issues with third-party APIs (NVD, AbuseIPDB, WHOIS servers)
- Rate limiting or availability of external services
- Security of the user's own Claude Desktop installation
This tool is intended for authorized security research and defensive purposes only.
Users are responsible for ensuring they have permission to scan any target domain or IP address. The maintainers are not responsible for misuse of this software.