Skip to content
Tools / mcp-context-forge / Security

Security Deep Dive

mcp-context-forge

Security posture and CVE patch evidence from tracked releases.

Back to Tool

1 actively-exploited dependency CVE affects v1.0.2.

KEV-listed CVEs are confirmed exploited in the wild — patch urgently.

Versions by Severity

CVEs are attributed to tracked releases published before the patch release.

7 versions tracked
Version Published C H M L KEV Notes
v1.0.2 2026-05-26
Latest
v1.0.1 2026-05-13
Patches CVE-2023-4863
v1.0.0 2026-05-01 1 KEV 1
v1.0.0-RC-3 2026-04-14 1 KEV 1
v1.0.0-RC2 2026-03-09 1 KEV 1
v1.0.0-RC1 2026-02-18 1 KEV 1
v1.0.0-BETA-2 2026-01-24 1 KEV 1
— Signed — SLSA — SBOM ✓ Security policy Monthly cadence · 17d median Active maintainer

Trust Signals — 3 of 9 Present

Evidence already collected from releases and repository metadata.

3/9 Present
Signed releases Unknown
Latest release artifact signature Latest release
SLSA provenance Unknown
Attestation predicate level Latest release
SBOM published Unknown
GitHub SBOM API Latest release
SECURITY.md Present
GitHub repository metadata Repository policy
Checked: 23d ago
Release cadence: monthly Present
17d median over recent releases Release history
Latest release: 8d ago
Maintainer active Present
Recent commit activity Repository
Last commit: 1d ago
Checksums (SHA256SUMS) Not active yet
SHA256SUMS or equivalent Release asset
Latest release: 8d ago
GitHub Actions attestation Not active yet
actions/attest-build-provenance Workflow file
Latest release: 8d ago
Signing assets Not active yet
.sig, .crt, cosign.pub, or similar Release asset
Latest release: 8d ago
0.5/10 Security Score
Dependency Exposure 241 transitive dependency CVEs found in the latest SBOM. 24 critical.

Security Score

A composite score aggregating Scorecard performance, CVE patch history, OpenSSF badge tier, and dependency vulnerability exposure. Score ≥ 7.0 is healthy; < 4.0 warrants attention.

epss

0.00 / 0.5

Max EPSS 0.933

freshness

1.00 / 1.0

1d stale

scorecard

2.00 / 4.0

⚠ Estimated — not yet collected

cve health

0.00 / 2.5

No open CVEs

patch speed

0.50 / 0.5

⚠ Estimated — no CVE patch history

kev exposure

-1.50 / 1.5

KEV exposure detected

supply chain risk

-1.50 / 10.0

Risk 100.0/100

Score breakdown

schema v2

Vulnerability posture

vulnerability posture

0.0

25%

direct cves: clear cve scan: available

Release responsiveness

release responsiveness

10.0

5%

patch speed days: no_history

Dependency exposure

dependency exposure

0.0

10%

supply chain risk: 100.0 transitive cves: 24c/106h

Provenance trust

provenance trust

5.0

40%

scorecard score: estimated openssf badge: none

Maintainer health

maintainer health

10.0

10%

activity freshness: 1d

Operational risk

operational risk

0.0

10%

kev exposure: detected epss max: 0.933
How is this calculated?

The six dimensions group the legacy score signals into weighted categories: direct vulnerability status, patch responsiveness, dependency exposure, provenance checks, maintainer activity, and exploitability risk. The flat component values above remain available for compatibility.

Supply Chain Risk

Risk 100.0/100
24 Transitive critical CVEs
1 KEV-transitive CVEs
71% Dependency freshness

OpenSSF Badge

OpenSSF none

Badge indicates adherence to open-source best practices.

CVE Patch History

Tracks CVEs that were addressed in tagged releases. Shorter gap between disclosure and patch = faster response. EPSS = predicted probability of exploitation in next 30 days (FIRST.org); colored at ≥90%ile and ≥50%ile.

CVEs Patched by Year

Critical High Medium Low
2026
1
CVE Severity EPSS Disclosed Fixed in Days to fix vs Ecosystem Median KEV
CVE-2023-4863 HIGH 99%ile v1.0.1 KEV

KEV = CISA Known Exploited Vulnerabilities catalog — actively exploited in the wild.

Dependency Vulnerabilities

1912 dependencies scanned View full dependency list →

Scanning the SBOM (Software Bill of Materials) of the latest release for known vulnerabilities in transitive dependencies.

Critical

24

High

106

Medium

82

Low

16

Unknown

13

1 dependency vulnerabilities are in KEV.

CISA confirmed these vulnerabilities are actively exploited. Treat as critical priority.

Still affecting latest (9) All (241)
Critical 24 High 106 Medium 82 Low 16 Unknown 13
CVE Severity KEV Dependency Affected version Cleared in release
CVE-2012-0805 critical sqlalchemy v1.0.1
CVE-2014-3007 critical pillow v1.0.1
CVE-2016-4009 critical pillow v1.0.1
CVE-2017-18342 critical pyyaml v1.0.1
CVE-2019-20477 critical pyyaml v1.0.1
CVE-2019-6446 critical numpy v1.0.1
CVE-2019-7164 critical sqlalchemy v1.0.1
CVE-2019-7548 critical sqlalchemy v1.0.1
CVE-2020-11538 critical pillow v1.0.1
CVE-2020-13092 critical scikit-learn v1.0.1
CVE-2020-14343 critical pyyaml v1.0.1
CVE-2020-1747 critical pyyaml v1.0.1
CVE-2020-5310 critical pillow v1.0.1
CVE-2020-5311 critical pillow v1.0.1
CVE-2020-5312 critical pillow v1.0.1
CVE-2021-25289 critical pillow v1.0.1
CVE-2021-34552 critical pillow v1.0.1
CVE-2021-41945 critical httpx v1.0.1
CVE-2022-22817 critical pillow v1.0.1
CVE-2022-24439 critical gitpython v1.0.1
CVE-2023-40267 critical gitpython v1.0.1
CVE-2023-47248 critical pyarrow v1.0.1
CVE-2023-50447 critical pillow v1.0.1
CVE-2026-32871 critical fastmcp v1.0.1
CVE-2011-1156 high feedparser v1.0.1
CVE-2012-2921 high feedparser v1.0.1
CVE-2013-4251 high scipy v1.0.1
CVE-2014-1402 high jinja2 v1.0.1
CVE-2014-1858 high numpy v1.0.1
CVE-2014-1859 high numpy v1.0.1
CVE-2014-1932 high pillow v1.0.1
CVE-2014-3589 high pillow v1.0.1
CVE-2014-3598 high pillow v1.0.1
CVE-2014-9601 high pillow v1.0.1
CVE-2016-0775 high pillow v1.0.1
CVE-2016-10745 high jinja2 v1.0.1
CVE-2016-2533 high pillow v1.0.1
CVE-2016-3076 high pillow v1.0.1
CVE-2016-5851 high python-docx v1.0.1
CVE-2016-9190 high pillow v1.0.1
CVE-2017-12852 high numpy v1.0.1
CVE-2018-18074 high requests v1.0.1
CVE-2019-10906 high jinja2 v1.0.1
CVE-2019-12408 high pyarrow v1.0.1
CVE-2019-12410 high pyarrow v1.0.1
CVE-2019-16865 high pillow v1.0.1
CVE-2019-18874 high psutil v1.0.1
CVE-2019-19911 high pillow v1.0.1
CVE-2020-10177 high pillow v1.0.1
CVE-2020-10378 high pillow v1.0.1
CVE-2020-10379 high pillow v1.0.1
CVE-2020-10994 high pillow v1.0.1
CVE-2020-28975 high scikit-learn v1.0.1
CVE-2020-35653 high pillow v1.0.1
CVE-2020-35654 high pillow v1.0.1
CVE-2020-5313 high pillow v1.0.1
CVE-2020-7694 high uvicorn v1.0.1
CVE-2020-7695 high uvicorn v1.0.1
CVE-2021-21236 high cairosvg v1.0.1
CVE-2021-23437 high pillow v1.0.1
CVE-2021-25287 high pillow v1.0.1
CVE-2021-25288 high pillow v1.0.1
CVE-2021-25290 high pillow v1.0.1
CVE-2021-25291 high pillow v1.0.1
CVE-2021-25293 high pillow v1.0.1
CVE-2021-27921 high pillow v1.0.1
CVE-2021-27922 high pillow v1.0.1
CVE-2021-27923 high pillow v1.0.1
CVE-2021-28675 high pillow v1.0.1
CVE-2021-28676 high pillow v1.0.1
CVE-2021-28677 high pillow v1.0.1
CVE-2021-32677 high fastapi v1.0.1
CVE-2021-40978 high mkdocs v1.0.1
CVE-2021-41495 high numpy v1.0.1
CVE-2021-42771 high babel v1.0.1
CVE-2022-24303 high pillow v1.0.1
CVE-2022-30595 high pillow v1.0.1
CVE-2022-40898 high wheel v1.0.1
CVE-2022-45198 high pillow v1.0.1
CVE-2022-45199 high pillow v1.0.1
CVE-2023-27586 high cairosvg v1.0.1
CVE-2023-28859 high redis v1.0.1
CVE-2023-32309 high pymdown-extensions v1.0.1
CVE-2023-37271 high restrictedpython v1.0.1
CVE-2023-40590 high gitpython v1.0.1
CVE-2023-41039 high restrictedpython v1.0.1
CVE-2023-44271 high pillow v1.0.1
CVE-2023-45139 high fonttools v1.0.1
CVE-2023-4863 high KEV pillow v1.0.2
CVE-2024-22190 high gitpython v1.0.1
CVE-2024-23334 high aiohttp v1.0.1
CVE-2024-24762 high fastapi v1.0.1
CVE-2024-24762 high python-multipart v1.0.1
CVE-2024-27454 high orjson v1.0.1
CVE-2024-28184 high weasyprint v1.0.1
CVE-2024-28219 high pillow v1.0.1
CVE-2024-30251 high aiohttp v1.0.1
CVE-2024-47532 high restrictedpython v1.0.1
CVE-2024-53981 high python-multipart v1.0.1
CVE-2025-22153 high restrictedpython v1.0.1
CVE-2025-48379 high pillow v1.0.1
CVE-2025-53365 high mcp v1.0.1
CVE-2025-53366 high mcp v1.0.1
CVE-2025-66416 high mcp v1.0.1
CVE-2025-67221 high orjson v1.0.1
CVE-2025-68616 high weasyprint v1.0.1
CVE-2025-69196 high fastmcp v1.0.1
CVE-2025-69223 high aiohttp v1.0.1
CVE-2026-24049 high wheel v1.0.1
CVE-2026-24486 high python-multipart v1.0.1
CVE-2026-25990 high pillow v1.0.1
CVE-2026-27124 high fastmcp v1.0.1
CVE-2026-31899 high cairosvg v1.0.1
CVE-2026-32274 high black v1.0.1
CVE-2026-40192 high pillow v1.0.1
CVE-2026-41066 high lxml v1.0.1
CVE-2026-42215 high gitpython v1.0.1
CVE-2026-42284 high gitpython v1.0.1
CVE-2026-42311 high pillow v1.0.1
CVE-2026-42327 high openssl 0.10.78 v1.0.1
CVE-2026-42544 high granian v1.0.1
CVE-2026-42559 high rmcp 1.2.0 v1.0.1
CVE-2026-42561 high python-multipart 0.0.26 v1.0.1
CVE-2026-44243 high gitpython v1.0.1
CVE-2026-44244 high gitpython v1.0.1
CVE-2026-44307 high mako 1.3.11 v1.0.1
CVE-2026-6321 high fast-uri 3.1.0 v1.0.1
CVE-2026-6322 high fast-uri 3.1.0 v1.0.1
GHSA-c2jp-c369-7pvx high fastmcp v1.0.1
GHSA-rcfx-77hg-w2wv high fastmcp v1.0.1
CVE-2009-5065 medium feedparser v1.0.1
CVE-2011-1157 medium feedparser v1.0.1
CVE-2011-1158 medium feedparser v1.0.1
CVE-2014-0012 medium jinja2 v1.0.1
CVE-2014-1829 medium requests v1.0.1
CVE-2014-1830 medium requests v1.0.1
CVE-2014-1933 medium pillow v1.0.1
CVE-2014-3146 medium lxml v1.0.1
CVE-2015-2296 medium requests v1.0.1
CVE-2016-0740 medium pillow v1.0.1
CVE-2016-9189 medium pillow v1.0.1
CVE-2016-9909 medium html5lib v1.0.1
CVE-2016-9910 medium html5lib v1.0.1
CVE-2017-5992 medium openpyxl v1.0.1
CVE-2018-19787 medium lxml v1.0.1
CVE-2020-27783 medium lxml v1.0.1
CVE-2020-28364 medium locust v1.0.1
CVE-2020-28493 medium jinja2 v1.0.1
CVE-2020-35655 medium pillow v1.0.1
CVE-2021-25292 medium pillow v1.0.1
CVE-2021-28678 medium pillow v1.0.1
CVE-2021-28957 medium lxml v1.0.1
CVE-2021-29510 medium pydantic v1.0.1
CVE-2021-33430 medium numpy v1.0.1
CVE-2021-34141 medium numpy v1.0.1
CVE-2021-41496 medium numpy v1.0.1
CVE-2021-43818 medium lxml v1.0.1
CVE-2022-22815 medium pillow v1.0.1
CVE-2022-22816 medium pillow v1.0.1
CVE-2022-2309 medium lxml v1.0.1
CVE-2023-28858 medium redis v1.0.1
CVE-2023-32681 medium requests v1.0.1
CVE-2023-37276 medium aiohttp v1.0.1
CVE-2023-41040 medium gitpython v1.0.1
CVE-2023-47627 medium aiohttp v1.0.1
CVE-2023-49081 medium aiohttp v1.0.1
CVE-2023-49082 medium aiohttp v1.0.1
CVE-2024-21503 medium black v1.0.1
CVE-2024-22195 medium jinja2 v1.0.1
CVE-2024-23829 medium aiohttp v1.0.1
CVE-2024-27306 medium aiohttp v1.0.1
CVE-2024-34064 medium jinja2 v1.0.1
CVE-2024-35195 medium requests v1.0.1
CVE-2024-3772 medium pydantic v1.0.1
CVE-2024-42367 medium aiohttp v1.0.1
CVE-2024-47081 medium requests v1.0.1
CVE-2024-5206 medium scikit-learn v1.0.1
CVE-2024-52303 medium aiohttp v1.0.1
CVE-2024-52304 medium aiohttp v1.0.1
CVE-2024-56201 medium jinja2 v1.0.1
CVE-2024-56326 medium jinja2 v1.0.1
CVE-2025-27516 medium jinja2 v1.0.1
CVE-2025-59940 medium mkdocs-include-markdown-plugin v1.0.1
CVE-2025-62800 medium fastmcp v1.0.1
CVE-2025-62801 medium fastmcp v1.0.1
CVE-2025-64340 medium fastmcp v1.0.1
CVE-2025-66034 medium fonttools v1.0.1
CVE-2025-69227 medium aiohttp v1.0.1
CVE-2025-69228 medium aiohttp v1.0.1
CVE-2025-69229 medium aiohttp v1.0.1
CVE-2025-69534 medium markdown v1.0.1
CVE-2025-69872 medium diskcache v1.0.1
CVE-2025-71176 medium pytest v1.0.1
CVE-2026-22815 medium aiohttp v1.0.1
CVE-2026-25645 medium requests v1.0.1
CVE-2026-28684 medium python-dotenv v1.0.1
CVE-2026-3029 medium pymupdf v1.0.1
CVE-2026-3219 medium pip 26.0.1 v1.0.1
CVE-2026-34450 medium anthropic v1.0.1
CVE-2026-34452 medium anthropic v1.0.1
CVE-2026-34515 medium aiohttp v1.0.1
CVE-2026-34516 medium aiohttp v1.0.1
CVE-2026-34525 medium aiohttp v1.0.1
CVE-2026-40347 medium python-multipart v1.0.1
CVE-2026-42308 medium pillow v1.0.1
CVE-2026-42309 medium pillow v1.0.1
CVE-2026-42310 medium pillow v1.0.1
CVE-2026-42545 medium granian v1.0.1
CVE-2026-44662 medium openssl 0.10.78 v1.0.1
CVE-2026-6357 medium pip 26.0.1 v1.0.1
GHSA-jgpv-4h4c-xhw3 medium pillow v1.0.1
GHSA-pjjw-qhg8-p2p9 medium aiohttp v1.0.1
CVE-2021-21330 low aiohttp v1.0.1
CVE-2023-47641 low aiohttp v1.0.1
CVE-2025-46656 low markdownify v1.0.1
CVE-2025-53643 low aiohttp v1.0.1
CVE-2025-68142 low pymdown-extensions v1.0.1
CVE-2025-69224 low aiohttp v1.0.1
CVE-2025-69225 low aiohttp v1.0.1
CVE-2025-69226 low aiohttp v1.0.1
CVE-2025-69230 low aiohttp v1.0.1
CVE-2026-34513 low aiohttp v1.0.1
CVE-2026-34514 low aiohttp v1.0.1
CVE-2026-34517 low aiohttp v1.0.1
CVE-2026-34518 low aiohttp v1.0.1
CVE-2026-34519 low aiohttp v1.0.1
CVE-2026-34520 low aiohttp v1.0.1
GHSA-4fx9-vc88-q2xc low pillow v1.0.1
CVE-2020-13091 unknown pandas v1.0.1
CVE-2023-25399 unknown scipy v1.0.1
CVE-2023-29824 unknown scipy v1.0.1
CVE-2024-52338 unknown pyarrow v1.0.1
OSV-2022-1074 unknown pillow v1.0.1
OSV-2022-715 unknown pillow v1.0.1
PYSEC-2023-175 unknown pillow v1.0.1
RUSTSEC-2025-0075 unknown unic-char-range 0.9.0 v1.0.1
RUSTSEC-2025-0080 unknown unic-common 0.9.0 v1.0.1
RUSTSEC-2025-0081 unknown unic-char-property 0.9.0 v1.0.1
RUSTSEC-2025-0090 unknown unic-emoji-char 0.9.0 v1.0.1
RUSTSEC-2025-0098 unknown unic-ucd-version 0.9.0 v1.0.1
RUSTSEC-2025-0100 unknown unic-ucd-ident 0.9.0 v1.0.1

Showing 241 of 241

Beta — feedback welcome: [email protected]