Compare known npm or PyPI packages side by side using live metadata to verify claims about release dates, maintenance activity, and license types. Use when you already have candidate packages and need evidence.
MIT
127,264 tools. Last updated 2026-05-05 12:42
"A microservice to search for versions of npm packages" matching MCP tools:
- Check all enrolled developer machines for installed versions of a malicious npm package to assess exposure on independent laptops, complementing CI checks. Optionally filter by compromised versions.
- Retrieve full details of a security threat incident, including compromised package names, versions, and C2 domains/IPs. After listing incidents, use this to extract concrete IOCs and determine which exposure checks to run based on the ecosystem (npm or pypi).
- Retrieve npm packages for MDMA with details on purpose, installation, usage examples, and categories to integrate interactive Markdown features correctly.
- Fetch detailed vulnerability information by CVE ID, including affected packages and versions, using the JFrog MCP Server API for comprehensive security analysis.Apache 2.0
- Search for NPM or Python packages by name to get repository URLs, check deprecation status, and compare alternatives. Returns direct links to source code for further exploration.TypeScriptMIT
Matching MCP Servers
- AlicenseCqualityCmaintenanceMCP server for searching npm packagesLast updated19715MIT
- AlicenseAqualityBmaintenanceA Model Context Protocol server that enables AI-powered analysis of NPM packages through multiple tools for security vulnerability scanning, dependency analysis, package comparison, and quality assessment.Last updated1929017TypeScriptMIT
Matching MCP Connectors
npm MCP — wraps the npm Registry API (free, no auth)
npm package trends and weekly downloads over time. Free key at trendsmcp.ai
- Retrieve npm package documentation directly from registry README files to access installation instructions, usage examples, and API references for JavaScript/Node.js packages.MIT
- List all published versions of an npm package, including dist-tags, deprecation status, and total version count. Returns the 50 most recent versions for dependency auditing and upgrade planning.
- Search Unity packages in the registry and locally. Retrieve versions and installation status to evaluate packages before installing. Uses prioritized matching for accurate results. Supports offline and live registry searches.Apache 2.0
- Generate safe upgrade commands for vulnerable packages to review before applying fixes. Returns npm install and pip install commands grouped by ecosystem.MIT
- Analyze package upgrades between two versions to identify breaking changes, security fixes, and migration requirements for npm and PyPI packages.
- Check current versions for multiple packages in parallel to update dependencies efficiently, handling up to 100 packages with error isolation for reliable results.MIT
- Search over 2.1 million npm packages by keyword. Returns ranked results with quality, popularity, and maintenance scores, download counts, dependents, license, and publisher. Find libraries for any task.
- Scans npm dependencies for known vulnerabilities using the GitHub Advisory Database. Identifies CVEs, severity levels, and patched versions to help secure your project.
- Scan project dependencies for known vulnerabilities using npm audit and the GitHub Advisory Database. Returns CVEs, severity levels, and patched versions to identify security risks.
- Check for outdated npm packages in a project's package.json. Analyzes dependencies to show available newer versions, with configurable options for dev dependencies and output format (detailed, summary, raw). Requires npm installed.MIT
- Retrieve all available versions of NPM packages to ensure compatibility and streamline package management decisions. Integrates with AI-driven insights for enhanced analysis.
- Retrieve all available versions of specified NPM packages to analyze compatibility, dependencies, and version history.TypeScriptMIT
- Analyze NuGet package dependencies in .NET projects to identify referenced packages, versions, and asset settings for dependency audits and version management.MIT
- Access package metadata from Google deps.dev across six ecosystems—npm, PyPI, Go, Maven, Cargo, NuGet—including all versions and default version, providing a unified cross-ecosystem view beyond individual registry APIs.