critical

@vapi-ai/mcp-server

v0.0.9

Vapi MCP Server

npmsriram_vapiFirst seen Feb 22, 2026

Total

Critical

High

Medium

Findings

unknown

criticalDE-002Data ExfiltrationHigh ConfidenceLine 0

Environment file access

Detected by automated pattern matching (rule DE-002) with medium confidence. May be a false positive.

    18:             args: ['tsx', serverScriptPath],
    19:             env: {
>>> 20:                 ...process.env,
    21:                 VAPI_TOKEN: process.env.VAPI_TOKEN || 'test-token',
    22:             },

Report false positive

criticalDE-002Data ExfiltrationHigh ConfidenceLine 0

Environment file access

Detected by automated pattern matching (rule DE-002) with medium confidence. May be a false positive.

    19:             env: {
    20:                 ...process.env,
>>> 21:                 VAPI_TOKEN: process.env.VAPI_TOKEN || 'test-token',
    22:             },
    23:         });

Report false positive

criticalDE-002Data ExfiltrationHigh ConfidenceLine 0

Environment file access

Detected by automated pattern matching (rule DE-002) with medium confidence. May be a false positive.

    5:     createVapiClient: jest.fn(() => createMockVapiClient()),
    6: }));
>>> 7: process.env.VAPI_TOKEN = 'test-mock-token';
    8: describe('MCP Server Unit Test (with mocks)', () => {
    9:     let mcpServer;

Report false positive

criticalDE-002Data ExfiltrationHigh ConfidenceLine 0

Environment file access

Detected by automated pattern matching (rule DE-002) with medium confidence. May be a false positive.

    7: dotenv.config();
    8: function createMcpServer() {
>>> 9:     const vapiToken = process.env.VAPI_TOKEN;
    10:     if (!vapiToken) {
    11:         throw new Error('VAPI_TOKEN environment variable is required');

Report false positive

highDO-BASunknownMedium ConfidenceLine 0

Decoded base64 content: J�b�)bz{S��즊�