Is langgraph-mcp-agents safe to install?

Security audit of teddynote-lab/langgraph-mcp-agents · MCP Server by teddynote-lab · ★ 690

⚠ CAUTION Basic audit · rule-based scan · SlowMist 11 red-flag categories

Use with caution — langgraph-mcp-agents triggered warning flags in AgentSkillsHub's security scan. It may be fine for personal trials, but review its credential handling and maintainer before brand or production use.

What it is: LangGraph-powered ReAct agent with Model Context Protocol (MCP) integration. A Streamlit web interface for dynamically configuring, deploying, and interacting with AI agents capable of accessing various data sources and APIs through MCP tools.

Red flags detected (1)

Audit summary

Security grade⚠ CAUTION
Quality score74/100
GitHub stars690
LanguagePython
Last updated

Check before you install

Run a live scan → Full details & install 5-dimension deep audit

This is AgentSkillsHub's free basic audit: an automated rule-based scan covering SlowMist's 11 red-flag categories (credential exfiltration, obfuscated payloads, sandbox escape, prompt injection, and more) across 117,000+ open-source AI agent skills and MCP servers, refreshed every 8 hours. A CAUTION grade is a scan result, not a guarantee — deep 5-dimension audits (code · credentials · vendor · supply-chain · operational) are available for enterprise. Audited: 2026-07-03.