Npmjs Mcp

Name: Npmjs Mcp
Author: io.github.YawLabs

Audit npm dependencies, compare package metadata, and analyze supply-chain risk from inside your coding agent before you ship.

Overview

io.github.YawLabs/npmjs-mcp is a MCP server for the Ship phase that queries the npm registry for package intelligence, security audits, and dependency analysis.

What is this MCP server?

Package intelligence lookups on the npm registry
Security audit flows for dependencies
Dependency analysis for upgrade and risk decisions
@yawlabs/npmjs-mcp npm package version 0.12.1
stdio MCP transport for agent-side registry queries
Published version 0.12.1 as @yawlabs/npmjs-mcp
stdio transport in MCP server manifest
Describes three capability areas: intelligence, security audits, dependency analysis

Compatible agents: Claude Code, Cursor, Codex, any compatible agent

What problem does it solve?

Choosing and upgrading npm packages without live registry and audit data in the agent leads to blind dependency decisions.

Who is it for?

JavaScript solo builders doing pre-release dependency reviews or evaluating unfamiliar packages during implementation.

Skip if: Teams on non-npm ecosystems or those who only need private registry tooling without public npm metadata.

What do I get? / Deliverables

Your agent can inspect packages, run audit-oriented analysis, and reason about dependency trees while you fix or ship code.

Registry-backed package metadata in agent threads
Security-oriented dependency findings to act on
Documented dependency upgrade rationale during ship prep

Recommended MCP Servers

An MCP (Model Context Protocol) is a standardized interface that enables applications and AI agents to discover, connect…

0pidizzydes/botbox

io.github.dizzydes/0pi exposes a lightweight Model Context Protocol server around short-lived, free agent storage so sol…

100Hires AI ATS & Recruitment Software100Hires/mcp

The 100Hires MCP server is the official Model Context Protocol bridge to 100Hires, an AI-oriented applicant tracking and…

123elec Mcp

io.github.Servicedsi/123elec-mcp is the official Model Context Protocol interface for the 123elec electrical supplies me…

1staySTAYKER-COM/1Stay-mcp

1Stay by Stayker is a remote MCP server for hotel booking operations: search properties, complete bookings, and manage r…

3D MeshWeaver

io.github.Evozim/3d-meshweaver is a hosted Model Context Protocol server titled 3D-MeshWeaver that optimizes three-dimen…

Journey fit

Primary fit

Package intelligence matters most at ship when dependencies face real users and security review. security is the canonical shelf because the server emphasizes audits and dependency analysis on the public registry.

How it compares

Live npm registry MCP integration, not a static SBOM report skill or generic web search.

Common Questions / FAQ

Who is io.github.YawLabs/npmjs-mcp for?

Indie developers and small teams shipping Node, React, or TS products who want registry and audit context inside AI coding sessions.

When should I use npmjs-mcp?

Use it before merging dependency changes, after a vulnerability advisory, or when comparing two packages for a new integration.

How do I add io.github.YawLabs/npmjs-mcp to my agent?

Install @yawlabs/npmjs-mcp from npm, add the stdio server block to your agent MCP configuration, then invoke tools for package lookup and audit analysis.

Npmjs Mcp

Audit npm dependencies, compare package metadata, and analyze supply-chain risk from inside your coding agent before you ship.

Overview

io.github.YawLabs/npmjs-mcp is a MCP server for the Ship phase that queries the npm registry for package intelligence, security audits, and dependency analysis.

What is this MCP server?

Package intelligence lookups on the npm registry
Security audit flows for dependencies
Dependency analysis for upgrade and risk decisions
@yawlabs/npmjs-mcp npm package version 0.12.1
stdio MCP transport for agent-side registry queries
Published version 0.12.1 as @yawlabs/npmjs-mcp
stdio transport in MCP server manifest
Describes three capability areas: intelligence, security audits, dependency analysis

Compatible agents: Claude Code, Cursor, Codex, any compatible agent

What problem does it solve?

Choosing and upgrading npm packages without live registry and audit data in the agent leads to blind dependency decisions.

Who is it for?

JavaScript solo builders doing pre-release dependency reviews or evaluating unfamiliar packages during implementation.

Skip if: Teams on non-npm ecosystems or those who only need private registry tooling without public npm metadata.

What do I get? / Deliverables

Your agent can inspect packages, run audit-oriented analysis, and reason about dependency trees while you fix or ship code.

Registry-backed package metadata in agent threads
Security-oriented dependency findings to act on
Documented dependency upgrade rationale during ship prep

Recommended MCP Servers

An MCP (Model Context Protocol) is a standardized interface that enables applications and AI agents to discover, connect…

0pidizzydes/botbox

io.github.dizzydes/0pi exposes a lightweight Model Context Protocol server around short-lived, free agent storage so sol…

100Hires AI ATS & Recruitment Software100Hires/mcp

The 100Hires MCP server is the official Model Context Protocol bridge to 100Hires, an AI-oriented applicant tracking and…

123elec Mcp

io.github.Servicedsi/123elec-mcp is the official Model Context Protocol interface for the 123elec electrical supplies me…

1staySTAYKER-COM/1Stay-mcp

1Stay by Stayker is a remote MCP server for hotel booking operations: search properties, complete bookings, and manage r…

3D MeshWeaver

io.github.Evozim/3d-meshweaver is a hosted Model Context Protocol server titled 3D-MeshWeaver that optimizes three-dimen…

Journey fit

Primary fit

How it compares

Live npm registry MCP integration, not a static SBOM report skill or generic web search.

Common Questions / FAQ

Who is io.github.YawLabs/npmjs-mcp for?

Indie developers and small teams shipping Node, React, or TS products who want registry and audit context inside AI coding sessions.

When should I use npmjs-mcp?

Use it before merging dependency changes, after a vulnerability advisory, or when comparing two packages for a new integration.

How do I add io.github.YawLabs/npmjs-mcp to my agent?

Install @yawlabs/npmjs-mcp from npm, add the stdio server block to your agent MCP configuration, then invoke tools for package lookup and audit analysis.

Overview

What is this MCP server?

What problem does it solve?

Who is it for?

What do I get? / Deliverables

Recommended MCP Servers

Journey fit

Who is io.github.YawLabs/npmjs-mcp for?

When should I use npmjs-mcp?

How do I add io.github.YawLabs/npmjs-mcp to my agent?

This week for builders

Overview

What is this MCP server?

What problem does it solve?

Who is it for?

What do I get? / Deliverables

Recommended MCP Servers

Journey fit

Who is io.github.YawLabs/npmjs-mcp for?

When should I use npmjs-mcp?

How do I add io.github.YawLabs/npmjs-mcp to my agent?