mcp
FlaggedDetect prompt injection, jailbreaks, and code injection in untrusted text before it reaches an LLM.
Our take
SafePrompt's npm tarball does contain a real two-tool MCP server for validating prompts through the SafePrompt API. The registry, however, advertises GitHub source at `ianreboot/safeprompt` with subfolder `packages/mcp`, and that subfolder is absent from the current public repository. That leaves the listed source unauditable from the registry entry, which is source/repository misrepresentation even though the package itself works.
Verification record
- yesterday
- 1
- 3 days ago
- no
- MIT
- 156
- 0.1.0
- 2026-06-22