[Security] AgentAudit Scan: Unauthenticated R2 Endpoint, Stack Trace Exposure #218
Description
Summary
We scanned this package using AgentAudit as part of a security audit of the top 20 most-used MCP servers. AgentAudit uses multi-model LLM analysis to detect AI-specific security patterns.
Trust Score: 80/100 | 2 findings (1 high, 1 medium)
Findings
1. R2 Setup Endpoint Lacks Authentication
- ASF-ID: ASF-2026-2048
- File:
src/api/test-setup.ts:36 - Description: The
handleR2TestSetupfunction relies only on an environment variable check (ENVIRONMENT !== 'test') to prevent access. If misconfigured, unauthorized users could upload arbitrary content to the R2 bucket.
2. Stack Traces Exposed in Error Responses
- ASF-ID: ASF-2026-2047
- File:
app/routes/api.chat.ts:194 - Description: Error messages returned directly to clients without sanitization, potentially revealing internal paths and application structure.
Full Report
View the complete scan report: https://agentaudit.dev/packages/git-mcp
Note
These findings were detected by automated LLM-based security analysis and may contain false positives. We welcome your feedback and are happy to update our records if any findings are disputed.
Scanned with AgentAudit — open-source security scanner for AI agent packages.