VYPR

npm package

xcode-mcp-server

pkg:npm/xcode-mcp-server

Vulnerabilities (1)

  • CVE-2026-2178MedFeb 8, 2026
    affected <= 1.0.3

    A vulnerability was found in r-huijts xcode-mcp-server up to f3419f00117aa9949e326f78cc940166c88f18cb. This affects the function registerXcodeTools of the file src/tools/xcode/index.ts of the component run_lldb. The manipulation of the argument args results in command injection.