asset-mcp

v0.1.2 safe
2.0
Low Risk

Read-only MCP server for multi-account personal asset aggregation.

🤖 AI Analysis

Final verdict: SAFE

The package appears to be designed for aggregating financial assets from various exchanges and wallets without any evident malicious intent or risky behaviors.

  • Low network risk due to expected API interactions
  • No shell execution detected
Per-check LLM notes
  • Network: Network calls are likely for API interactions given the package's naming and context.
  • Shell: No shell execution patterns detected.

📦 Package Quality Overall: Medium (5.8/10)

✦ High Test Suite 9.0

Test suite present — 7 test file(s) found

  • Test runner config found: pyproject.toml
  • 7 test file(s) detected (e.g. test_cli.py)
◈ Medium Documentation 5.0

Some documentation present

  • Detailed PyPI description (17484 chars)
○ Low Contributing Guide 2.0

No contributing guide or governance files found

  • No CONTRIBUTING, CODE_OF_CONDUCT, or governance files found
◈ Medium Type Annotations 7.0

Partial type annotation coverage

  • Classifier: Typing :: Typed
  • 151 type-annotated function signatures detected in source
◈ Medium Multiple Contributors 6.0

Limited contributor diversity

  • 2 unique contributor(s) across 26 commits in cidzhao/asset-mcp
  • Two distinct contributors found

🔬 Heuristic Checks

Outbound Network Calls score 6.0

Found 4 network call pattern(s)

  • t(self.client) return httpx.AsyncClient(timeout=30, follow_redirects=True) class _NullAsyncContext
  • t(self.client) return httpx.AsyncClient(timeout=20) def _asset_from_quantity( account: Binance
  • t(self.client) return httpx.AsyncClient(timeout=20) class _NullAsyncContext: def __init__(self
  • t(self.client) return httpx.AsyncClient(timeout=20) def _asset_from_indexed_row( account: Onch
Code Obfuscation

No obfuscation patterns detected

Shell / Subprocess Execution

No shell execution patterns detected

Credential Harvesting

No credential harvesting patterns detected

Typosquatting

No typosquatting candidates detected

Registered Email Domain

No author email provided

Suspicious Page Links

All external links appear legitimate

Git Repository History

Repository cidzhao/asset-mcp appears legitimate

Maintainer History score 2.0

1 maintainer concern(s) found

  • Author "cidzhao" appears to have only 1 package on PyPI (new or inactive account)
Known CVE Vulnerabilities

No known vulnerabilities found in OSV database.

💡 AI App Starter Prompt

Use this prompt to build a project with asset-mcp 
Create a personal finance dashboard using the 'asset-mcp' Python package. This dashboard will aggregate financial assets from multiple accounts into a single, easy-to-use interface. Your task is to develop a web-based application where users can log in, view their aggregated balance across different accounts, and monitor their spending habits over time. The application should have the following features:

1. User Authentication: Implement user registration and login functionality to ensure secure access to personal financial data.
2. Account Aggregation: Use the 'asset-mcp' package to fetch and display the current balances of all linked bank accounts, investment portfolios, and other financial instruments.
3. Transaction History: Show a history of recent transactions for each account, allowing users to track their spending and income.
4. Spending Analysis: Provide an analysis of spending trends over different periods (daily, weekly, monthly), including visualizations like charts and graphs.
5. Alerts and Notifications: Set up alerts for specific financial events, such as low balance warnings or significant withdrawals.
6. Customization Options: Allow users to customize their dashboard layout and color schemes according to their preferences.
7. Security Measures: Ensure all data transmitted between the client and server is encrypted, and sensitive information is handled securely.

To utilize the 'asset-mcp' package, you'll need to establish connections to various financial institutions' APIs, which the package will handle for read-only operations. The package simplifies the process of aggregating data from these sources, providing a streamlined way to access and present the information on your dashboard. Your challenge is to design an intuitive and visually appealing interface while ensuring robust security measures are in place.

💬 Discussion Feed

Leave a comment

No discussion yet. Be the first to share your thoughts!