MCP server fronting a self-hosted coordination-bus HTTP API: post/read/claim/release/heartbeat.
Verification confirms publisher identity (repo ownership), not code safety. The security scan covers known CVEs and suspicious install scripts — it cannot prove the absence of malicious code.
MCP server fronting a self-hosted coordination-bus HTTP API: post/read/claim/release/heartbeat.