io.github.rm-rf-prod/groundtruth

MCPcommunity
v7.1.0io.github.rm-rf-prodUnknownUpdated 21d agonpmGitHub

Live docs MCP server. 445+ libraries, code audit, snippets, dispatch tool, telemetry.

██████╗ ████████╗ ███╗ ███╗ ██████╗ ██████╗ ██╔════╝ ╚══██╔══╝ ████╗ ████║ ██╔════╝ ██╔══██╗ ██║ ███╗ ██║ ██╔████╔██║ ██║ ██████╔╝ ██║ ██║ ██║ ██║╚██╔╝██║ ██║ ██╔═══╝ ╚██████╔╝ ██║ ██║ ╚═╝ ██║ ╚██████╗ ██║ Your AI assistant just mass-produced deprecated code again.You merged it because the formatting was clean.GroundTruth fixes that. Self-hosted MCP server. 445+ libraries. 14 tools. A dispatch…

Automatically indexed from public sources. Not yet verified by the developer on Forge.Claim this listing →
21d agoLast update
Package
Authorio.github.rm-rf-prod
LicenseUnknown
Version7.1.0
Sourcemcp-registry
Trust Status
B
75/100Good
Listed in Forge index+10/10
Publisher identity verified+0/25
Publisher: run `forge publish` from the package repo to claim ownership
Ed25519 publish signature+0/10
Included automatically when the publisher runs `forge publish`
Domain verification+0/5
Publisher: host /.well-known/forge.json on the package homepage with { "publisher": "<github-login>" }
CVE scan · clean+30/30
Static analysis · clean+0/20
Suspicious install scripts or obfuscated code detected
npm provenance (Sigstore)+5/5
Paste into Claude Code, Cursor, or any AI assistant to fix all gaps
StatusCommunity-indexed
PublisherUnverified
SignatureUnsigned
Domain
Provenance✓ Sigstore-verified · 301de78
Dependencies60 resolved+ · none vulnerable
Tool surface
Security scan⚠ Warnings (10)v7.1.0 · 20d ago
CODEdist/tools/audit.jsjavascript-obfuscator artifact (_0x identifiers) (in minified file)
CODEdist/tools/auto-scan.jsjavascript-obfuscator artifact (_0x identifiers) (in minified file)
CODE…tools/batch-resolve.jsjavascript-obfuscator artifact (_0x identifiers) (in minified file)
CODE…ools/best-practices.jsjavascript-obfuscator artifact (_0x identifiers) (in minified file)
CODEdist/services/cache.jsjavascript-obfuscator artifact (_0x identifiers) (in minified file)
CODEdist/tools/changelog.jsjavascript-obfuscator artifact (_0x identifiers) (in minified file)
CODE…ces/circuit-breaker.jsjavascript-obfuscator artifact (_0x identifiers) (in minified file)
CODEdist/tools/compare.jsjavascript-obfuscator artifact (_0x identifiers) (in minified file)
CODEdist/tools/compat.jsjavascript-obfuscator artifact (_0x identifiers) (in minified file)
CODEdist/config.jsjavascript-obfuscator artifact (_0x identifiers) (in minified file)
EvalsNone
IndexedJun 13, 2026

Verification confirms publisher identity (repo ownership), not code safety. The security scan covers known CVEs and suspicious install scripts — it cannot prove the absence of malicious code.

About

██████╗ ████████╗ ███╗ ███╗ ██████╗ ██████╗ ██╔════╝ ╚══██╔══╝ ████╗ ████║ ██╔════╝ ██╔══██╗ ██║ ███╗ ██║ ██╔████╔██║ ██║ ██████╔╝ ██║ ██║ ██║ ██║╚██╔╝██║ ██║ ██╔═══╝ ╚██████╔╝ ██║ ██║ ╚═╝ ██║ ╚██████╗ ██║ Your AI assistant just mass-produced deprecated code again.You merged it because the formatting was clean.GroundTruth fixes that. Self-hosted MCP server. 445+ libraries. 14 tools. A dispatch tool routes "use gt mcp" to the right call.SSRF and Unicode-injection hardened. Per-tool telemetry.…

Keywords
mcp