Connects Claude to the NPM registry API to analyze package security, dependencies, and metrics in real time. You get tools for version tracking, recursive dependency checks, download statistics, TypeScript support detection, and package comparisons. It validates inputs against path traversal and injection attacks, caches responses with automatic invalidation when lock files change, and lets you force fresh lookups with an ignoreCache flag. Useful when you're evaluating packages for a project, auditing dependency trees for vulnerabilities, or comparing alternatives before adding them to package.json. Runs via npx, Docker, or HTTP transport through Smithery for hosted deployments.
claude mcp add --transport stdio ai.smithery-nekzus-npm-sentinel-mcp uvx nekzus-npm-sentinel-mcp