ai.smithery/BigVik193-reddit-ads-mcp

7.0

Manage Reddit advertising across accounts, campaigns, ad groups, posts, and ads. List accounts, fu…

streamable-httpai-ml

Installation

Claude Desktop config (remote)

{
  "mcpServers": {
    "ai-smithery-bigvik193-reddit-ads-mcp": {
      "type": "streamable-http",
      "url": "https://server.smithery.ai/@BigVik193/reddit-ads-mcp/mcp"
    }
  }
}

Cursor config

{
  "mcpServers": {
    "ai-smithery-bigvik193-reddit-ads-mcp": {
      "url": "https://server.smithery.ai/@BigVik193/reddit-ads-mcp/mcp"
    }
  }
}

Security Report

Score Breakdown

Description10

Permissions10

Behavior4

Stability--

Findings (6)

high

network-access

Remote HTTP Endpoint Without Authentication Details

Server operates as a remote HTTP endpoint (streamable-http) accessible via internet. No authentication mechanism is documented, creating potential for unauthorized access or man-in-the-middle attacks.

high

credential-input

Reddit Account Credential Management Risk

Server manages Reddit advertising across multiple accounts. This implies handling of Reddit API credentials or authentication tokens. No documentation provided on how credentials are stored, transmitted, or protected.

medium

vague-description

Incomplete Description

Server description is truncated ('...fu…'), making it impossible to fully assess the claimed capabilities and scope. This prevents proper security evaluation of all features.

medium

excessive-scope

Broad Advertising Management Capabilities

Server claims to manage multiple levels of Reddit advertising infrastructure (accounts, campaigns, ad groups, posts, ads). This broad scope increases attack surface and potential for misuse if compromised.

low

info

Tool Definitions Not Available

Tool definitions could not be fetched from the server, preventing detailed analysis of input validation, prompt injection risks, and specific capability constraints.

info

vague-description

Semantic Analysis Summary

This Reddit advertising management server presents moderate-to-high security concerns due to its remote HTTP transport without documented authentication, credential handling for Reddit accounts, and broad advertising management scope. The truncated description and unavailable tool definitions prevent complete security assessment. Repository availability is a positive trust signal, but the lack of authentication details and credential protection documentation are significant risks.

Last scanned 1h ago

Details

Version: 1.0.0
Transport: streamable-http
Capabilities
Repository: BigVik193/reddit-ads-mcp