Is Atlassian MCP server safe?

repo is an AI mcp_server analyzed by SkillTotal's deterministic static scanner. The scan found no malicious indicators, though 2 risky constructs are reported for review. It can: filesystem read and mcp tools detected — capabilities are what the code can do, not a verdict on intent. Risk score 0/100 (low).

repo

mcp_server · https://github.com/atlassian/atlassian-mcp-server

LOW

/ 100 malicious-risk

Snapshot · scanned Jun 23, 2026 · repo@19f7157 · engine 0.18.0 / ruleset 19

No malicious indicators - review capabilities before installing

Notable — review in context (capabilities are not malware):

Node.js filesystem read
MCP tool surface detected

No malicious indicators found by static analysis.

Capabilities — what this component can do (not a risk score):

filesystem readmcp tools detected

Findings (2)

MEDIUMNode.js filesystem readST-FS-NODE-READ

The component reads files from disk.

scripts/validate-template.mjs:48-48

raw = await fs.readFile(filePath, "utf8");

scripts/validate-template.mjs:174-174

const content = await fs.readFile(filePath, "utf8");

Why it matters: Usually legitimate, but worth confirming it can't be steered into reading sensitive files.

Fix: Confirm which files are read and that paths cannot be influenced by untrusted input to reach sensitive locations.

LOWMCP tool surface detectedST-MCP-DETECTED

An MCP tool surface (manifest or tool definitions) was found.

.mcp.json:2-2

"mcpServers": {

.mcp.json:1-1

gemini-extension.json:4-4

"mcpServers": {

Why it matters: Just context — review which tools it offers and their permissions.

Fix: Review the declared MCP tools and their permissions.

Check your own component

Run the same evidence-backed scan on any MCP server, agent skill, or package.

Scan your own component

Or get notified if this component's risk changes:

How we determine this: deterministic static analysis (regex + AST), evidence-anchored, no code execution. Methodology →