Is Power BI Modeling MCP Server safe?

@microsoft/powerbi-modeling-mcp is an AI npm_package analyzed by SkillTotal's deterministic static scanner. The scan found no malicious indicators, though 1 risky construct are reported for review. It can: shell execution — capabilities are what the code can do, not a verdict on intent. Risk score 0/100 (low).

@microsoft/powerbi-modeling-mcp 0.5.0-beta.10

npm_package · npm:@microsoft/powerbi-modeling-mcp

LOW

/ 100 malicious-risk

Snapshot · scanned Jun 20, 2026 · @microsoft/powerbi-modeling-mcp@0.5.0-beta.10 · engine 0.18.0 / ruleset 19

No malicious indicators - review capabilities before installing

Notable — review in context (capabilities are not malware):

Node.js shell/command execution

No malicious indicators found by static analysis.

Capabilities — what this component can do (not a risk score):

shell execution

Findings (1)

HIGHNode.js shell/command executionST-SHELL-NODE

The component can run operating-system commands or spawn processes.

index.js:9-9

const { execFileSync } = require('child_process')

Why it matters: Powerful and often legitimate — confirm the commands aren't built from untrusted input.

Fix: Confirm the command and its arguments are fully controlled and not derived from untrusted input; prefer execFile with an argument array.

Check your own component

Run the same evidence-backed scan on any MCP server, agent skill, or package.

Scan your own component

Or get notified if this component's risk changes:

How we determine this: deterministic static analysis (regex + AST), evidence-anchored, no code execution. Methodology →