tooltrust-directory/data/reports/kiwi.json at main · AgentSafe-AI/tooltrust-directory · GitHub

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
{
  "tool_id": "kiwi",
  "version": "smithery",
  "grade": "B",
  "risk_score": 21,
  "scan_date": "2026-04-19T02:19:58.380334882Z",
  "scanner": "tooltrust-scanner/v0.3.8",
  "source_url": "https://smithery.ai/server/kiwi",
  "vendor": "Smithery",
  "description": "Search flights, compare prices, and manage travel bookings. Find the best routes, check availability, and track itineraries.",
  "findings": [
    {
      "id": "AS-002",
      "severity": "High",
      "title": "Excessive Permission Surface",
      "description": "tool declares network permission",
      "recommendation": "Tool requests broad permissions (exec/fs/network). Validate input parameters using Enums where possible, and restrict file system operations to explicit allowed directories.",
      "tool_name": "search-flight"
    },
    {
      "id": "AS-002",
      "severity": "Low",
      "title": "Excessive Permission Surface",
      "description": "tool declares http permission",
      "recommendation": "Tool requests broad permissions (exec/fs/network). Validate input parameters using Enums where possible, and restrict file system operations to explicit allowed directories.",
      "tool_name": "search-flight"
    },
    {
      "id": "AS-002",
      "severity": "Low",
      "title": "Excessive Permission Surface",
      "description": "input schema exposes 11 properties (threshold: 10)",
      "recommendation": "Tool requests broad permissions (exec/fs/network). Validate input parameters using Enums where possible, and restrict file system operations to explicit allowed directories.",
      "tool_name": "search-flight"
    },
    {
      "id": "AS-011",
      "severity": "Low",
      "title": "DoS Resilience — Missing Rate Limit / Timeout",
      "description": "tool performs network or execution operations but declares no rate-limit, timeout, or retry configuration",
      "recommendation": "Declare explicit rate-limit, timeout, and retry configuration for all network and execution tools. Implement exponential back-off and surface resource state to the calling agent.",
      "tool_name": "search-flight"
    },
    {
      "id": "AS-014",
      "severity": "Info",
      "title": "DEPENDENCY_INVENTORY_UNAVAILABLE",
      "description": "Tool did not expose metadata.dependencies or repo_url, so supply-chain coverage is limited.",
      "recommendation": "Review and remediate the identified issue.",
      "tool_name": "search-flight"
    },
    {
      "id": "AS-014",
      "severity": "Info",
      "title": "DEPENDENCY_INVENTORY_UNAVAILABLE",
      "description": "Tool did not expose metadata.dependencies or repo_url, so supply-chain coverage is limited.",
      "recommendation": "Review and remediate the identified issue.",
      "tool_name": "feedback-to-devs"
    }
  ],
  "summary": {
    "critical": 0,
    "high": 1,
    "medium": 0,
    "low": 3,
    "info": 2
  },
  "methodology": "https://github.com/AgentSafe-AI/tooltrust-directory/blob/main/docs/methodology.md",
  "tool_names": [
    "feedback-to-devs",
    "search-flight"
  ],
  "tool_contexts": [
    {
      "tool_name": "search-flight",
      "action": "ALLOW",
      "grade": "B",
      "behavior": [
        "executes_commands",
        "uses_network"
      ],
      "destinations": [
        "dynamic email recipient (flyTo)",
        "hardcoded domain: kiwi.com",
        "hardcoded domain: return.durationInSeconds"
      ],
      "dependency_visibility": "No dependency data",
      "dependency_note": "No metadata.dependencies or repo_url were exposed by this MCP server."
    },
    {
      "tool_name": "feedback-to-devs",
      "action": "ALLOW",
      "grade": "A",
      "dependency_visibility": "No dependency data",
      "dependency_note": "No metadata.dependencies or repo_url were exposed by this MCP server."
    }
  ],
  "scan_history": [
    {
      "scan_date": "2026-04-11T01:49:07Z",
      "grade": "B",
      "risk_score": 21,
      "version": "smithery"
    },
    {
      "scan_date": "2026-04-12T02:14:43Z",
      "grade": "B",
      "risk_score": 21,
      "version": "smithery"
    },
    {
      "scan_date": "2026-04-13T02:18:49Z",
      "grade": "B",
      "risk_score": 21,
      "version": "smithery"
    },
    {
      "scan_date": "2026-04-15T02:12:29Z",
      "grade": "B",
      "risk_score": 21,
      "version": "smithery"
    },
    {
      "scan_date": "2026-04-16T02:27:17Z",
      "grade": "B",
      "risk_score": 21,
      "version": "smithery"
    },
    {
      "scan_date": "2026-04-17T02:15:57Z",
      "grade": "B",
      "risk_score": 21,
      "version": "smithery"
    }
  ]
}