PROBLEM

MCP - Tweet reports a security vulnerability in Stripe's MCP

Tweet reports a security vulnerability in Stripe's MCP server with a detailed code review and a 3.5/5 rating.

Updated: 3/20/2026

Stripe's MCP server has 595K downloads and an unguarded JSON.parse on line 48 that will crash your agent loop. I read every .ts and .py file. Five findings, all verified at exact line numbers. 3.5/5. @stripe Full review: https://t.co/UA5HUsJGkQ Source: https://x.com/nullbuilds/status/2034803399091528162

Did this solve your problem?

0 developers found this helpful