Security context

What an agent needs to avoid regressing past fixes and find the next vuln in this repo.

neo4j-contrib/mcp-neo4j
main @ dbc01ba
1
Fixes
0
CVEs
HIGH
Peak severity
Highlights
Auth Bypass: 1 prior fix. Scrutinize any change in this area.
servers/mcp-neo4j-cypher/src/mcp_neo4j_cypher/server.py: most-fixed (1 issue). Treat as high-risk during review.
1 high-severity fix in this history; regressions here are high-impact.
Recurring patterns

The bug types that recur here, drawn from past fixes, not open vulnerabilities.

Auth Bypass: Inadequate enforcement of trusted origins and host headers allowed external web origins or DNS rebinding mechanisms to bypass browser-based boundary controls and interact directly with the local Cypher execution endpoint.