CtrlK
BlogDocsLog inGet started
Tessl Logo

mlava/scholar-sidekick-mcp

Use the connected scholar-sidekick-mcp MCP server when the user mentions a scholarly identifier (DOI, PMID, PMCID, ISBN, arXiv, ISSN, NASA ADS bibcode, WHO IRIS URL) and wants structured metadata, a formatted citation, a bibliography export file, a retraction check, an open-access check, or verification that a claimed citation is real (not fabricated). Requires the MCP server connected — it works anonymously, no API key required; for a zero-install path use the scholar-sidekick-api skill instead.

70

Quality

88%

Does it follow best practices?

Impact

No eval scenarios have been run

SecuritybySnyk

Advisory

Suggest reviewing before use

Overview
Quality
Evals
Security
Files

Security

1 medium severity finding. This skill can be installed but you should review these findings before use.

Medium

W011: Third-party content exposure detected (indirect prompt injection risk)

What this means

The skill exposes the agent to untrusted, user-generated content from public third-party sources, creating a risk of indirect prompt injection. This includes browsing arbitrary URLs, reading social media posts or forum comments, and analyzing content from unknown websites.

Why it was flagged

Third-party content exposure detected (high risk: 0.75). The required workflow calls Scholar Sidekick MCP tools like `resolveIdentifier` / `checkOpenAccess` / `checkRetraction`, which at runtime resolve identifiers by fetching external scholarly records (e.g., via Crossref/Unpaywall/Retraction Watch), so the LLM context can include outsider-authored free text from those public web sources.

Report incorrect finding
Audited
Security analysis
Snyk