Back to Browse
Free
Server data from the Official MCP Registry
npm MCP — search packages, bundle sizes, vulnerabilities, compare downloads.
About
npm MCP — search packages, bundle sizes, vulnerabilities, compare downloads.
Security Report
9.6
Low Risk9.6Low RiskValid MCP server (2 strong, 4 medium validity signals). 2 known CVEs in dependencies Package registry verified. Imported from the Official MCP Registry. Trust signals: trusted author (22/23 approved).
8 files analyzed · 3 issues found
Security scores are indicators to help you make informed decisions, not guarantees. Always review permissions before connecting any MCP server.
Permissions Required
This plugin requests these system permissions. Most are normal for its category.
How to Install
Add this to your MCP configuration file:
{
"mcpServers": {
"io-github-ofershap-npm-plus": {
"args": [
"-y",
"mcp-server-npm-plus"
],
"command": "npx"
}
}
}Documentation
View on GitHubFrom the project's GitHub README.
mcp-server-npm-plus
npm package research from your AI assistant. Search packages, check bundle sizes, scan for vulnerabilities, compare download counts, and inspect dependency trees. No API keys needed.
npx mcp-server-npm-plus
Works with Claude Desktop, Cursor, VS Code Copilot, and any MCP client. Uses public npm registry APIs.
Demo built with remotion-readme-kit
Why
Choosing between npm packages usually means opening a bunch of browser tabs: npm for package info, Bundlephobia for size, Snyk for vulnerabilities, npm trends for download comparisons. This server puts all of that in one place, accessible through your AI assistant. Ask "compare zustand vs jotai vs valtio" and get download numbers, bundle sizes, and dependency counts side by side. Ask "are there any known vulnerabilities in express?" and get the answer without leaving your editor. It uses only public npm APIs, so there's nothing to sign up for.
Tools
| Tool | Description |
|---|---|
search | Search npm packages by query |
package_info | Get detailed info: description, license, repo, dependencies |
downloads | Get download stats for a package |
compare_downloads | Compare download counts across multiple packages |
bundle_size | Get bundle size (minified + gzip) via Bundlephobia |
vulnerabilities | Get vulnerability info and advisory links |
dependency_tree | Show direct dependencies as a tree |
download_trends | Daily breakdown with sparkline |
Quick Start
Cursor
Add to .cursor/mcp.json:
{
"mcpServers": {
"npm-plus": {
"command": "npx",
"args": ["mcp-server-npm-plus"]
}
}
}
Claude Desktop
Add to claude_desktop_config.json:
{
"mcpServers": {
"npm-plus": {
"command": "npx",
"args": ["mcp-server-npm-plus"]
}
}
}
VS Code
Use the MCP extension and configure the server with npx mcp-server-npm-plus.
Example Prompts
- "Search npm for React state management libraries"
- "What's the bundle size of lodash?"
- "Compare downloads of zustand vs jotai vs valtio"
- "Check for vulnerabilities in express"
- "Show me the dependency tree for next"
- "What are the download trends for typescript this month?"
Development
npm install
npm run typecheck
npm run build
npm test
npm run lint
npm run format
See also
More MCP servers and developer tools on my portfolio.
Author
README built with README Builder
License
MIT © 2026 Ofer Shapira
Reviews
No reviews yet
Be the first to review this server!
More Developer Tools MCP Servers
Git
Freeby Modelcontextprotocol · Developer Tools
Read, search, and manipulate Git repositories programmatically
80.0K
Stars
3
Installs
6.5
Security
No ratings yet
Local
Toleno
Freeby Toleno · Developer Tools
Toleno Network MCP Server — Manage your Toleno mining account with Claude AI using natural language.
114
Stars
407
Installs
8.0
Security
4.8
Local
mcp-creator-python
Freeby mcp-marketplace · Developer Tools
Create, build, and publish Python MCP servers to PyPI — conversationally.
-
Stars
55
Installs
10.0
Security
5.0
Local