Claude Desktop MCP security
Review claude_desktop_config.json before running servers
Claude Desktop declares its MCP servers in claude_desktop_config.json (the location varies by operating system — for example, an app support directory on macOS or an app data directory on Windows). CallLint reads that config before the servers run.
npx calllint@next scan claude_desktop_config.jsonWhat CallLint reviews
- Filesystem roots and broad path access.
- Shell / command execution and remote targets.
- Prompt surface in tool metadata.
- Money, action, and supply-chain surfaces.
Config review, not execution
CallLint does not launch the servers Claude Desktop would run. It inspects config shape — commands, args, and key names — and never reads secret values.
Verdicts
SAFE means no blockers under current evidence; it is not a runtime guarantee. REVIEW and BLOCK include evidence and a fix. UNKNOWN is not SAFE — review it before enabling autonomous use.
CallLint is a pre-1.0 release candidate offering heuristic decision support, not a safety guarantee.
Related: MCP security · Cursor MCP security · Agent integration guide