tl-openmeter-api-mcp-server

Facilitates interaction with a local OpenMeter instance, enabling AI assistants to manage meters, customers, and subscriptions effectively.

Install this skill

72/100

Security score

The tl-openmeter-api-mcp-server skill was audited on Mar 19, 2026 and we found 6 security issues across 3 threat categories, including 1 high-severity. Review the findings below before installing.

Categories Tested

Security Issues

medium line 25

Webhook reference - potential data exfiltration

SourceSKILL.md

25	\| tl-openmeter-local-dev \| Local dev setup: Docker, ngrok, Stripe App, webhooks \|

high line 25

Ngrok tunnel reference

SourceSKILL.md

25	\| tl-openmeter-local-dev \| Local dev setup: Docker, ngrok, Stripe App, webhooks \|

medium line 55

Access to hidden dotfiles in home directory

SourceSKILL.md

55	Add to `~/.cursor/mcp.json`:

low line 40

External URL reference

SourceSKILL.md

40	- A running OpenMeter instance (e.g. [Docker](https://openmeter.io/docs/installation/docker), default `http://localhost:8888`)

low line 64

External URL reference

SourceSKILL.md

64	"OPENMETER_URL": "http://localhost:8888",

low line 82

External URL reference

SourceSKILL.md

82	\| `OPENMETER_URL` \| `http://localhost:8888` \| Base URL of OpenMeter API \|

Scanned on Mar 19, 2026

View Security Dashboard

Install this skill with one command

/learn @toddlevy/tl-openmeter-api-mcp-server

Rate this skill

Categorymarketing

UpdatedMarch 29, 2026

cursor api growth-marketer product-marketer customer-success-manager marketing sales

toddlevy/tl-agent-skills