
Security News
Suno Breached via Shai-Hulud Worm, Leaked Code Exposes AI Music Scraping
A Shai-Hulud infection exposed Suno's source code, which shows the AI music startup stream-ripped tracks to train its models.
@muggleai/mcp
Advanced tools
Unified MCP server for Muggle AI - combines Cloud QA and Local Testing tools into a single package.
npm install -g @muggleai/mcp
This automatically:
Cursor (~/.cursor/mcp.json):
{
"mcpServers": {
"muggle": {
"command": "muggle-mcp",
"args": ["serve"]
}
}
}
Ask your AI assistant to test your application! Authentication happens automatically when needed.
# Server (main command - starts MCP server for AI clients)
muggle-mcp serve # Start server with all tools (default)
muggle-mcp serve --qa # Cloud QA tools only
muggle-mcp serve --local # Local testing tools only
# Setup & Diagnostics
muggle-mcp setup # Download/update Electron app
muggle-mcp setup --force # Force re-download
muggle-mcp doctor # Diagnose installation issues
# Authentication (optional - auth happens automatically)
muggle-mcp login # Manually trigger login
muggle-mcp logout # Clear credentials
muggle-mcp status # Show auth status
# Info
muggle-mcp --version # Show version
muggle-mcp --help # Show help
Authentication happens automatically when you first use a tool that requires it:
Your credentials are stored in ~/.muggle-ai/credentials.json and persist across sessions.
Tokens expire after a period of time. When this happens:
muggle-mcp status or call muggle-remote-auth-status to see expirationmuggle-mcp login or call muggle-remote-auth-login to get fresh tokensThe MCP server will attempt to auto-refresh tokens when possible, but manual re-authentication may be required if the refresh token has also expired.
Tools that work with the Muggle AI cloud backend:
muggle-remote-project-create - Create QA projectmuggle-remote-project-list - List projectsmuggle-remote-use-case-create-from-prompts - Create use casesmuggle-remote-test-case-generate-from-prompt - Generate test casesmuggle-remote-workflow-start-* - Start various workflowsTools that work with local testing:
muggle-local-check-status - Check local statusmuggle-local-list-sessions - List sessionsmuggle-local-execute-test-generation - Generate test scriptmuggle-local-execute-replay - Replay test scriptmuggle-local-run-result-list - List run resultsmuggle-local-publish-test-script - Publish to cloudAll Muggle AI data is stored in ~/.muggle-ai/:
~/.muggle-ai/
├── credentials.json # Auth credentials (auto-generated)
├── projects/ # Local test projects
├── sessions/ # Test execution sessions
└── electron-app/ # Downloaded Electron app
└── 1.0.0/
└── MuggleAI.exe
npm install
npm run build
npm test # Run tests once
npm run test:watch # Watch mode
npm run lint # Auto-fix issues
npm run lint:check # Check only
| Workflow | Trigger | Description |
|---|---|---|
ci.yml | Push/PR to main | Lint, test, build on multiple platforms/versions |
publish-mcp.yml | Tag v* | Publish package to npm |
release-electron-app.yml | Tag electron-app@* | Build and release Electron binaries |
package.jsongit tag v1.0.1 && git push --tagspublish-mcp.yml workflow publishes to npm automaticallymuggleConfig.electronAppVersion in package.jsonrelease-electron-app.yml workflow manuallygit tag electron-app@1.0.1 && git push --tagsIf you see authentication errors like "Not authenticated" or token expiration messages:
Check auth status:
muggle-mcp status
Re-authenticate:
muggle-mcp login
Clear and retry (if login keeps failing):
muggle-mcp logout
muggle-mcp login
This error indicates a mismatch between your Auth0 client configuration and the target environment.
Cause: The MCP is configured for one environment (dev/production) but trying to authenticate against another.
Fix: Ensure your MCP configuration matches your intended environment by setting the MUGGLE_MCP_PROMPT_SERVICE_TARGET environment variable in your MCP config:
For Production (~/.cursor/mcp.json):
{
"mcpServers": {
"muggle": {
"command": "muggle-mcp",
"args": ["serve"],
"env": {
"MUGGLE_MCP_PROMPT_SERVICE_TARGET": "production"
}
}
}
}
For Development (local services):
{
"mcpServers": {
"muggle": {
"command": "muggle-mcp",
"args": ["serve"],
"env": {
"MUGGLE_MCP_PROMPT_SERVICE_TARGET": "dev"
}
}
}
}
After changing the configuration, restart your MCP client (e.g., restart Cursor).
Credentials are stored in ~/.muggle-ai/:
| File | Purpose |
|---|---|
auth.json | OAuth tokens (access token, refresh token, expiry) |
credentials.json | API key for service calls |
If you need to reset authentication completely:
rm ~/.muggle-ai/auth.json
rm ~/.muggle-ai/credentials.json
muggle-mcp login
MIT
FAQs
Unified MCP server for Muggle AI - Cloud QA and Local Testing tools
We found that @muggleai/mcp demonstrated a healthy version release cadence and project activity because the last version was released less than a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?

Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.

Security News
A Shai-Hulud infection exposed Suno's source code, which shows the AI music startup stream-ripped tracks to train its models.

Security News
Vercel is formalizing a monthly release program for Next.js. The change follows React2Shell and a sharp rise in AI-assisted vulnerability discovery.

Research
/Security News
11 malicious NuGet tools pose as game cheats to deploy Windows payloads, track hosts, and use Google Sheets for telemetry and control.