MaxKB
Verified Safeby 1Panel-dev
Overview
An enterprise-grade intelligent agent platform for building knowledge bases, RAG, complex workflows, and AI agents, targeting intelligent customer service and office assistants.
Installation
docker run -d --name=maxkb --restart=always -p 8080:8080 -v ~/.maxkb:/opt/maxkb registry.fit2cloud.com/maxkb/maxkbEnvironment Variables
- DEFAULT_PASSWORD
- DEBUG
- TIME_ZONE
- EMBEDDING_MODEL_NAME
- REDIS_HOST
- REDIS_PORT
- REDIS_PASSWORD
- CELERY_BROKER_URL
- CELERY_RESULT_BACKEND
- EMAIL_HOST
- EMAIL_PORT
- EMAIL_USE_SSL
- EMAIL_USE_TLS
- EMAIL_HOST_USER
- EMAIL_HOST_PASSWORD
- EMAIL_FROM_EMAIL
- WEB_MODEL_PATH
- WEB_WORKER_NUM
- LOCAL_MODEL_PATH
- LOCAL_MODEL_WORKER_NUM
- ADMIN_PATH
- CHAT_PATH
- SESSION_COOKIE_AGE
- SANBOX_ALLOW_SUBPROCESS
- SANBOX_BANNED_HOSTS
- LICENSE_API_KEY
- SECRET_KEY
- DATABASE_URL
- VITE_BASE_PATH
Security Notes
The server includes dynamic Python code execution capabilities (e.g., `ToolExecutor.exec_code`) for AI tools, which is inherently high-risk, though attempts are made to sandbox execution (`sandbox.c`). Extensive file processing is present, which could be a vector for vulnerabilities if not meticulously secured. Credential management involves RSA encryption, which is a good practice. URL validation (`is_private_ip`) is implemented to prevent SSRF in file handling. Potential for SQL injection exists if raw SQL queries, especially through custom compilers, are not perfectly parameterized, although Django ORM is generally robust. Overall, security is actively considered, but the nature of dynamic execution and file processing requires continuous vigilance.
Similar Servers
trigger.dev
Local development and AI agent interface for Trigger.dev workflows, enabling Python script execution and managing tasks, runs, and deployments.
neurolink
Provides a universal AI development platform with multi-provider support, middleware, tool orchestration, and AI-powered workflow automation.
Context-Engine
A Retrieval-Augmented Generation (RAG) stack for codebases, enabling context-aware AI agents for developers and IDEs through unified code indexing, hybrid search, and local LLM integration.
AgentUp
AgentUp is an infrastructure framework for developing, deploying, and managing production-ready AI agents, providing Docker-like consistency, security, and extensibility.