mcp
by ChristianW-public
Overview
Demonstrates Model Context Protocol (MCP) server capabilities for providing coding guidelines (read-only) and implementing a simple file versioning system (read-write).
Installation
cd mcp-simple-versioning && mvn spring-boot:runSecurity Notes
The 'mcp-simple-versioning' server is highly vulnerable to arbitrary file write and path traversal. The 'createRevision' method writes user-provided file contents to 'C:\Temp\{revision_id}\{relative_path}'. If 'relativePath' contains path traversal sequences (e.g., '../../../'), an attacker can write arbitrary files to any location on the file system, potentially leading to remote code execution, system compromise, or denial of service by filling disk space. This is a critical security risk and makes the application unsafe to run in an untrusted environment.
Similar Servers
octocode
Octocode is an intelligent code indexer, semantic search engine, and knowledge graph builder that provides AI-powered assistance for developers.
mcp-server-csdn
The server automatically publishes Markdown articles to the CSDN platform, acting as a tool called by a Spring AI agent.
MCPify
Exposes ASP.NET Core endpoints and OpenAPI specifications as tools for Model Context Protocol (MCP) compatible AI agents.
ancplua-mcp
This project provides C#/.NET Model Context Protocol (MCP) servers that expose a robust set of development tools for filesystem, Git, CI, Roslyn code analysis, and multi-AI orchestration, designed for integration into AI-assisted development workflows.