GithubFetcher
Verified Safeby Cookee24
Overview
Provides a focused MCP interface for large models to fetch code and metadata from GitHub repositories.
Installation
cargo run -- --token-env GITHUB_AUTH_TOKENEnvironment Variables
- GITHUB_AUTH_TOKEN
Security Notes
The project is written in Rust, which offers strong memory safety. Input parameters are deserialized using `serde` and `schemars`, helping to prevent malformed input from causing issues. GitHub API calls are made via `reqwest`, and file content decoding uses `base64`, both standard and generally safe libraries. Secrets (GitHub token) are handled via environment variables or CLI arguments, not hardcoded. The `--api-base` flag allows overriding the GitHub API endpoint, which could be a risk if pointed to a malicious server, but this is a configuration choice for enterprise or testing purposes, not a vulnerability in the default setup. No 'eval' or similar dangerous dynamic code execution patterns were found.
Similar Servers
git-mcp-server
A Model Context Protocol (MCP) server that provides Git-specific tools and resources for AI/LLM agents to interact with version control systems.
codex-mcp-rs
This server acts as an MCP (Model Context Protocol) wrapper for the Codex CLI, enabling AI-assisted coding tasks through compatible clients like Claude Code.
tenets
Provides intelligent, token-optimized code context and automatically injects guiding principles to AI coding assistants for enhanced understanding and consistent interactions.
kodegen
A Rust-native Model Context Protocol (MCP) server providing blazing-fast auto-coding and development tools for AI agents.