mcp-todo-demo
Verified Safeby DavidMalkhasyan
Overview
A minimal WebSocket-based server and client demonstrating CRUD operations for a todo list using the Model Context Protocol (MCP).
Installation
node src/server.jsSecurity Notes
The server correctly uses a whitelist (`tools` object) to dispatch tool calls, preventing arbitrary code execution. It handles JSON parsing and stringifying, which are standard and generally safe. There are no obvious hardcoded secrets or direct 'eval' usage. Data is stored in-memory, which is not a security risk but means data persistence is not handled. Text input for todos is stored directly, but the React frontend automatically escapes content, mitigating client-side XSS if it were used in a UI. For a demo, the security practices are robust.
Similar Servers
todo-mcp-server
Provides autonomous task management and random string generation for AI agents via Model Context Protocol (MCP) using stdio or HTTP transports.
MCPServer_Demo
A multi-language demonstration of Model Context Protocol (MCP) servers and clients for Todo management.
openai-apps-template
This server provides a Model Context Protocol (MCP) backend for a responsive React-based todo list widget that can be embedded and interacted with inside ChatGPT.
mcp-cf7b72a7-10c103b7-todo-list-mcp
Acts as a Model Context Protocol (MCP) server to provide a Todo List functionality by integrating with an external API.