mcp-todo-demo
Verified Safeby DavidMalkhasyan
Overview
A minimal WebSocket-based server and client demonstrating CRUD operations for a todo list using the Model Context Protocol (MCP).
Installation
node src/server.jsSecurity Notes
The server correctly uses a whitelist (`tools` object) to dispatch tool calls, preventing arbitrary code execution. It handles JSON parsing and stringifying, which are standard and generally safe. There are no obvious hardcoded secrets or direct 'eval' usage. Data is stored in-memory, which is not a security risk but means data persistence is not handled. Text input for todos is stored directly, but the React frontend automatically escapes content, mitigating client-side XSS if it were used in a UI. For a demo, the security practices are robust.
Similar Servers
todo-mcp-server
Provides autonomous task management and random string generation for AI agents via Model Context Protocol (MCP) using stdio or HTTP transports.
MCPServer_Demo
A React TypeScript client application for managing Todos through the Model Context Protocol (MCP).
mcp-cf7b72a7-10c103b7-todo-list-mcp
Acts as a Model Context Protocol (MCP) server to provide a Todo List functionality by integrating with an external API.
todo-mcp-server-railway
A complete Model Context Protocol (MCP) server demonstrating modern web development practices with authentication, billing, and PostgreSQL database integration for a Todo Management System, primarily interacted with via AI clients like Cursor AI.