loist-mcp-server
Verified Safeby DelicateAlchemy
Overview
Processes audio files from URLs, extracts comprehensive metadata, stores them in Google Cloud Storage, and provides a searchable library via a Music Library Protocol (MCP) API.
Installation
python run_server.pyEnvironment Variables
- DB_HOST
- DB_PORT
- DB_NAME
- DB_USER
- DB_PASSWORD
- GCS_BUCKET_NAME
- GCS_PROJECT_ID
- BEARER_TOKEN
Security Notes
The server demonstrates strong security practices including comprehensive input validation (Pydantic schemas), robust URL/SSRF protection with explicit blocking of dangerous protocols and private IP ranges, and thorough SQL injection prevention via parameterized queries and psycopg2.sql. Dynamic SQL generation is handled safely. Temporary files and cleanup are managed. Potential minor risks include implicit Jinja2 auto-escaping (though usually safe by default) for metadata rendering in embed pages, and reliance on external binaries (FFmpeg, ExifTool) requiring trust in their security. Authentication uses a simple, configurable bearer token, which is noted as a limitation for production but adequate for MVP.
Similar Servers
spotify-streamable-mcp-server
Provides an LLM-friendly interface to control Spotify playback, search music, and manage playlists/saved songs, enabling voice control and smart-home automations.
tuisic
A terminal-based online music streaming application that provides an MCP (Model Context Protocol) server for AI integration, allowing AI clients to control music playback and search.
media-gen-mcp
Centralized Model Context Protocol (MCP) server for generating and editing images and videos via OpenAI (DALL-E, Sora) and Google GenAI (Veo), with local media fetching and processing.
PairOfCleats
Codebase analysis and intelligence server, providing indexing, search, risk analysis, and vulnerability triage capabilities.