esewa-mcp-server
by Dipesh600
Overview
This server acts as a Model Context Protocol (MCP) wrapper for eSewa payment gateway, enabling creation of payment sessions, transaction verification, refunds, and status checks.
Installation
node server.mjsEnvironment Variables
- ESEWA_MERCHANT_CODE
- ESEWA_SECRET_KEY
- ESEWA_TOKEN
Security Notes
The `smithery.yaml` file hardcodes sensitive environment variables like `ESEWA_SECRET_KEY` and `ESEWA_TOKEN`. Additionally, `services/esewa.js` provides hardcoded fallback values for `ESEWA_MERCHANT_CODE` and `ESEWA_SECRET_KEY` if environment variables are not set. This is a critical security vulnerability as it exposes credentials that should be securely managed and never committed to version control, especially for production deployments. While the code uses `crypto` for HMAC-SHA256, the static keys undermine this security measure.
Similar Servers
Unla
Transforms existing MCP Servers and APIs into MCP protocol-compliant endpoints through configuration, enabling LLM tool calling without code changes.
dexter-mcp
Serves as a Model Context Protocol (MCP) bridge, exposing a curated set of tools for AI agents (Claude, ChatGPT, voice bots) to interact with Solana-based financial trading, wallet management, search, and analytics services.
mcp-server-playground
A playground and reference implementation for a Model Context Protocol (MCP) server, featuring streamable HTTP transport, OAuth proxy for third-party authorization servers like Auth0, and stateful session management.
mcp
Provides a Node.js/TypeScript client for AI agents to securely integrate with Visa's Model Context Protocol (MCP) server, enabling token-managed authentication and execution of agent-driven commerce transactions.