turbomcp
Verified Safeby Epistates
Overview
A production-ready Rust SDK for building high-performance Model Context Protocol (MCP) servers with automatic schema generation and multi-transport support, designed for AI model integration.
Installation
docker run -p 8080:8080 turbomcp-server:latestEnvironment Variables
- RUST_LOG
- SERVER_PORT
- DATABASE_URL
- REDIS_URL
- JWT_SECRET
- DB_PASSWORD
- REDIS_PASSWORD
- APP_ENV
Security Notes
The project demonstrates a strong focus on security, leveraging Rust's memory safety and implementing robust features like OAuth 2.1, DPoP (RFC 9449), TLS with `rustls`, CORS, content security policies, and rate limiting. Input validation is integrated via procedural macros, and sensitive information is sanitized in error messages. Docker deployment best practices, including non-root users and distroless images, further enhance security. Extensive security auditing (`cargo audit`) and specific attack scenario tests are part of the development workflow, indicating a proactive approach to security. Authorization (RBAC) is explicitly moved to the application layer, promoting better separation of concerns. The comprehensive security features and testing justify a high score, with minor deductions for the inherent complexity of multi-protocol systems.
Similar Servers
rust-mcp-sdk
A high-performance, asynchronous Rust SDK for building Model Context Protocol (MCP) servers and clients, supporting various transports and authentication methods.
rust-mcp-schema
Provides a type-safe Rust implementation of the Model Context Protocol (MCP) schema, enabling developers to build robust MCP servers and clients.
rust-mcp-server
Acts as a bridge for Large Language Models (LLMs) like GitHub Copilot to interact with and perform actions on local Rust development environments, automating tasks like building, testing, and analyzing code.
mcp-framework
A Rust framework for building AI agents with built-in Model Context Protocol (MCP) support, multi-LLM integration, and a web-based inspector for debugging.