FerrumMCP

Name: FerrumMCP
Author: Eth3rnit3

Verified Safe

by Eth3rnit3

View Source

Overview

A browser automation server for AI assistants to interact with web pages through a standardized Model Context Protocol (MCP) interface.

Installation

Run Command

docker run --security-opt seccomp=unconfined -p 3000:3000 eth3rnit3/ferrum-mcp:latest

Environment Variables

BROWSER_HEADLESS
BROWSER_TIMEOUT
MCP_SERVER_HOST
MCP_SERVER_PORT
LOG_LEVEL
MAX_CONCURRENT_SESSIONS
RATE_LIMIT_ENABLED
RATE_LIMIT_MAX_REQUESTS
RATE_LIMIT_WINDOW
BROWSER_<ID>
USER_PROFILE_<ID>
BOT_PROFILE_<ID>
BROWSER_PATH
BOTBROWSER_PATH
BOTBROWSER_PROFILE
WHISPER_PATH
WHISPER_MODEL
WHISPER_LANGUAGE
DOCKER

Security Notes

The server's core functionality includes tools for executing arbitrary JavaScript (e.g., `execute_script`, `evaluate_js`) and navigating to any URL (`navigate`). This design relies on a trusted client environment as explicitly stated in the `SECURITY.md`. The `find_by_text` tool's XPath escaping prevents simple injection, but `SECURITY.md` mentions 'Partial escaping' and 'Full XPath sanitization planned for v1.1', indicating potential edge cases. The server implements session limits and HTTP rate limiting, mitigating some resource exhaustion and DoS risks. The Docker images run as a non-root user. Overall, the server is designed for a trusted, agent-controlled environment; exposing it to untrusted users without additional security layers (e.g., authentication, network segmentation) is a significant risk.

Similar Servers

kom

134

Manages Kubernetes clusters and resources, providing an SDK-level wrapper for kubectl/client-go with Multi-Cluster Proxy (MCP) server capabilities.

Development

$Medium

mcp

This MCP server advises development agents on modern and performant best practices by identifying inefficient or outdated npm packages and serving migration documentation.

Web & APIs

$Low