mobile-dev-mcp
Verified Safeby GGBoi360
Overview
Provides a read-only MCP server for observing and debugging mobile applications (Android and iOS) by giving a large language model like Claude direct access to device screenshots, logs, and UI hierarchy.
Installation
claude mcp add mobile-dev -- npx @ggboi360/mobile-dev-mcpSecurity Notes
The server's core functionality relies on executing external commands (ADB, xcrun). However, robust input validation is implemented for all user-provided parameters (device IDs, package names, UDIDs, log filters, ports) before they are used in `execAsync` calls, significantly mitigating shell injection risks. The system strictly adheres to a 'read-only' design, meaning it does not perform actions that modify device state (e.g., taps, installs, inputs), which is verified in tests and documentation. The license cache uses HMAC signing with a machine-specific secret to prevent tampering. While inherent risks exist with running external binaries and relying on an external license validation API, these are well-mitigated and standard for this type of tool.
Similar Servers
claude-code-mcp
Acts as an MCP server to enable LLMs to run Claude Code CLI in one-shot mode, bypassing permissions for complex coding, file system, Git, and terminal operations.
claude-historian-mcp
Provides an MCP server for Claude Code to search and retrieve insights from conversation history, including past solutions, file changes, and tool usage patterns.
adbfriend
Enables AI agents to manage Android devices, sync files, configure for tests, and perform package operations via ADB for development and testing.
mcpick
Manages MCP server configurations for Claude Code to optimize context usage and performance by enabling/disabling servers, creating backups, and using profiles.