ChatPie
Verified Safeby GavinZha0
Overview
ChatPie is a modern AI-driven chat platform designed to facilitate seamless human-AI collaboration, upgrading AI from a simple tool to a true partner for natural communication and efficient task completion.
Installation
docker compose up -dEnvironment Variables
- BETTER_AUTH_SECRET
- POSTGRES_URL
- OPENAI_API_KEY
- ANTHROPIC_API_KEY
- EXA_API_KEY
- GOOGLE_GENERATIVE_AI_API_KEY
- REDIS_URL
- FILE_STORAGE_TYPE
- FILE_STORAGE_S3_BUCKET
- FILE_STORAGE_S3_REGION
- FILE_STORAGE_S3_ENDPOINT
- FILE_STORAGE_S3_PUBLIC_BASE_URL
- MCP_CONFIG_PATH
- MCP_MAX_TOTAL_TIMEOUT
- DISABLE_SIGN_UP
- NOT_ALLOW_ADD_MCP_SERVERS
- GITHUB_CLIENT_ID
- GITHUB_CLIENT_SECRET
- GOOGLE_CLIENT_ID
- GOOGLE_CLIENT_SECRET
- MICROSOFT_CLIENT_ID
- MICROSOFT_CLIENT_SECRET
- MICROSOFT_TENANT_ID
Security Notes
The server utilizes environment variables for sensitive configurations, employs an ORM (Drizzle) for database interactions to mitigate SQL injection risks, and implements robust role-based access control for administrative features. Authentication is handled via 'better-auth'. However, inherent risks stem from powerful AI tools: - In-browser code execution (JavaScript via `new Function`, Python via Pyodide) is sandboxed client-side, but client-side vulnerabilities are possible. - The HTTP request tool allows LLMs to make arbitrary network requests, which poses potential SSRF or data exfiltration risks if not carefully constrained by prompt engineering. - Connections to external MCP servers introduce dependency risks on those servers' security practices. - File uploads require robust validation to prevent malicious content.
Similar Servers
wcgw
Empowering chat applications to code, build, and run on your local machine by providing tightly integrated shell and code editing tools.
AgentChat
An AI Agent platform for building, deploying, and managing AI assistants that integrate various tools, Large Language Models (LLMs), knowledge bases (RAG), and Model Context Protocol (MCP) servers.
mcp-chat
An AI chat application that leverages Pipedream's Model Context Protocol (MCP) to integrate with thousands of APIs and perform tool-based actions, serving as a reference for building powerful AI chat solutions.
kindly-web-search-mcp-server
Provides web search with robust, LLM-optimized content retrieval from various sources (StackExchange, GitHub, Wikipedia, arXiv, and general webpages) for AI coding assistants.