my_mcp_server
by Gegelascience
Overview
A Next.js application serving as an adapter for the Model Context Protocol, exposing tools for querying public NPM package information and Ile-de-France transport traffic data.
Installation
npm run devSecurity Notes
The `idfTraficInfo` API endpoint receives an `apikey` as a URL path parameter. This API key is directly used in HTTP headers for requests to `https://prim.iledefrance-mobilites.fr/marketplace`. Critically, the `createMcpHandler` is configured with a `basePath` that embeds this `apikey` directly into the adapter's URL (e.g., `/api/idfTraficInfo/YOUR_API_KEY/`). This exposes the sensitive API key in URLs, which can be logged by various systems (proxies, web servers, client history) and potentially intercepted. Additionally, the `apikey` is logged to the console, further increasing information leakage risk. There is no evident validation or sanitization of the `apikey` parameter itself.
Similar Servers
mcp-openapi-server
Exposes OpenAPI endpoints as Model Context Protocol (MCP) tools, enabling Large Language Models (LLMs) to discover and interact with REST APIs through a standardized protocol.
toolhive-cloud-ui
A Next.js application for visualizing Model Context Protocol (MCP) servers and providing easy URL copying for integration with AI agents.
geocontext
Provides spatial context and geospatial services from the IGN Géoplateforme to Large Language Models (LLMs) through a Model Context Protocol (MCP) server.
MCP-para-todo
An educational MCP server that connects language models with external tools in real-time, focusing on providing real-world context and extending LLM capabilities.