blink
Verified Safeby GitHubNexon
Overview
An AI-powered agentic command-based assistant that can read, create, and modify code files using Replicate's Claude models.
Installation
python main.pyEnvironment Variables
- REPLICATE_API_TOKEN
- MODEL
- WORKSPACE_ROOT
Security Notes
The server demonstrates strong security practices, particularly in API token handling (in-memory, cleared on exit, never saved to disk, validated on startup) and file system interactions (using `pathvalidate.sanitize_filepath` and explicit path resolution to the `workspace_root`). There is no use of `eval` or `exec` on user-controlled input, mitigating common code injection risks. All file operations are channeled through a robust file handler, reducing path traversal vulnerabilities. The primary remaining risk is the inherent nature of AI code generation, where a malicious prompt could potentially lead the AI to generate insecure code, but the server's implementation itself is secure.
Similar Servers
DesktopCommanderMCP
The Desktop Commander MCP server enables AI to interact with the local desktop environment, managing files, executing terminal commands, and controlling processes for code and text manipulation, data analysis, and task automation.
wcgw
Empowering chat applications to code, build, and run on the local machine using an MCP server with tightly integrated shell and code editing tools.
code-assistant
Provides a standardized interface for AI coding agents to communicate with code editors (Clients) using JSON-RPC 2.0 over stdio, supporting autonomous code analysis and modification.
responsible-vibe-mcp
Guides AI coding agents through structured engineering workflows and manages long-term project memory and documentation for various development tasks.