Mpampa-MCP-Server
Verified Safeby Glover69
Overview
Enables AI assistants to browse products, retrieve details, and facilitate purchases from Mpampa Cereals through a Model Context Protocol (MCP) server.
Installation
bun startEnvironment Variables
- API_BASE_URL
- SPLIT_CODE_PROD
- PORT
Security Notes
The server uses environment variables for sensitive configurations like API_BASE_URL and SPLIT_CODE_PROD, which is good practice. The payment flow incorporates a two-step process with Paystack's Charge API and OTP verification, enhancing transaction security. The system correctly initiates payment *before* allowing the order to be completed, preventing AI manipulation of amounts post-charge. CORS is broadly enabled ('*'), which is typical for an MCP endpoint designed for diverse AI client integrations but could be a concern for direct browser access if sensitive operations lack proper authorization. Security heavily relies on the external backend API (`API_BASE_URL`) and Paystack's inherent security measures, which are outside the scope of this audit.
Similar Servers
mcp-server-typescript
Provides a Model Context Protocol (MCP) server to enable AI assistants to access DataForSEO's SEO data APIs through a standardized interface.
mcp-typescript-template
This project provides a foundational TypeScript template for developing remote Model Context Protocol (MCP) servers with robust tooling and best practices.
youdotcom-mcp-server
Provides AI agents with real-time access to web information, including search, AI-powered answers, and content extraction, through the Model Context Protocol.
mcp_server
This server implements the Model Context Protocol (MCP) to expose developer-defined tools as a HTTP API, specifically demonstrating a task creation tool.