ibmi-mcp-server
Verified Safeby IBM
Overview
The IBM i MCP Server acts as a central tool provider, enabling AI agents to interact with IBM i systems using natural language for system administration, performance monitoring, database operations, and security analysis.
Installation
npx ibmi-mcp-server --transport httpEnvironment Variables
- DB2i_HOST
- DB2i_USER
- DB2i_PASS
Security Notes
The server employs robust security measures: It uses environment variables for sensitive credentials (DB2i_HOST, DB2i_USER, DB2i_PASS), preventing hardcoded secrets. SQL execution is rigorously validated against a list of forbidden keywords (e.g., 'TRUNCATE', 'DELETE', 'DROP') using both AST parsing and regex to prevent SQL injection and dangerous operations. The system supports multiple authentication strategies (IBMiToken, JWT, OAuth) with configurable key paths and token expiry. It also implements rate limiting and input sanitization, and explicitly flags potentially destructive tools with `destructiveHint: true` for agent awareness. These comprehensive measures make it highly secure for its intended purpose of exposing IBM i services to AI agents.
Similar Servers
mcp
A central registry and collection of Model Context Protocol (MCP) servers and tools designed to enable AI agents to interact with various IBM and third-party resources and applications.
boilerplate-mcp-server
Provides a TypeScript boilerplate for developing custom Model Context Protocol (MCP) servers, with an IP geolocation tool as an example.
mcp-agent-kit
Simplifies the creation and management of AI agents, chatbots, and Model Context Protocol (MCP) servers with various LLM providers.
mcpac
Empowers AI agents to interact with Model Context Protocol (MCP) servers by generating type-safe TypeScript/JavaScript interfaces for their tools and providing a secure execution environment.