MCP
by IdrissPro
Overview
A Python server providing a Multi-Component Protocol (MCP) interface for AI agents to interact with financial tools via JSON-RPC over WebSocket or STDIO.
Installation
docker run --rm -p 8765:8765 python-mcp-serverSecurity Notes
The server's core (`mcp_core.py`) uses `jsonschema` for input validation, which is good. No direct `eval` or `exec` on user input is observed in the provided code. However, the `server_stdio.py` configuration registers tools like `list_files` and `search_in_files` (from an unseen `tools.py` module). The provided JSON schemas for these tools only validate type (`string` for `path`) and do not prevent path traversal (`../`) or access to sensitive system files. Without strict input sanitization or robust sandboxing of the tool execution environment, this could lead to information disclosure or arbitrary file reading vulnerabilities. The `README.md` explicitly notes that for production, authentication, TLS, stricter sandboxing, and rate-limiting are required, acknowledging these security limitations.
Similar Servers
mem-agent-mcp
Provides a Model Context Protocol (MCP) server for a memory agent, enabling LLMs to interact with an Obsidian-like memory system for contextual assistance and RAG.
mcpc
Build and compose agentic Model Context Protocol (MCP) servers and tools, enabling AI assistants to discover, integrate, and orchestrate other MCP servers for complex tasks.
mcp-servers
An MCP server for managing files in Google Cloud Storage, supporting CRUD operations (save, get, search, delete) and exposing files as resources.
zeromcp
A minimal, pure Python Model Context Protocol (MCP) server for exposing tools, resources, and prompts via HTTP/SSE and Stdio transports.