mcp-accessibility-scanner
Verified Safeby JustasMonkev
Overview
Automated web accessibility scanning and browser automation for LLMs, enabling WCAG compliance checks, screenshot capture, and detailed accessibility reports.
Installation
npx mcp-accessibility-scannerEnvironment Variables
- PLAYWRIGHT_MCP_ALLOWED_ORIGINS
- PLAYWRIGHT_MCP_BLOCKED_ORIGINS
- PLAYWRIGHT_MCP_BROWSER
- PLAYWRIGHT_MCP_HEADLESS
- PLAYWRIGHT_MCP_PORT
- PLAYWRIGHT_MCP_OUTPUT_DIR
- PLAYWRIGHT_MCP_SAVE_SESSION
- PLAYWRIGHT_MCP_SAVE_TRACE
- PLAYWRIGHT_MCP_USER_DATA_DIR
- PLAYWRIGHT_MCP_NAVIGATION_TIMEOUT
- PLAYWRIGHT_MCP_DEFAULT_TIMEOUT
- PLAYWRIGHT_MCP_IMAGE_RESPONSES
Security Notes
The server's core functionality involves browser automation using Playwright, which inherently allows navigation to arbitrary URLs and execution of JavaScript within the browser context (e.g., via the `browser_evaluate` tool). While this is an intended feature and not a vulnerability in the server itself, it means that the LLM controlling this server can perform actions with significant implications if malicious prompts are injected or if the LLM is untrusted. Configuration options for network origin control (`allowedOrigins`, `blockedOrigins`) are provided, which is a good mitigation for external network risks. No explicit hardcoded secrets or RCE vulnerabilities outside of the browser context were found, assuming the Playwright executable path is not maliciously overridden.
Similar Servers
playwright-mcp
A Model Context Protocol (MCP) server enabling LLMs to automate browser interactions through structured accessibility snapshots, bypassing traditional vision models.
mcp-server-browserbase
Provides cloud browser automation capabilities, enabling LLMs to interact with web pages, take screenshots, extract information, and perform automated actions.
fetcher-mcp
Fetch web page content using a Playwright headless browser, capable of handling dynamic JavaScript, intelligent content extraction, and parallel URL processing.
fetcher-mcp
Fetches web page content using Playwright headless browser for AI-powered content retrieval.