mcp-forge
Verified Safeby KennyVaneetvelde
Overview
A command-line interface (CLI) tool for scaffolding new Model Context Protocol (MCP) servers with various configurable features and transports.
Installation
mcp-forge new my-serverSecurity Notes
The `mcp-forge` tool itself, which is a project generator, does not exhibit direct security vulnerabilities in its source code (e.g., no `eval`, obfuscation, or unmanaged network access). However, the documentation for *generated* projects highlights an example `CalculatorTool` that uses `eval(input_data.expression)`. This specific pattern in generated code is a critical security vulnerability, allowing arbitrary code execution if not properly sanitized or replaced by a safer alternative. Users of the generated servers must be aware of and mitigate such risks in the generated examples.
Similar Servers
awesome-mcp-servers
A central directory for discovering and referencing various Model Context Protocol (MCP) servers, clients, and frameworks for AI agents.
mcp-dblp
Provides Large Language Models (LLMs) with structured access to the DBLP computer science bibliography for searching publications, processing citations, and exporting BibTeX entries.
mcp-server-weixin
Provides a service for AI systems to send templated messages to WeChat public account users.
askari-patrol-mcp-server
AI-powered security management assistant for WhatsApp and CLI, interacting with the Askari Patrol / GuardTour API.