mcp-forge
Verified Safeby KennyVaneetvelde
Overview
A command-line interface (CLI) tool for scaffolding new Model Context Protocol (MCP) servers with various configurable features and transports.
Installation
mcp-forge new my-serverSecurity Notes
The `mcp-forge` tool itself, which is a project generator, does not exhibit direct security vulnerabilities in its source code (e.g., no `eval`, obfuscation, or unmanaged network access). However, the documentation for *generated* projects highlights an example `CalculatorTool` that uses `eval(input_data.expression)`. This specific pattern in generated code is a critical security vulnerability, allowing arbitrary code execution if not properly sanitized or replaced by a safer alternative. Users of the generated servers must be aware of and mitigate such risks in the generated examples.
Similar Servers
awesome-mcp-servers
A comprehensive directory for discovering various Model Context Protocol (MCP) servers, clients, and frameworks across different domains, facilitating integration with AI assistants.
mcp-dblp
Provides a Model Context Protocol (MCP) server for Large Language Models (LLMs) to access, search, and manage publications and BibTeX entries from the DBLP computer science bibliography database.
mcp-server-weixin
Provides a service for AI systems to send templated messages to WeChat public account users.
askari-patrol-mcp-server
AI-powered security management assistant for WhatsApp and CLI, interacting with the Askari Patrol / GuardTour API.