Back to Home
Knuckles-Team icon

repository-manager

by Knuckles-Team

View Source

Overview

Manages Git repositories (cloning, pulling, status, configuration) and serves as an Agentic AI tool for interacting with codebases, enabling semantic search and Python script execution.

Installation

Run Command
docker run -d --name repository-manager-mcp -p 8004:8004 -e HOST=0.0.0.0 -e PORT=8004 -e TRANSPORT=http -e AUTH_TYPE=none -e EUNOMIA_TYPE=none -v development:/root/Development knucklessg1/repository-manager:latest

Environment Variables

  • HOST
  • PORT
  • TRANSPORT
  • REPOSITORY_MANAGER_DIRECTORY
  • REPOSITORY_MANAGER_THREADS
  • REPOSITORY_MANAGER_DEFAULT_BRANCH
  • MCP_URL
  • PROVIDER
  • MODEL_ID
  • OPENAI_BASE_URL
  • OPENAI_API_KEY
  • ANTHROPIC_API_KEY
  • GEMINI_API_KEY
  • GOOGLE_API_KEY
  • HF_TOKEN
  • DEBUG
  • ENABLE_WEB_UI
  • MCP_CONFIG
  • SKILLS_DIRECTORY
  • PROJECTS_FILE
  • SMART_CODING_MCP_ENABLE
  • PYTHON_SANDBOX_ENABLE
  • ENABLE_DELEGATION
  • AUDIENCE
  • DELEGATED_SCOPES
  • OIDC_CLIENT_ID
  • OIDC_CLIENT_SECRET
  • OIDC_CONFIG_URL
  • FASTMCP_SERVER_AUTH_JWT_JWKS_URI
  • FASTMCP_SERVER_AUTH_JWT_ISSUER
  • FASTMCP_SERVER_AUTH_JWT_AUDIENCE
  • FASTMCP_SERVER_AUTH_JWT_ALGORITHM
  • FASTMCP_SERVER_AUTH_JWT_PUBLIC_KEY
  • FASTMCP_SERVER_AUTH_JWT_REQUIRED_SCOPES
  • OPENAPI_USERNAME
  • OPENAPI_PASSWORD
  • OPENAPI_CLIENT_ID
  • OPENAPI_CLIENT_SECRET

Security Notes

The server's 'git_action', 'run_command', and 'text_editor' tools utilize 'subprocess.run(command, shell=True)', which is highly vulnerable to command injection if input commands are not meticulously sanitized. This allows arbitrary code execution on the host system. While the server supports various authentication methods (JWT, OAuth, OIDC), using 'AUTH_TYPE=none' or misconfiguring authentication leaves it exposed. The 'text_editor' tool can read, create, and modify arbitrary files on the local filesystem, posing a significant risk if an attacker gains access or injects malicious commands. Default LLM API keys/base URLs are for local models and not production secrets, but misconfiguration could lead to unintended exposure.

Similar Servers

git-mcp-server

156

A Model Context Protocol (MCP) server that provides Git-specific tools and resources for AI/LLM agents to interact with version control systems.

Other
8
$Medium

tinystruct-mcp

9

A modular Java server providing a JSON-RPC interface for file system and Git/GitHub operations, aimed at automation and DevOps workflows.

Other
2
$Medium

dev-kit-mcp-server

6

A Model Context Protocol (MCP) server targeted for agent development tools, providing scoped authorized operations in the root project directory.

Other
7
$Medium

mcp-server-for-Github

4

Provides comprehensive GitHub workflow automation for AI-powered development teams, including Actions monitoring, advanced PR management, intelligent code search, and complete file management.

Other
9
$Low

Stats

Interest Score32
Security Score3
Cost ClassMedium
Avg Tokens1500
Stars2
Forks0
Last Update2026-01-19

Tags

GitRepository ManagementAI AgentMCP ServerDevelopment ToolsCodebase AnalysisAutomation