Back to Home
Knuckles-Team icon

systems-manager

by Knuckles-Team

View Source

Overview

This project provides a multi-OS system management CLI and an MCP server for automating system maintenance, application management, and configuration via AI or automation systems.

Installation

Run Command
docker run -d --name systems-manager-mcp -p 8004:8004 -e HOST=0.0.0.0 -e PORT=8004 -e TRANSPORT=http -e AUTH_TYPE=none -e EUNOMIA_TYPE=none knucklessg1/systems-manager:latest

Environment Variables

  • HOST
  • PORT
  • TRANSPORT
  • ENABLE_DELEGATION
  • AUDIENCE
  • DELEGATED_SCOPES
  • OIDC_CLIENT_ID
  • OIDC_CLIENT_SECRET
  • OIDC_CONFIG_URL
  • FASTMCP_SERVER_AUTH_JWT_JWKS_URI
  • FASTMCP_SERVER_AUTH_JWT_ISSUER
  • FASTMCP_SERVER_AUTH_JWT_AUDIENCE
  • FASTMCP_SERVER_AUTH_JWT_ALGORITHM
  • FASTMCP_SERVER_AUTH_JWT_PUBLIC_KEY
  • FASTMCP_SERVER_AUTH_JWT_REQUIRED_SCOPES
  • SYSTEMS_MANAGER_SILENT
  • SYSTEMS_MANAGER_LOG_FILE
  • PROVIDER
  • MODEL_ID
  • OPENAI_BASE_URL
  • OPENAI_API_KEY
  • MCP_URL
  • MCP_CONFIG
  • SKILLS_DIRECTORY
  • ENABLE_WEB_UI
  • OPENAPI_USERNAME
  • OPENAPI_PASSWORD
  • OPENAPI_CLIENT_ID
  • OPENAPI_CLIENT_SECRET
  • ANTHROPIC_API_KEY
  • GEMINI_API_KEY
  • HF_TOKEN

Security Notes

The server exposes highly privileged 'run_command' and 'text_editor' tools. The 'run_command' tool can execute arbitrary commands on the host system, potentially with elevated (root/administrator) privileges and with 'shell=True', making it vulnerable to command injection if input is not carefully controlled, or allowing a malicious actor to run any command. The 'text_editor' tool allows arbitrary file creation, viewing, and modification, which can lead to system compromise or data loss. The default authentication type for the MCP server ('AUTH_TYPE=none' in docker-compose and CLI args) is highly insecure, allowing any client to invoke these powerful and destructive tools without authentication. While advanced authentication (JWT, OIDC) and authorization (Eunomia) are supported, they are not enabled by default, making initial deployments extremely risky.

Similar Servers

cosmotop

48

System monitoring and information exposure via MCP protocol.

Other
3
$High

mcp-cli

11

A command-line interface tool for managing Model Context Protocol (MCP) server configuration files across various AI tools.

Other
9
$Low

llms

10

A centralized configuration and documentation management system for LLMs, providing tools for building skills, commands, agents, prompts, and managing MCP servers across multiple LLM providers.

8
$High

git-netai

9

Provides a unified, asynchronous Model Context Protocol (MCP) server for managing multi-platform network infrastructure (routers, firewalls, WiFi, monitoring, data centers) via a single AI-accessible API.

Other
8
$Medium

Stats

Interest Score32
Security Score1
Cost ClassLow
Stars2
Forks1
Last Update2026-01-19

Tags

Multi-OSSystem ManagementAutomationCLIAI Integration