gemini-mcp
Verified Safeby LanceVCS
Overview
Provides multi-turn conversational support for the Gemini CLI, allowing a client application (like Claude Code) to maintain context across multiple interactions with Gemini.
Installation
node index.jsEnvironment Variables
- GOOGLE_API_KEY
Security Notes
The server spawns the 'gemini' CLI process using `child_process.spawn`. Critical security mitigations include: 1) Explicit whitelisting of 'SAFE_TOOLS' which notably *excludes* dangerous commands like `run_shell_command`, `browser_run_code`, `browser_evaluate`, etc. 2) The `gemini` CLI is run with the `--sandbox` flag, which restricts file system access. 3) User prompts are passed as arguments to the `gemini` CLI, preventing direct shell injection by using an array of arguments rather than a single concatenated string. No 'eval' or direct arbitrary code execution is present within the MCP server's logic itself. The primary remaining risk lies with potential vulnerabilities within the Gemini CLI itself, particularly how it processes input when run with the specified arguments and sandbox restrictions.
Similar Servers
gemini-cli
Provides an A2A (Agent-to-Agent) server for the Gemini CLI, enabling external agents to interact with and utilize the CLI's capabilities for executing tasks and accessing tools.
gemini-mcp-tool
A Model Context Protocol (MCP) server that enables AI assistants to interact with the Google Gemini CLI for comprehensive code and file analysis, structured edit suggestions, and creative brainstorming.
voicemode
Provides robust voice interaction capabilities for Model Context Protocol (MCP) agents, enabling real-time speech-to-text (STT) and text-to-speech (TTS) functionalities, with support for local and cloud-based services. It also includes tools for audio playback (DJ), service management, and diagnostics.
geminimcp
Integrates Google's Gemini CLI with Claude Code as an MCP server for AI-assisted programming, particularly strong in frontend design.