lerian-mcp-server
Verified Safeby LerianStudio
Overview
Provides AI assistants with comprehensive, up-to-date documentation, learning resources, and SDK code generation for Lerian's financial ledger (Midaz), observability (Tracer), workflow (Flowker), and analytics (Reporter) products.
Installation
npx -y @lerianstudio/lerian-mcp-server@latestEnvironment Variables
- NODE_ENV
- DEBUG
- FORCE_COLOR
- npm_config_user_agent
- LERIAN_LOG_LEVEL
- LERIAN_DETAILED_LOGS
- LERIAN_CONSOLE_LOGS
- LERIAN_DOCS_URL
- MIDAZ_LOG_LEVEL
- MIDAZ_DETAILED_LOGS
- MIDAZ_CONSOLE_LOGS
- MIDAZ_DOCS_URL
- ERROR_LOGGING
- PERFORMANCE_TRACKING
- METRICS_FLUSH_ENABLED
- CURSOR_SECRET
- CACHE_ENCRYPTION_KEY
- AUDIT_LOGGING
- HOME
- PROGRAMDATA
- TERM_PROGRAM
- EDITOR
- VSCODE_PID
- CURSOR_PID
- MIDAZ_BACKEND_ONBOARDING_URL
- MIDAZ_BACKEND_TRANSACTION_URL
- MIDAZ_API_KEY
- MIDAZ_ONBOARDING_API_KEY
- MIDAZ_TRANSACTION_API_KEY
- MIDAZ_BACKEND_TIMEOUT
- MIDAZ_BACKEND_RETRIES
- SECURITY_SCAN_ENABLED
- SECURITY_SCAN_SCHEDULE
- SECURITY_AUDIT_WEBHOOK_URL
- RATE_LIMIT_MAX_REQUESTS
- RATE_LIMIT_WINDOW_MS
- SENTRY_DSN
- DATADOG_API_KEY
- HEALTH_CHECK_INTERVAL
- HEALTH_CHECK_TIMEOUT
- ENABLE_SECURITY_HEADERS
- ENABLE_REQUEST_VALIDATION
- ENABLE_AUDIT_LOGGING
- SESSION_SECRET
- SESSION_TIMEOUT
- BACKUP_ENCRYPTION_KEY
- BACKUP_SCHEDULE
- BACKUP_RETENTION_DAYS
Security Notes
The server explicitly operates in 'Documentation-Only Mode', meaning it does NOT connect to Lerian backend APIs, significantly reducing external attack surface. It utilizes `child_process.spawn` for development (`dev-server.js`) and for its `npx` execution wrapper (`bin/lerian-mcp-server.js`), which is standard and justified. Sensitive data like `CURSOR_SECRET` and `CACHE_ENCRYPTION_KEY` are either provided via environment variables or securely auto-generated and stored with `0o600` permissions. Comprehensive input validation (`zod`), output sanitization, rate limiting, and audit logging features are implemented (`security.js`, `output-sanitizer.js`, `config-validator.js`, `error-monitoring.js`). The `config-security.js` module enforces localhost-only backend URLs, further enhancing security for configurations that might still hint at backend connectivity. Overall, a strong focus on security is evident.
Similar Servers
mcphub
An orchestration hub that aggregates, manages, and routes Model Context Protocol (MCP) servers and their tools, providing a centralized interface, user management, OAuth 2.0 authorization server capabilities, and AI-powered tool discovery and routing.
mcp-language-server
Serves as an MCP (Model Context Protocol) gateway, enabling LLMs to interact with Language Servers (LSPs) for codebase navigation, semantic analysis, and code editing operations.
jetski
Jetski is an open-source platform providing analytics, authentication, and simplified client setup for Model Context Protocol (MCP) servers by acting as a proxy.
mcp-aktools
This MCP server provides real-time and historical financial data for stocks and cryptocurrencies, offering search, detailed information retrieval, market overviews, news, and analysis capabilities.