mcp-server
by M0hitMehra
Overview
This server acts as a Model Context Protocol (MCP) provider, exposing MongoDB database operations (CRUD, listing databases/collections, and advanced identifier-aware search) as callable tools for AI agents.
Installation
tsx server.tsEnvironment Variables
- MONGODB_URI
- MONGO_DB_NAME
- GEMINI_API_KEY
- TRANSPORT
- HTTP_PORT
- DANGEROUSLY_OMIT_AUTH
Security Notes
CRITICAL: Hardcoded production MongoDB connection URI with username and password (`finconic-dev:f0WW8QlcQxZwErVq`) is present in both `dserver.js` and `server.ts`. The server exposes an unauthenticated HTTP API (if `TRANSPORT=http` or `HTTP_PORT` is set) with permissive CORS (`*`), allowing any client to invoke MongoDB CRUD and query tools with arbitrary arguments, directly leveraging these hardcoded, high-privileged credentials. The 'query-documents' tool's filter parameter accepts `z.record(z.any())`, enabling arbitrary MongoDB filter objects, which is extremely dangerous without robust authentication and authorization.
Similar Servers
mcp-server-typescript
This server acts as a Model Context Protocol (MCP) gateway, enabling AI assistants to interact with DataForSEO APIs for various SEO data, including keyword research, SERP analysis, backlink monitoring, and on-page optimization.
McpServerAspNetCore
A minimal ASP.NET Core server implementation for the Model Context Protocol (MCP) to expose tools for AI agents/assistants.
mcp_server_ts
This is a Node.js server implementing a single tool ('create-user') for the Model Context Protocol (MCP), primarily for local integration via standard I/O.
personal-mcp
Provides an interface for AI agents to manage iCloud calendar events.