claude-team
Verified Safeby Martian-Engineering
Overview
Orchestrate multiple AI coding sessions (Claude Code, Codex) via iTerm2, enabling parallel development, isolated work environments, and streamlined task management.
Installation
uv run python -m claude_team_mcpEnvironment Variables
- CLAUDE_TEAM_COMMAND
- CLAUDE_TEAM_CODEX_COMMAND
- CLAUDE_TEAM_PROJECT_DIR
Security Notes
The server's core logic for iTerm2 control and filesystem operations (like git worktrees and settings files) appears well-controlled. It does not use `eval` or other obvious dynamic code execution vulnerabilities within its own Python code. The primary security considerations stem from its intended function: orchestrating AI agents that execute commands in a terminal. The `dangerously_skip_permissions` flag explicitly signals a security tradeoff for agent autonomy. Environment variables like `CLAUDE_TEAM_COMMAND` and `CLAUDE_TEAM_CODEX_COMMAND` allow users to configure alternative CLI tools, which could introduce risks if misconfigured to run malicious binaries. However, these are user-configurable inputs, and the server itself facilitates rather than introduces these command executions directly.
Similar Servers
claude-code-mcp
Acts as an MCP server to enable LLMs to run Claude Code CLI in one-shot mode, bypassing permissions for complex coding, file system, Git, and terminal operations.
tmux-mcp
Enables AI assistants (like Claude Desktop) to interact with, control, and observe tmux terminal sessions by providing tools for session management and command execution.
consult-llm-mcp
An MCP server that allows AI agents like Claude Code to consult stronger, more capable AI models (e.g., GPT-5.2, Gemini 3.0 Pro) for complex code analysis, debugging, and architectural advice.
mcpick
Manages MCP server configurations for Claude Code to optimize context usage and performance by enabling/disabling servers, creating backups, and using profiles.