MemoryGate
Verified Safeby PStryder
Overview
MemoryGate provides durable memory-as-a-service for AI agents, combining structured storage, semantic search, OAuth-based authentication, and lifecycle controls for retention and archiving.
Installation
uvicorn app.main:asgi_app --host 0.0.0.0 --port 8080Environment Variables
- DATABASE_URL
- OPENAI_API_KEY
- PSTRYDER_DESKTOP
- PSTRYDER_DESKTOP_SECRET
- PSTRYDER_DESKTOP_REDIRECT_URIS
- GOOGLE_CLIENT_ID
- GOOGLE_CLIENT_SECRET
- GITHUB_CLIENT_ID
- GITHUB_CLIENT_SECRET
- OAUTH_REDIRECT_BASE
- FRONTEND_URL
- REQUIRE_MCP_AUTH
Security Notes
The server implements strong authentication mechanisms including OAuth 2.0 + PKCE, API keys with bcrypt hashing, and an ASGI middleware to protect MCP endpoints, preventing unauthorized access and OpenAI API usage. Rate limiting and security headers are configured by default. However, a high-severity timing attack vulnerability exists in `oauth_discovery.py` for `OAUTH_CLIENT_SECRET` comparison (not using `secrets.compare_digest`), which could potentially aid in credential disclosure via side-channel attacks. Previous critical issues like in-memory OAuth state storage and API key prefix collisions appear to be resolved. No 'eval' or other obviously malicious patterns were found.
Similar Servers
memory-graph
A graph-based MCP server that provides intelligent memory capabilities for Claude Code, enabling persistent knowledge tracking, relationship mapping, and contextual development assistance.
memory-mcp-server-go
A Model Context Protocol server providing knowledge graph management capabilities for LLMs to maintain memory across conversations.
simple-memory-mcp
A Model Context Protocol (MCP) server for persistent memory storage, providing intelligent tagging and full-text search for AI assistants to remember context across conversations.
agent-hivemind
Provides distributed memory storage and synchronization for Claude and AI agents, offering tools for storing, searching, and retrieving memories, managing workflows, and securing credentials across multiple machines.