mcp-chat
Verified Safeby PipedreamHQ
Overview
An AI chat application that leverages Pipedream's Model Context Protocol (MCP) to integrate with thousands of APIs and perform tool-based actions, serving as a reference for building powerful AI chat solutions.
Installation
pnpm devEnvironment Variables
- PIPEDREAM_CLIENT_ID
- PIPEDREAM_CLIENT_SECRET
- PIPEDREAM_PROJECT_ID
- PIPEDREAM_PROJECT_ENVIRONMENT
- AUTH_SECRET
- GOOGLE_CLIENT_ID
- GOOGLE_CLIENT_SECRET
- OPENAI_API_KEY
- ANTHROPIC_API_KEY
- GOOGLE_GENERATIVE_AI_API_KEY
- EXA_API_KEY
- POSTGRES_URL
- MCP_SERVER
- EXTERNAL_USER_ID
- DISABLE_AUTH
- DISABLE_PERSISTENCE
- NEXT_PUBLIC_COOKIEBOT_ID
- NEXT_PUBLIC_DATADOG_APPLICATION_ID
- NEXT_PUBLIC_DATADOG_CLIENT_TOKEN
Security Notes
The application employs best practices such as using `process.env` for environment variables, `bcrypt-ts` for password hashing (if credentials login is enabled), and `zod` for input validation on file uploads, storing them via `@vercel/blob`. Auth.js provides a robust authentication framework. A minor concern is `dangerouslyAllowSVG: true` in `next.config.ts` which could pose an XSS risk if SVGs from untrusted sources were allowed, though `remotePatterns` are specified to restrict domains. `ignoreBuildErrors: true` in TypeScript config is a build-time warning and not a direct security vulnerability. Overall, the security posture is good for its functionality.
Similar Servers
mcp-openapi-server
A Model Context Protocol (MCP) server that exposes OpenAPI endpoints as MCP tools, along with optional support for MCP prompts and resources, enabling Large Language Models to interact with REST APIs.
mcp-chat-client
A modern chat client that integrates with Model Context Protocol (MCP) servers to provide AI-powered conversations with access to various tools and resources.
dx-mcp-server
Empowers AI applications to interact with and query a user-provided Postgres database via the Model Context Protocol (MCP).
fastchat-mcp
A Python client for integrating Language Models with Model Context Protocol (MCP) servers, allowing natural language interaction with external tools, resources, and prompts.