github-readme-mcp
Verified Safeby Raghavvram
Overview
Provides a local Model Context Protocol (MCP) server for fetching README.md files from public GitHub repositories.
Installation
./build/index.jsSecurity Notes
The server's functionality is limited to fetching public README.md files. No 'eval', obfuscation, or hardcoded secrets were found. The 'repoName' input is directly used to construct a URL to raw.githubusercontent.com, which is generally safe for content delivery and resists simple path traversal attacks to arbitrary files outside its scope. The primary risk would be how the consuming application handles the returned markdown content, but the server itself does not introduce direct execution vulnerabilities. The server makes an assumption of 'main' as the default branch, which is a functional limitation rather than a security flaw.
Similar Servers
git-mcp-server
A Model Context Protocol (MCP) server that provides Git-specific tools and resources for AI/LLM agents to interact with version control systems.
gh-mcp
A GitHub CLI extension to seamlessly run the github-mcp-server in a Docker container using existing `gh` authentication.
mcp-github
This server allows AI models to interact with the GitHub API through the Model Context Protocol (MCP), providing tools for repository management, code search, issue tracking, and pull request workflows.
GitHub_MCP_Server
Provides Model Context Protocol (MCP) access to GitHub documentation via API for AI agents.