mcp-demo-server
Verified Safeby RolleRocker
Overview
Demonstrates the Model Context Protocol (MCP) capabilities by offering tools for arithmetic, note management, weather queries, and file system operations, along with dynamic resources and prompt templates.
Installation
java -jar build/libs/mcp-demo-server.jarSecurity Notes
The server implements file system operations (`read_file`, `write_file`, `list_directory`). Path traversal attempts ('..') and access to known sensitive system directories (`/etc`, `/sys`, `/proc`) are explicitly mitigated by the `FilePathValidator` in the domain layer. No hardcoded secrets or direct remote code execution vulnerabilities were identified. The external weather API (Open-Meteo) is free and does not require an API key. File I/O operations inherently carry risk, but the explicit validations enhance safety.
Similar Servers
keyboard-local
Enables AI clients to execute real-world tasks through connected third-party tools (APIs, CLIs, SDKs) with human approval, leveraging a secure GitHub Codespace environment.
1mcp
Orchestrates AI agent tool calls by executing JavaScript/TypeScript code in a WASM sandbox, reducing LLM context bloat and managing security policies.
terry-form-mcp
Enables AI assistants to securely execute Terraform commands and leverage LSP-driven code intelligence for infrastructure-as-code management.
mcp-the-force
A protocol-based AI server for integrating multiple AI providers and tools, enabling multi-model collaboration, advanced context management, and end-to-end user workflows from a CLI client.