neva
Verified Safeby RomanEmreis
Overview
Provides a blazingly fast and easily configurable Model Context Protocol (MCP) server and client SDK for Rust, primarily for integrating LLMs with external tools and resources.
Installation
JWT_SECRET=a-string-secret-at-least-256-bits-long cargo run --manifest-path examples/sampling/server/Cargo.tomlEnvironment Variables
- JWT_SECRET
Security Notes
The server implements bearer token authentication and role-based access control (RBAC) for tools, resources, and prompts, as configured via `AuthConfig` in `http/server/auth_config.rs`. Input validation for structured data, specifically for elicitation requests, is handled explicitly. The framework's use of Rust's proc-macros for defining handlers means that developer-provided literal strings and expressions are embedded directly into generated Rust code at compile time. While this shifts potential injection risks to the compile phase (requiring developers to ensure macro inputs are safe), it mitigates runtime dynamic code execution vulnerabilities from unvetted external input. No 'eval'-like runtime execution from untrusted sources is apparent.
Similar Servers
rust-mcp-sdk
A high-performance, asynchronous Rust SDK for building Model Context Protocol (MCP) servers and clients, supporting various transports and authentication methods.
rust-mcp-schema
Provides a type-safe Rust implementation of the Model Context Protocol (MCP) schema, enabling developers to build robust MCP servers and clients.
mcp-framework
A Rust framework for building AI agents with built-in Model Context Protocol (MCP) support, multi-LLM integration, and a web-based inspector for debugging.
rust-mcp-server
Acts as a bridge for Large Language Models (LLMs) like GitHub Copilot to interact with and perform actions on local Rust development environments, automating tasks like building, testing, and analyzing code.