mcp_workspace_server
Verified Safeby ShayYeffet
Overview
Provides a comprehensive set of tools for development, DevOps, data processing, and automation within an AI-assisted workspace.
Installation
node /ABSOLUTE/PATH/TO/ultimate_mcp_server/dist/index.jsEnvironment Variables
- MCP_WORKSPACE_ROOT
- MCP_ALLOWED_COMMANDS
- MCP_READ_ONLY
- MCP_LOG_LEVEL
- MCP_COMMAND_TIMEOUT
Security Notes
The server implements robust path sandboxing, explicitly validates all file paths against the defined workspace root, and resolves symbolic links to prevent traversal attacks. Command execution uses a configurable allowlist and `child_process.spawn` with `shell: false` to prevent shell injection. The `kill_process` tool has safeguards for critical system processes. However, the `encrypt_decrypt` tool uses a hardcoded 'salt' value for password-based key derivation, which is a minor weakness. The `cloud_storage` tool's simplified authentication (Basic auth over potentially non-HTTPS) could be improved by using official SDKs for each provider.
Similar Servers
mcp-filesystem-server
Provides secure and controlled access to the local filesystem via the Model Context Protocol (MCP) for AI agents and other applications.
files-stdio-mcp-server
Provides sandboxed filesystem access for AI agents to explore directories, read/search file content, and safely edit text files with checksum verification.
dev-kit-mcp-server
A Model Context Protocol (MCP) server targeted for agent development tools, providing scoped authorized operations in the root project directory.
DaemonsMCP
Facilitate LLM interaction with local codebases by providing secure access to explore, read, and write project files.