yardstick
Verified Safeby StacklokLabs
Overview
A Model Context Protocol (MCP) server designed for performance testing and validating MCP implementations across various transport types.
Installation
docker run -p 8080:8080 -e MCP_TRANSPORT=sse -e PORT=8080 ghcr.io/stackloklabs/yardstick/serverEnvironment Variables
- MCP_TRANSPORT
- PORT
- AUTH_HEADER
- AUTH_VALUE
Security Notes
The server implements basic header-based authentication, configurable via `AUTH_HEADER` and `AUTH_VALUE` environment variables. Authentication is disabled by default. Input to the 'echo' tool is strictly validated using a regex (`^[a-zA-Z0-9]+$`) to prevent injection. HTTP transports (SSE, Streamable HTTP) are configured with `ReadTimeout`, `WriteTimeout`, and `IdleTimeout` to mitigate certain common network-based attack vectors. The client component's use of `exec.Command` for stdio transport is noted as intentional for testing subprocess communication and does not represent a server-side vulnerability.
Similar Servers
Unla
Transforms existing MCP Servers and APIs into MCP protocol-compliant endpoints through configuration, enabling LLM tool calling without code changes.
xk6-mcp
A k6 extension for performance testing Model Context Protocol (MCP) servers.
toolhive-registry-server
The central metadata hub for enterprise Model Context Protocol (MCP) server governance and discovery, implementing the official MCP Registry API specification.
mcp-jest
A testing framework for Model Context Protocol (MCP) servers, allowing automated validation of AI agent tools, resources, and prompts.