mcp-claude-shell
by Sunalamye
Overview
This server provides a structured interface for local Claude Code CLI commands, enabling generation, editing, and refactoring with built-in retry, timeout, and JSON validation capabilities via the MCP protocol.
Installation
./mcp-claude.shSecurity Notes
The `mcp-claude.sh` script is critically vulnerable to shell injection. User-provided input parameters such as `jsonSchema`, `systemPrompt`, and `appendSystemPrompt` are directly embedded into shell command strings with single quotes (e.g., `'$json_schema'`) that are later executed via `bash -c`. A malicious client can inject arbitrary shell commands by including a single quote in these parameters, breaking out of the quoted string. For example, a `jsonSchema` value like `{'foo':'bar'}; rm -rf /; echo '` would result in the `rm -rf /` command being executed on the host system. Additionally, the underlying `claude` CLI is always invoked with `--dangerously-skip-permissions`, granting the AI agent broad, unconfirmed access to execute commands and modify files, which further exacerbates the risk if the system is compromised via prompt injection or the aforementioned shell injection vulnerability.
Similar Servers
DesktopCommanderMCP
This server empowers AI agents to search, update, manage files, and execute terminal commands on a local or containerized desktop environment. It provides enhanced filesystem operations, process control, and data analysis capabilities with support for various file types like text, Excel, and PDF.
claude-code-subagents-collection
The repository serves as a comprehensive marketplace and registry for Claude Code, offering a wide array of specialized AI agents, commands, hooks, and a catalog of external Model Context Protocol (MCP) servers to enhance development workflows.
claudex
Self-hosted Claude AI chat interface with sandboxed code execution, offering a full IDE experience and support for multiple AI providers and extensible agents/skills.
claude-command-runner
Facilitates AI-driven command execution and terminal automation by bridging Claude Desktop with local macOS terminals, primarily Warp, enabling intelligent output capture, command pipelines, real-time streaming, and reusable templates for developers.