context-bridge-mcp
by Tom687
Overview
An Electron desktop application demonstrating context bridge communication between renderer and main processes, allowing the execution of system commands from the renderer.
Installation
npx electron .Security Notes
CRITICAL RISK: The application exposes an 'executeCommand' function via the context bridge, allowing the renderer process (and thus potentially untrusted web content via an input field) to execute arbitrary system commands on the host machine using `child_process.exec`. This is a severe remote code execution vulnerability, allowing any user of the application to execute any command on their system. The `executeMCPCommand` function is also dangerous, as it executes commands with `mc-p` prefix, which could still lead to unintended system changes or exploits depending on what `mc-p` is.
Similar Servers
mcp_test_repo
A custom client-server application for network communication and remote execution of Python code.
sum-mcp-server
Manages multiple Kubernetes clusters by providing generic and specialized operations (like ServiceExports) via a JSON-RPC 2.0 interface over stdio or HTTP.
uihash-hotnews
Analysis not possible: Source code was not provided in the prompt for this MCP server.
mcp_server_yt
Unable to determine the specific use case as no source code was provided for analysis.