awesome-ionic-mcp

The server executes Ionic and Capacitor CLI commands using `execa` (via `npx`). Input arguments for these commands are sanitized to prevent shell metacharacters. Commands are intended to be restricted to `npx @ionic/cli` and `npx @capacitor/cli`. A critical bug exists in `src/tools/ionic-cli/cli-utils.ts::validateCommand` where the `npx` package validation incorrectly targets the `'-y'` argument instead of the actual CLI package (`@ionic/cli` or `@capacitor/cli`). This bug would currently prevent `npx` commands from executing successfully if strictly enforced. If this bug were fixed to correctly validate only `npx @ionic/cli` and `npx @capacitor/cli`, the command execution would be considered reasonably secure against arbitrary shell injection for the intended CLIs. The server also uses Puppeteer to scrape official documentation sites, launching a browser (often in `headless: false` mode, meaning visible) which increases the attack surface, but it is used against known, trusted URLs specified in the code. No hardcoded secrets or 'eval' were found.