VertexAI-MCP
by Tuprott991
Overview
An AI-powered insurance product inquiry assistant for Prudential Vietnam, utilizing a Model Context Protocol (MCP) server for tool execution and a client for AI orchestration and frontend interaction.
Installation
docker-compose up --buildEnvironment Variables
- POSTGRES_DATABASE
- POSTGRES_USER
- POSTGRES_PASSWORD
- POSTGRES_HOST
- POSTGRES_PORT
- MCP_SERVER_URL
- LINKUP_API_KEY
- OPENAI_API_KEY
- GEMINI_API_KEY
- GOOGLE_APPLICATION_CREDENTIALS
- GOOGLE_CLOUD_PROJECT
- GOOGLE_CLOUD_LOCATION
Security Notes
The `run_command` tool in `mcp_server/sse_server.py` and `mcp_client/services.py` allows arbitrary shell command execution with `shell=True`. This is a critical security vulnerability that can lead to Remote Code Execution (RCE) if an attacker (or a misconfigured LLM) can inject malicious commands. Although there's an attempt to set a `DEFAULT_WORKSPACE`, `shell=True` can bypass many restrictions. Additionally, using `GOOGLE_CREDENTIALS_JSON` environment variable for service account keys is less secure than file paths as the raw JSON content might be exposed in process listings or logs.
Similar Servers
zen-mcp-server
A server for coordinating and managing AI agents, likely for simulations or complex task execution, leveraging Claude LLMs.
pg-aiguide
Provides AI-optimized PostgreSQL expertise, including semantic search over documentation and curated best practices, to assist AI coding tools in generating better PostgreSQL code.
mcp_massive
An AI agent orchestration server, likely interacting with LLMs and managing multi-agent workflows.
MCP-PostgreSQL-Ops
The MCP server provides professional operations, monitoring, and management capabilities for PostgreSQL databases using natural language queries.