pluggedin-mcp
Verified Safeby VeriTeknik
Overview
Acts as a unified Model Context Protocol (MCP) hub for AI agents, providing tools, knowledge (RAG), and memory (clipboard) by aggregating multiple downstream MCP servers and internal capabilities.
Installation
npx -y @pluggedin/pluggedin-mcp-proxy@latest --pluggedin-api-key YOUR_API_KEYEnvironment Variables
- PLUGGEDIN_API_KEY
- PLUGGEDIN_API_BASE_URL
- PORT
- BIND_HOST
- NODE_ENV
- PLUGGEDIN_UUID_TOOL_PREFIXING
- DEBUG
- REQUIRE_API_AUTH
Security Notes
The codebase demonstrates a strong focus on security, with extensive input validation and sanitization (including HTML/XSS prevention via `sanitize-html`), URL validation (SSRF protection), and header injection prevention. It uses `child_process.execFile` with a strict command allowlist and argument sanitization for safe process execution. API key authentication utilizes timing-safe comparison, and lazy authentication allows tool discovery without a key while securing execution. Rate limiting is implemented for tool and API calls, and error messages are sanitized to prevent information disclosure. No hardcoded secrets were found; API keys are expected from environment variables.
Similar Servers
mcphub
An orchestration hub that aggregates, manages, and routes Model Context Protocol (MCP) servers and their tools, providing a centralized interface, user management, OAuth 2.0 authorization server capabilities, and AI-powered tool discovery and routing.
context-portal
Manages structured project context for AI assistants and developer tools, enabling Retrieval Augmented Generation (RAG) and prompt caching within IDEs.
aicode-toolkit
An MCP proxy server that aggregates multiple Model Context Protocol (MCP) servers, enabling on-demand tool discovery and execution, thereby significantly reducing AI agent token usage and improving context window efficiency by loading tools progressively.
ncp
NCP acts as a universal adapter and orchestrator for Model Context Protocol (MCP) servers and tools. It provides a unified interface for discovery, execution, and management of diverse tools (local CLI, HTTP APIs, internal plugins/Photons, AI skills) through natural language and structured code interaction, enabling AI agents to interact with the broader digital ecosystem.