mcp_server
by accuknox
Overview
The AccuKnox MCP server provides a multi-cloud asset management and security posture solution, allowing AI agents to search cloud assets, retrieve AI/ML model vulnerabilities, and manage findings through a unified interface.
Installation
python3 fastmcp_server.pyEnvironment Variables
- ACCUKNOX_BASE_URL
- ACCUKNOX_API_TOKEN
- HOST
- PORT
- WORKERS
- SSL_CERT_FILE
- SSL_KEY_FILE
- MCP_MODE
Security Notes
The primary critical security risk is the widespread use of `httpx.AsyncClient(verify=False)` across multiple files (`shared/api.py`, `shared/utils/api_utils.py`, `shared/utils/auth_validator.py`). This disables SSL/TLS certificate verification for all API calls to the AccuKnox backend and JWKS endpoints. This vulnerability makes the server highly susceptible to Man-in-the-Middle (MITM) attacks, allowing an attacker to intercept, read, or tamper with sensitive data (e.g., cloud asset details, vulnerability reports, API tokens) in transit. Additionally, the `_get_auth_context` function in `fastmcp_server.py` allows API tokens and base URLs to be passed via URL query parameters, which is less secure than HTTP headers and could lead to their exposure in server logs or browser history.
Similar Servers
falcon-mcp
An MCP server providing AI agents programmatic access to CrowdStrike Falcon platform capabilities for intelligent security analysis and automation, integrating threat detection, incident response, and vulnerability management into agentic workflows.
toolhive-studio
ToolHive is a desktop application (Electron UI) for discovering, deploying, and managing Model Context Protocol (MCP) servers in isolated containers, and connecting them to AI agents and clients.
suse-ai-up
A comprehensive, modular Model Context Protocol (MCP) proxy system that enables secure, scalable, and extensible AI model integrations.
mcp
The MCP Server provides an AI-powered framework for command execution, plugin-based tools, secure Python evaluation, and knowledge management, designed for standalone or embedded use.