mcp_server
by accuknox
Overview
The AccuKnox MCP server provides a multi-cloud asset management and security posture solution, allowing AI agents to search cloud assets, retrieve AI/ML model vulnerabilities, and manage findings through a unified interface.
Installation
python3 fastmcp_server.pyEnvironment Variables
- ACCUKNOX_BASE_URL
- ACCUKNOX_API_TOKEN
- HOST
- PORT
- WORKERS
- SSL_CERT_FILE
- SSL_KEY_FILE
- MCP_MODE
Security Notes
The primary critical security risk is the widespread use of `httpx.AsyncClient(verify=False)` across multiple files (`shared/api.py`, `shared/utils/api_utils.py`, `shared/utils/auth_validator.py`). This disables SSL/TLS certificate verification for all API calls to the AccuKnox backend and JWKS endpoints. This vulnerability makes the server highly susceptible to Man-in-the-Middle (MITM) attacks, allowing an attacker to intercept, read, or tamper with sensitive data (e.g., cloud asset details, vulnerability reports, API tokens) in transit. Additionally, the `_get_auth_context` function in `fastmcp_server.py` allows API tokens and base URLs to be passed via URL query parameters, which is less secure than HTTP headers and could lead to their exposure in server logs or browser history.
Similar Servers
falcon-mcp
The Falcon Model Context Protocol (MCP) server connects AI agents with the CrowdStrike Falcon cybersecurity platform, enabling intelligent security analysis and automation within agentic workflows by providing programmatic access to security capabilities like detections, incidents, and host information.
toolhive-studio
ToolHive simplifies and secures the discovery, deployment, and management of Model Context Protocol (MCP) servers, enabling connections to AI agents and clients.
mcp
The MCP Server provides an AI-powered framework for command execution, plugin-based tools, secure Python evaluation, and knowledge management, designed for standalone or embedded use.
MCP-Open-Discovery-with-AMQP
A production-ready platform for infrastructure discovery and CMDB, offering tools through the Model Context Protocol (MCP) SDK for AI assistants, automation, and enterprise infrastructure management.