aran-mcp
by adhit-r
Overview
Provides a comprehensive security and management platform for Model Context Protocol (MCP) deployments, with the specific mcp-server component offering simulated filesystem operations for testing and integration.
Installation
docker-compose up --buildEnvironment Variables
- POSTGRES_DB
- POSTGRES_USER
- POSTGRES_PASSWORD
- DB_HOST
- DB_PORT
- DB_USER
- DB_PASSWORD
- DB_NAME
- DB_SSL_MODE
- JWT_SECRET
- NEXT_PUBLIC_API_URL
- API_KEY
- CORS_ALLOWED_ORIGINS
- NEXT_PUBLIC_CLERK_PUBLISHABLE_KEY
- CLERK_SECRET_KEY
- ENABLE_MCP_AUTH
- SUPABASE_URL
- SUPABASE_KEY
- REDIS_HOST
- REDIS_PORT
- REDIS_PASSWORD
Security Notes
The project aims for high security with detailed threat modeling (SAFE-MCP) and features like tool attestation and anomaly detection. However, several critical implementation gaps exist: (1) The default API key in `backend/internal/middleware/production.go` is a hardcoded placeholder, requiring manual override for production. (2) MCP API routes in `backend/cmd/server/main.go` are explicitly unprotected by default for testing, posing a significant risk if deployed without enabling the `ENABLE_MCP_AUTH` flag. (3) The cryptographic verification for tool attestation in `backend/internal/mcp/tool_manager.go` is stubbed, weakening the integrity checks. (4) The example `mcp-server` component is intentionally vulnerable to path traversal for demonstration purposes, which should not be used in a real environment without proper hardening.
Similar Servers
mcp-filesystem-server
Provides secure and controlled access to the local filesystem via the Model Context Protocol (MCP) for AI agents and other applications.
toolhive-studio
ToolHive is a desktop application (Electron UI) for discovering, deploying, and managing Model Context Protocol (MCP) servers in isolated containers, and connecting them to AI agents and clients.
filesystem-mcp
Provides secure, efficient, and token-optimized filesystem operations for AI agents via the Model Context Protocol.
mcp-compose
This server provides a robust example of OAuth2 authentication for MCP (Model Context Protocol) servers, using GitHub as the identity provider. It demonstrates secure multi-server management, protocol translation, and integration with AI agents for tool invocation.