sandbox-mcp-server
Verified Safeby aelvion
Overview
Orchestrates build, deploy, and infrastructure workflows for applications.
Installation
docker-compose up --buildEnvironment Variables
- APP_NAME
- ENVIRONMENT
- BROKER_URL
- RESULT_BACKEND
- JENKINS_BASE_URL
- ARGOCD_SERVER
- TERRAFORM_WORKDIR
- DOCKER_REGISTRY
Security Notes
The project uses Pydantic for input validation, which helps prevent common injection vulnerabilities. Critical operations like building images, running Terraform, or triggering Jenkins are currently stubbed, which inherently limits immediate execution risks from untrusted input. The `docs/secrets.md` file outlines a strong security posture for credential handling (e.g., IAM Roles Anywhere, OIDC, Kubernetes secrets, avoiding hardcoded secrets). Potential risks would arise if the stubbed tasks were implemented to directly execute shell commands without rigorous input sanitization, or if the `generate-dockerfile` output were directly built by an insecure system, but the current code doesn't exhibit these direct vulnerabilities. Redis is exposed locally via Docker Compose, which is typical for development but would require securing in a production environment.
Similar Servers
rulego-server
A lightweight, high-performance, and modular automation workflow platform for orchestration, iPaaS, API/AI orchestration, data processing, and IoT rule engine scenarios.
proteus-ai
A workflow execution engine that orchestrates multi-agent systems, integrates various tools, and provides a sandboxed environment for code execution to solve complex tasks.
mcp-server-gitlab
A GitLab integration server built on the fastmcp framework, providing various GitLab RESTful API tools for interacting with GitLab instances, supporting AI agents and platforms like Claude and Smithery.
mcp-orchestrator
Orchestrates multiple Model Context Protocol (MCP) servers, enabling LLMs to generate and execute TypeScript code for complex, multi-step workflows, and integrating with Agent-to-Agent (A2A) protocols for collaborative AI.