mcp-e70738e0-808ea82c-nklsdfjk
Verified Safeby aiscibe-mcp-deployment
Overview
This server acts as a Model Context Protocol (MCP) gateway, exposing configured external APIs as tools for consumption by AI models like Claude.
Installation
python app/mcp_server.pyEnvironment Variables
- OPENAI_API_KEY
Security Notes
The server uses `CORSMiddleware` with `allow_origins=["*"]`, which permits requests from any origin. While common for public-facing API gateways, it should be noted. The `call_api` function dynamically constructs API requests. Although the base URL for `API_CONNECTIONS` is hardcoded to a specific domain, if the `endpoint` parameter to `call_api` is directly derived from untrusted AI model input without sanitization or validation, it could potentially lead to SSRF (Server-Side Request Forgery) vulnerabilities. No explicit `eval` or other dangerous patterns are present. API keys are expected via environment variables, which is good practice.
Similar Servers
zeromcp
A minimal, pure Python Model Context Protocol (MCP) server for exposing tools, resources, and prompts via HTTP/SSE and Stdio transports.
claude-faf-mcp
Optimizes AI understanding of software projects by providing persistent context, fixing context-drift, and enabling bi-directional synchronization between project metadata and AI documentation.
converse
Orchestrates and exposes various AI tools (chat, multi-model consensus, job management) over the Model Context Protocol, enabling local, persistent, and potentially asynchronous AI interactions across multiple Large Language Model (LLM) providers.
mcp-e70738e0-c1a2450e-this-is-nhjsjldfjklh
This server acts as a Model Context Protocol (MCP) gateway, exposing configured APIs as tools for AI models like Claude.