discord-agent-mcp
Verified Safeby aj-geddes
Overview
AI-powered management and automation of Discord servers, enabling natural language control over channels, roles, moderation, and events.
Installation
npm startEnvironment Variables
- DISCORD_TOKEN
Security Notes
The project uses TypeScript and Zod for strong type and input validation, significantly reducing common injection vulnerabilities. Discord.js's permission handling is correctly leveraged for all operations, enforcing least privilege. Configuration (e.g., DISCORD_TOKEN) is handled via environment variables, with clear instructions against committing secrets. The `send_message_with_file` tool allows specifying an absolute file path; while validated for existence, a malicious AI could potentially exfiltrate arbitrary files if the bot's underlying OS permissions allow it. However, the Dockerfile includes `runAsNonRoot: true` and `allowPrivilegeEscalation: false`, which mitigates this risk by limiting file system access. No `eval` or similar dangerous functions were found.
Similar Servers
mcp-discord
Enables AI assistants to interact with the Discord platform by providing a set of Discord-related functionalities via the Model Context Protocol (MCP).
llms
A centralized configuration and documentation management system for LLMs, providing tools for building skills, commands, agents, prompts, and managing MCP servers across multiple LLM providers.
AI-Prompt-Guide-MCP
Orchestrates AI agents for project management and development workflows by linking structured markdown specifications and tasks.
codemesh
CodeMesh acts as an intermediary MCP server that allows AI agents to write and execute TypeScript code to orchestrate tools and data from multiple configured MCP servers, featuring a self-improving augmentation system for documentation.