rubygems_mcp.rb
Verified Safeby amkisko
Overview
Provides a Model Context Protocol (MCP) server and Ruby client for accessing RubyGems and Ruby version information, integrating with IDEs and AI clients.
Installation
bundle exec rubygems_mcpEnvironment Variables
- RUBY_VERSION
- SSL_CERT_FILE
Security Notes
The source code demonstrates strong security practices including explicit SSL certificate verification, robust input validation for gem names and versions, and defensive parsing of both JSON and HTML responses. It implements a maximum response size limit (5MB) and actively checks for crawler protection pages and malformed/unexpected content types (e.g., HTML instead of JSON). No hardcoded secrets or 'eval' statements are found. The primary attack surface would be vulnerabilities in upstream APIs (RubyGems, ruby-lang.org, GitHub) or the `net/http` and `nokogiri` libraries, which are external dependencies.
Similar Servers
action_mcp
ActionMCP is a Ruby gem providing Model Context Protocol (MCP) server capabilities to Rails applications, enabling AI assistants to connect to external data sources and tools.
ls-mcp
Command-line tool for discovering, analyzing, and reporting on Model Context Protocol (MCP) server configurations in a local development environment.
codebadger
A containerized Model Context Protocol (MCP) server providing static code analysis using Joern's Code Property Graph (CPG) technology.
dokku-mcp
Exposes Dokku's management capabilities through the Model Context Protocol (MCP), enabling Large Language Models (LLMs) to interact with and manage a Dokku instance.