spring-documentation-mcp-server
Verified Safeby andrlange
Overview
Provides an AI-driven Model Context Protocol (MCP) server for comprehensive access to Spring ecosystem documentation, migration guides, code examples, and project compatibility, serving as a knowledge base and tool integration for AI agents.
Installation
./mvnw spring-boot:runEnvironment Variables
- DB_USER
- DB_PASSWORD
- DB_HOST
- DB_PORT
- DB_NAME
- OPENAI_API_KEY
- OLLAMA_BASE_URL
- GITHUB_API_TOKEN
- MCP_SECURITY_API_KEY
- MCP_FEATURES_EMBEDDINGS_ENABLED
- MCP_FEATURES_JAVADOCS_ENABLED
- MCP_FEATURES_OPENREWRITE_ENABLED
- MCP_FEATURES_INITIALIZR_ENABLED
- MCP_FEATURES_FLAVORS_ENABLED
- MCP_FEATURES_LANGUAGE_EVOLUTION_ENABLED
Security Notes
The application leverages Spring Security for API key-based authentication, with hashed storage of API keys. External API integrations (OpenAI, Ollama, GitHub, spring.io) use externalized API keys from environment variables or properties, which is good practice. Extensive data fetching from external sources is handled with timeouts and retry mechanisms. HTML parsing for documentation relies on Jsoup, which is generally robust, but processing untrusted HTML can introduce risks for unexpected behavior. No direct code injection or SQL injection vulnerabilities are apparent from the provided truncated source code. Overall, it follows standard Spring Boot security practices for an application of this complexity, but a comprehensive review of all third-party dependencies and their configurations would be essential for production deployment.
Similar Servers
lex
Provides a UK legal research API for AI agents, offering capabilities to search legislation, caselaw, amendments, and explanatory notes using semantic and keyword search, and includes a Micro-Copilot (MCP) server for integration with AI assistants.
infobip-openapi-mcp
Exposes any OpenAPI documented HTTP API as a Model Context Protocol (MCP) server for AI agents, with support for mock mode and authentication.
MCP-Client-Host-Java
An MCP (Model Context Protocol) client that acts as a server to the MCP host, managing connections to various external MCP servers (tools) and orchestrating tool discovery and execution for AI assistants.
mcp_server_2ex
This server acts as a Next.js application providing a Remote Procedure Call (RPC) interface for Retrieval Augmented Generation (RAG) search using PostgreSQL with pgvector for vector storage and Google Generative AI for language model inference.