sherpa
Verified Safeby anortham
Overview
Guides AI agents through systematic software development workflows, promoting best practices and habit formation via positive reinforcement.
Installation
bun run /absolute/path/to/sherpa-server.tsEnvironment Variables
- HOME
- USERPROFILE
Security Notes
The server primarily operates locally, interacting via standard I/O (stdio) and persisting state to the user's home directory (`~/.sherpa/`). Input arguments are validated for length and type, and workflow YAML files are parsed, not executed. File operations for state persistence (`user-profile.json`, `progress-tracker.json`, `workflow-state.json`) use atomic writes (temp file + rename) and include robust error handling with retry mechanisms and graceful degradation. There are no obvious hardcoded secrets or direct network listening services exposed. The risk of `eval` or arbitrary code execution from workflow files is mitigated by parsing YAML rather than executing code. Overall, it demonstrates good security practices for a local agent-guidance tool.
Similar Servers
In-Memoria
Provides persistent intelligence infrastructure (semantic concepts, patterns, architecture) for AI agents to understand and interact with codebases.
responsible-vibe-mcp
Transforms any AI coding agent into a structured development partner by guiding it through battle-tested engineering workflows with persistent context and documentation.
doc-bot
An intelligent MCP server designed to enhance AI coding assistants by providing project-specific documentation and API references through smart search, contextual rules, and live updates.
athena-protocol
This server acts as an AI tech lead, providing expert validation, impact analysis, and strategic guidance to AI coding agents before code changes are made.