docs-mcp-server

The project uses `node:vm`'s `createContext` and `runInContext` within `HtmlJsExecutorMiddleware` for sandboxed JavaScript execution embedded in scraped HTML content. While sandboxed, `node:vm` requires careful isolation to prevent subtle bypasses, and this is explicitly noted as a warning in the code regarding browser API replication. However, it is used for content processing, not arbitrary user command execution. The system also fetches arbitrary external URLs as part of its core function; this is mitigated by scope controls, rate limiting, and robust error handling. SQL database interactions use prepared statements to prevent injection. HTML output is sanitized using DOMPurify where appropriate (e.g., search results). Custom headers propagation and basic auth handling are implemented for network requests, indicating an awareness of secure communication. Overall, security concerns related to its core function of processing untrusted external content appear to be handled with diligence.