mcp-scaffold
Verified Safeby arvindand
Overview
A Maven plugin that generates Spring AI Model Context Protocol (MCP) tools from Spring Data JPA repositories and Spring services, enabling AI assistants to interact with the application's data layer.
Installation
./mvnw -pl mcp-scaffold-examples/petclinic-mcp spring-boot:runSecurity Notes
The MCP Scaffold Maven plugin itself is safe, focusing on build-time code generation using JavaParser and JavaPoet. It does not involve runtime 'eval' or obfuscation. The generated MCP tools, by design, provide direct access to the application's data layer. The documentation explicitly highlights this, advising users to implement authentication, restrict write operations using `filter.exclude-methods` (a feature the `suggest` goal aids in), and limit exposure to read-only functionality for AI clients. The `ReadOnlyDetector` and `suggest` goal actively contribute to identifying and preventing exposure of dangerous write operations.
Similar Servers
easy-code-reader
Provides a Model Context Protocol (MCP) server for AI assistants to intelligently read Java source code from local projects and Maven dependencies, supporting decompilation and multi-module analysis.
mcp-codestyle-server
Provides code template search and retrieval tools for IDEs and AI agents via the Model Context Protocol (MCP).
spring-rest-to-mcp
Transforms existing Spring Web REST APIs into Spring AI Model Context Protocol (MCP) server tools using OpenRewrite recipes.
infobip-openapi-mcp
Exposes any OpenAPI documented HTTP API as a Model Context Protocol (MCP) server for AI agents, with support for mock mode and authentication.