PSMCP

The Python MCP server itself is well-structured, utilizing secure libraries (paramiko for SSH, requests for HTTP/APIs) with timeouts and input validation via Pydantic/dataclasses. Remote command execution via wp-cli over SSH is an inherently powerful operation, but it is sandboxed to 'cd {remote_path} && wp {command}', and wp-cli itself handles subcommand sanitization. Input schemas for MCP tools further limit arbitrary command injection. The included PHP plugins for affiliate and class registration demonstrate strong security practices, including nonce and capability checks, robust input sanitization, secure file upload/serving (with path traversal prevention, file type/size/MIME validation, and .htaccess protection), and prepared statements for database interactions. A minor information leak risk exists where some error logs might contain PII, but no direct exploitation vector is apparent.