mcp
Verified Safeby axiomhq
Overview
Connect AI assistants (e.g., Claude, Cursor) to Axiom's observability platform, enabling natural language querying of datasets, traces, monitors, and dashboards via the Model Context Protocol (MCP).
Installation
npm run dev -w apps/mcpEnvironment Variables
- COOKIE_ENCRYPTION_KEY
- AXIOM_OAUTH_CLIENT_ID
- AXIOM_OAUTH_CLIENT_SECRET
- ATLAS_API_URL
- ATLAS_INTERNAL_URL
- AXIOM_LOGIN_BASE_URL
Security Notes
The server implements a robust OAuth 2.0 flow using PKCE for client authentication, with session state managed via encrypted and signed cookies (using `COOKIE_ENCRYPTION_KEY`) and refresh tokens stored in Cloudflare KV. This provides good protection against common OAuth threats. Client-provided information in UI rendering is sanitized to prevent XSS. OpenTelemetry integration includes secure key handling. The `/icon` endpoint, which fetches external images based on a `domain` query parameter, could theoretically be used for minor external request triggering (e.g., as a low-level SSRF vector), though it has a timeout and is restricted to image content types, limiting its impact. No `eval` or blatant malicious patterns were found in the provided code.
Similar Servers
mcp-server-cloudflare
Centralized platform for Cloudflare's Model Context Protocol (MCP) servers, enabling AI clients to interact with diverse Cloudflare services using natural language for configuration, data analysis, and task automation.
portaljs-mcp-server
A remote Model Context Protocol (MCP) server deployed on Cloudflare Workers, providing AI agent tools to interact with PortalJS datasets for search, retrieval, and data preview.
semantic-wake-intelligence-mcp
A Model Context Protocol (MCP) server providing AI agents with a 3-layer temporal intelligence system for memory, causality, and prediction.
poly-observability-mcp
Unified Model Context Protocol (MCP) server for querying metrics, logs, and traces from various observability backends like Prometheus, Grafana, Loki, and Jaeger, primarily enabling AI assistants.