platform-engineering-copilot
Verified Safeby azurenoops
Overview
The Platform Engineering Copilot MCP server acts as an AI-powered orchestrator, exposing specialized AI agents for infrastructure management, compliance auditing, cost optimization, resource discovery, environment lifecycle, and security assessment to external AI tools and web applications.
Installation
dotnet run --project src/Platform.Engineering.Copilot.Mcp -- --httpEnvironment Variables
- AZURE_TENANT_ID
- AZURE_CLIENT_ID
- AZURE_CLIENT_SECRET
- AZURE_SUBSCRIPTION_ID
- AZURE_OPENAI_ENDPOINT
- AZURE_OPENAI_API_KEY
- AZURE_OPENAI_DEPLOYMENT
- AZURE_OPENAI_CHAT_DEPLOYMENT
- AZURE_OPENAI_EMBEDDING_DEPLOYMENT
- AZURE_CLOUD_ENVIRONMENT
- GITHUB_TOKEN
- EMAIL_CONNECTION_STRING
- EMAIL_SENDER_EMAIL
- EMAIL_SENDER_NAME
- SLACK_WEBHOOK_URL
- TEAMS_WEBHOOK_URL
- SA_PASSWORD
- PLATFORM_MCP_SA_PASSWORD
Security Notes
The project demonstrates a strong focus on security, particularly for Azure Government compliance (FedRAMP, DoD Impact Levels, STIGs) and uses features like Azure Key Vault for secret management. It leverages Azure AD for authentication, including CAC/PIV support. Default development passwords for SQL are present in docker-compose files but are placeholders intended to be overridden by environment variables. Network binding to 0.0.0.0 is common in Docker, with ingress/firewall expected in production. No 'eval' or direct malicious patterns were observed within the application source code itself.
Similar Servers
mesh
An open-source control plane for Model Context Protocol (MCP) traffic, providing unified authentication, routing, observability, and tool management for AI agents and integrations across various services.
snippy
An AI-powered code snippet manager that integrates with GitHub Copilot via MCP, provides vector search for code, and uses AI agents for documentation and style guide generation.
toolhive-studio
ToolHive is a desktop application (Electron UI) for discovering, deploying, and managing Model Context Protocol (MCP) servers in isolated containers, and connecting them to AI agents and clients.
agent-identity-management
A production-ready identity verification and security platform for AI agents and Model Context Protocol (MCP) servers, providing cryptographic identity, access control, and real-time threat detection.