mcp-server
by b9122-jl6929
Overview
An AI-powered digital twin server that answers questions based on a user's CV PDF content.
Installation
fastmcp run main.pyEnvironment Variables
- OPENAI_API_KEY
- OPENAI_MODEL
Security Notes
The `chat_with_me` tool accepts an optional `cv_path` parameter, which is then used directly in `extract_text_from_pdf` to open files. This allows an attacker to specify arbitrary file paths on the server's filesystem (e.g., `/etc/passwd`, `/app/secrets.txt`), potentially leading to Local File Inclusion (LFI) or path traversal vulnerabilities. While the PDF parsing libraries will likely fail on non-PDF files, error messages could confirm file existence, leading to information disclosure. It is crucial to sanitize or restrict the `cv_path` input, or deploy in a highly sandboxed environment with strict filesystem permissions.
Similar Servers
sparql-llm
An LLM-powered agent for generating, validating, and executing SPARQL queries against biomedical knowledge graphs, utilizing Retrieval-Augmented Generation (RAG) with endpoint-specific metadata and schema for improved accuracy.
datagouv-mcp
An MCP server enabling AI chatbots to search, explore, and analyze datasets from data.gouv.fr, the French national Open Data platform.
Ai-Job-hunting-Agent
An AI-powered multi-agent system for job seekers to automate job discovery, analyze resumes, match job descriptions, and provide recommendations.
project-cortex
Enhances AI coding assistants by providing deep semantic understanding of code and documentation via a searchable vector database.