mcp-http-agent-md
by benhaotang
Overview
This server acts as a central hub for AI agents, managing project knowledge (AGENTS.md), structured tasks, version history, and ephemeral scratchpads, with capabilities to spawn context-isolated subagents for focused tasks.
Installation
docker run -d --restart always -p 3000:3000 -e MAIN_API_KEY="$MAIN_API_KEY" -e HOST=0.0.0.0 -v "$DATA_DIR":/app/data --name "mcp-http-agent-md" ghcr.io/benhaotang/mcp-http-agent-md:latestEnvironment Variables
- MAIN_API_KEY
- USE_EXTERNAL_AI
- AI_API_TYPE
- AI_API_KEY
- AI_MODEL
- AI_TIMEOUT
- AI_ATTACHMENT_TEXT_LIMIT
- MISTRAL_AI_API
- MISTRAL_API_KEY
- USE_LOCAL_AI_FOR_DOC_UNDERSTANDING
- LOCAL_OCR_MODEL_ENDPOINT
- LOCAL_OCR_MODEL
- LOCAL_OCR_API_KEY
- DATABASE_PATH
- HOST
- PORT
- BASE_PATH
Security Notes
The server uses SQLite with prepared statements, which generally prevents SQL injection. Input validation is in place for various fields like project names and task IDs. File uploads are constrained by size and type. However, the `StdioClientTransport` in `src/ext_ai/aisdkmcp.js` allows arbitrary `command` and `args` to be specified in `subagent_config.json`. If an AI agent, through a configured tool (e.g., a filesystem write tool), gains the ability to modify `subagent_config.json`, it could lead to arbitrary code execution on the host server. The example `subagent_config.json` includes a 'filesystem' server which, if exposed with broad permissions, could be a critical vector for this. The 'USE_EXTERNAL_AI' flag is crucial for controlling this risk. Running with `cors` set to `*` is also very broad, although common for API services.
Similar Servers
mcp-server
Provides a Model Context Protocol (MCP) server for AI agents to search and retrieve curated documentation for the Strands Agents framework, facilitating AI coding assistance.
git-mcp-server
A Model Context Protocol (MCP) server that provides Git-specific tools and resources for AI/LLM agents to interact with version control systems.
backlog-mcp-server
This MCP server integrates Backlog API with AI agents like Claude to manage projects, issues, and wikis, providing a conversational interface for project management tasks.
mcp-github-project-manager
AI-powered GitHub Project Management, including automated roadmap generation, sprint planning, issue triaging, task breakdown, and comprehensive project workflow automation.