expense-tracker-mcp-server
Verified Safeby bhaskar9298
Overview
Manages personal and group expenses, including shared expense tracking and splitting, through an AI-orchestrated tool server.
Installation
python main1.pyEnvironment Variables
- MONGODB_URI
Security Notes
The server uses environment variables (`MONGODB_URI`) for sensitive connection strings, indicating good practice against hardcoded secrets. MongoDB connections are configured with TLS and certificate verification (`tls=True`, `tlsCAFile=certifi.where()`). Authentication and authorization logic (`is_user_in_group`, `is_user_group_admin`, etc.) are heavily integrated into the tools, requiring `user_id` for most operations. Input validation is present for critical parameters like group names, amounts, and email formats. There are no obvious `eval` or other dangerous dynamic code execution patterns. The MongoDB schema `additionalProperties: True` allows for flexible document structure but could be made stricter for enhanced data integrity if desired, though this is not a direct security vulnerability.
Similar Servers
practice-mcp-server
A personal AI assistant backend server for managing notes, tasks, and calendar events, with web scraping and semantic search capabilities.
Expense-Tracker-MCP-Remote
Manages personal expenses by allowing users to add, list, summarize, edit, delete, and search expense entries.
expense_tracking_remote_mcp_server
Manages and tracks personal or business expenses through an API.
Expense-Tracker-MCP-Remote
Manages personal expenses by allowing users to add, list, and summarize expense entries through an API.