md-book
by bobmatnyc
Overview
Manages markdown books (read, write, structure) and exposes these operations as tools for AI assistants, enabling AI-driven book content generation and analysis.
Installation
mdbook serve-mcpSecurity Notes
The MCP server and underlying services accept file system paths (e.g., `path` argument) directly from tool calls without explicit validation or sandboxing to restrict operations to a specific book's root directory. This creates a path traversal vulnerability where a malicious AI agent could potentially read, write, or modify arbitrary files on the host system that the `mdbook` process has permissions for. For example, by providing paths like `../../../etc/passwd` or `../../../.ssh/id_rsa`, an AI could exfiltrate sensitive system files or inject malicious content. The `release.py` script also uses `subprocess.run` with `shell=True`, which is generally discouraged, though this is for internal build processes, not core application functionality.
Similar Servers
responsible-vibe-mcp
Manages conversation state and guides LLM coding agents through structured software development workflows with long-term project memory and multi-agent collaboration.
scraps
The Scraps MCP server provides an interface for AI assistants to interact with a knowledge base of interconnected Markdown documentation, enabling features like content search, tag listing, and link/backlink lookup.
CodeMCP
Provides deep code intelligence (symbol navigation, impact analysis, architecture maps, ownership, risk assessment) to AI assistants, CLI, and HTTP API.
backlog
Manage project backlog and tasks using Markdown files in a Git repository, designed for frictionless collaboration between AI agents and human developers.