birre
Verified Safeby boecht
Overview
BiRRe is a Model Context Protocol (MCP) server that translates a BitSight subscription into LLM-friendly tools for security rating retrieval and risk management.
Installation
uvx birreEnvironment Variables
- BITSIGHT_API_KEY
- BIRRE_CONFIG
- BIRRE_SUBSCRIPTION_FOLDER
- BIRRE_SUBSCRIPTION_TYPE
- BIRRE_CONTEXT
- BIRRE_RISK_VECTOR_FILTER
- BIRRE_MAX_FINDINGS
- BIRRE_SKIP_STARTUP_CHECKS
- BIRRE_DEBUG
- BIRRE_ALLOW_INSECURE_TLS
- BIRRE_CA_BUNDLE
- BIRRE_LOG_LEVEL
- BIRRE_LOG_FORMAT
- BIRRE_LOG_FILE
- BIRRE_LOG_MAX_BYTES
- BIRRE_LOG_BACKUP_COUNT
Security Notes
The project follows good security practices. API keys are required as environment variables, not hardcoded. Network communication via `httpx` enforces TLS 1.2+ by default, with explicit options for custom CA bundles or disabling verification (with warnings) for testing. Input validation is performed for CLI arguments and some API parameters. No `eval` or `exec` calls were found. File operations are standard for configuration. The `--allow-insecure-tls` flag exists for diagnostics, which is a potential risk if misused, but is clearly documented and warns the user.
Similar Servers
mcp-scanner
Scans Model Context Protocol (MCP) servers, tools, prompts, and resources for security vulnerabilities, employing static analysis, YARA rules, Cisco AI Defense API, and LLM-based behavioral analysis.
mcp-server-code-execution-mode
This server enables LLM agents to execute Python code in a highly secure, isolated container environment, facilitating complex multi-tool orchestration and data analysis with minimal LLM context token usage.
mcp-interviewer
A Python CLI tool to evaluate Model Context Protocol (MCP) servers for agentic use-cases, by inspecting capabilities, running functional tests, and providing LLM-as-a-judge evaluations.
zeromcp
A minimal, pure Python Model Context Protocol (MCP) server for exposing tools, resources, and prompts via HTTP/SSE and Stdio transports.