scraps
Verified Safeby boykush
Overview
The Scraps MCP server provides an interface for AI assistants to interact with a knowledge base of interconnected Markdown documentation, enabling features like content search, tag listing, and link/backlink lookup.
Installation
scraps mcp serveEnvironment Variables
- SCRAPS_PROJECT_PATH
Security Notes
The server component itself uses `rmcp` for inter-process communication primarily over `stdin`/`stdout`, limiting direct network exposure for the MCP tools. Input is handled using `serde` for deserialization and `schemars::JsonSchema` for validation, which helps mitigate malformed input risks. Path handling for accessing scrap files is done using `PathBuf` and `join` methods, which generally prevent path traversal issues. Markdown parsing (`pulldown-cmark`) and fuzzy searching (`fuzzy-matcher`) are performed by well-regarded libraries. No explicit `eval` or similar dynamic code execution patterns are observed. The system relies on a locally controlled project directory, which is a key security boundary. A point is deducted for the inherent complexity of file system interactions and potential undiscovered vulnerabilities in external dependencies.
Similar Servers
gistpad-mcp
Manages and shares personal knowledge, daily notes, and reusable prompts via GitHub Gists for MCP-enabled AI products.
pluggedin-app
A testing environment for MCP (Model Control Protocol) servers, allowing interaction through a chat interface powered by LLMs and an AI agent using the LangChain ReAct framework.
memex
Personal knowledge base with hybrid search (keyword + semantic) and LLM-driven memory evolution, designed for agent workflows.
ai-skills-hub
Provides AI assistants with access to a team's coding standards, best practices, and knowledge base by dynamically loading Markdown skill files via an MCP server.