vite-mcp
Verified Safeby broisnischal
Overview
A Vite plugin that provides Model Context Protocol (MCP) server capabilities for browser development, enabling AI agents to interact with and observe browser environments in real-time.
Installation
cd playground && npm install && npm run devSecurity Notes
The plugin runs within a Vite development server and sets up a WebSocket connection (HMR) to a browser-side bridge. This bridge executes adapter handlers based on messages received over the WebSocket. While this is the core functionality, and input/output schemas are used for validation, an attacker gaining control of the WebSocket channel could potentially execute arbitrary browser-side JavaScript through forged tool calls. The HTTP endpoints also use `Access-Control-Allow-Origin: *`, which is common for dev servers but means they are accessible from any origin. For its intended use as a local development tool, the risks are generally acceptable, but it's important to be aware of the direct code execution mechanism in the browser environment.
Similar Servers
nuxt-mcp-dev
Provides a Model Context Protocol (MCP) server for Vite/Nuxt applications, offering AI models insights into the app's setup and module graphs.
mcp-victoriametrics
Provides an AI-driven interface for monitoring, observability, and debugging tasks with VictoriaMetrics instances through the Model Context Protocol (MCP).
mcp-shark
Aggregate multiple Model Context Protocol (MCP) servers into a single unified interface with a powerful monitoring UI, enabling real-time traffic capture, logging, and AI-powered security analysis.
mcp-victorialogs
Provides a Model Context Protocol (MCP) server for VictoriaLogs, enabling AI clients to interact with VictoriaLogs APIs for querying logs, exploring data, and accessing documentation.