1mcp
Verified Safeby buremba
Overview
Orchestrates AI agent tool calls by executing JavaScript/TypeScript code in a WASM sandbox, reducing LLM context bloat and managing security policies.
Installation
npx 1mcp serveEnvironment Variables
- RELAY_MCP_URL
- NEXT_PUBLIC_RELAY_MCP_URL
- TIMEOUT_MS
- MAX_MEMORY_MB
- MAX_STDOUT_BYTES
- DOCKER_CONTAINER
- RELAY_BIND
Security Notes
The project demonstrates robust security considerations with a multi-layered approach, including WASM sandbox isolation (QuickJS/Pyodide), cryptographic signing of execution capsules (Ed25519), and double-enforcement of network and filesystem policies (browser and server). Path traversal protections and IP literal blocking are implemented. The specification indicates that critical security issues identified in development have been addressed. However, it notes that upstream MCP servers are fully trusted by the relay server (requiring external security measures for those services) and current rate limiting is basic (queue depth of 100). Code execution uses `vm.evalCode` within the sandboxed runtime, which is controlled by the capsule builder.
Similar Servers
keyboard-local
Enables AI clients to execute real-world tasks through connected third-party tools (APIs, CLIs, SDKs) with human approval, leveraging a secure GitHub Codespace environment.
mdk-mcp-server
Provides AI agents with comprehensive SAP Mobile Development Kit (MDK) knowledge and tools to assist in MDK application development, including project creation, artifact generation (pages, actions, i18n, rules), project management (build, deploy, validate, migrate), and documentation access.
Accurate-Cyber-Box-Alpha
Accurate-Cyber-Box is an advanced cybersecurity tool designed for penetration testing, cyber drills, real-time network monitoring, and incident response, integrated with MCP servers and Telegram for enhanced communication and control.
mcp-server-weixin
Provides a service for AI systems to send templated messages to WeChat public account users.