MaxKB
by carglezfer
Overview
An enterprise-grade agent platform for building AI applications, offering RAG, workflow orchestration, and integration with various large language models and knowledge bases.
Installation
docker run -d --name=maxkb --restart=always -p 8080:8080 -v ~/.maxkb:/opt/maxkb registry.fit2cloud.com/maxkb/maxkbEnvironment Variables
- OPENAI_API_KEY
- AWS_ACCESS_KEY_ID
- AWS_SECRET_ACCESS_KEY
- AWS_REGION_NAME
- DEEPSEEK_API_KEY
- TENCENT_CLOUD_SECRET_ID
- TENCENT_CLOUD_SECRET_KEY
- XUNFEI_APP_ID
- XUNFEI_API_KEY
- XUNFEI_API_SECRET
- ZHIPUAI_API_KEY
- QIANFAN_API_KEY
- QIANFAN_SECRET_KEY
- ALIYUN_DASHSCOPE_API_KEY
- OLLAMA_API_BASE
- OLLAMA_API_KEY
- XINFERENCE_API_BASE
- XINFERENCE_API_KEY
- VLLM_API_BASE
- VLLM_API_KEY
- ANTHROPIC_API_KEY
- SILICONCLOUD_API_KEY
- REGOLO_API_KEY
- REGOLO_API_BASE
- VOLCANIC_ENGINE_ACCESS_KEY_ID
- VOLCANIC_ENGINE_SECRET_ACCESS_KEY
- AZURE_OPENAI_API_KEY
- AZURE_OPENAI_ENDPOINT
- AZURE_OPENAI_API_VERSION
- AZURE_OPENAI_DEPLOYMENT_NAME
- GEMINI_API_KEY
- GEMINI_API_BASE
- DEFAULT_PASSWORD
- EMBEDDING_MODEL_NAME
- CELERY_BROKER_URL
- CELERY_RESULT_BACKEND
- REDIS_URL
- DJANGO_SETTINGS_MODULE
- SECRET_KEY
- DATABASE_URL
- MCP_SERVERS
Security Notes
Critical vulnerabilities identified: The backend uses `exec_code` for user-defined tools, a highly dangerous function that is extremely difficult to secure against malicious code injection, even with attempted sandboxing. The default admin password 'MaxKB@123..' is hardcoded in the README, posing a severe risk if not immediately changed. Potential SQL injection vectors exist in `common/db/search.py` due to 'native' SQL query construction without clear input sanitization. Dynamic `baseURL` from `window.MaxKB?.prefix` in frontend requests, if not strictly controlled on the server, could introduce risks. While there is extensive use of permission decorators, the complexity of fine-grained access control can sometimes lead to bypasses if not implemented perfectly.
Similar Servers
MaxKB
MaxKB (Max Knowledge Brain) is an enterprise-grade intelligent agent platform designed to lower the technical barrier and deployment costs of AI implementation, helping businesses quickly integrate mainstream large language models, build proprietary knowledge bases, and offer a progressive upgrade path from RAG to complex workflow automation and advanced agents for various application scenarios like smart customer service and office assistants.
trigger.dev
A platform for building and executing reliable, scalable background tasks and complex workflows, supporting various runtimes (Node.js, Python, Bun), including advanced AI agent orchestration, event-driven processing, and real-time data handling.
npcpy
Core library of the NPC Toolkit that supercharges natural language processing pipelines and agent tooling. It's a flexible framework for building state-of-the-art applications and conducting novel research with LLMs. Supports multi-agent systems, fine-tuning, reinforcement learning, genetic algorithms, model ensembling, and NumPy-like operations for AI models (NPCArray). Includes a built-in Flask server for deploying agent teams via REST APIs, and multimodal generation (image, video, audio).
agents
This MCP (Model Context Protocol) Server acts as a proxy for the Inkeep Agent Framework's Management API. It exposes administrative functionalities (e.g., CRUD operations for agents, projects, tools, and credentials) via the MCP protocol, allowing other clients or agents to interact with the Inkeep Management API through a standardized interface.