chuk-mcp-server
Verified Safeby chrishayuk
Overview
ChukMCPServer is a Python framework for building high-performance, modular MCP servers with zero configuration and automatic cloud detection (GCP, AWS, Azure, Vercel, Netlify, Cloudflare). It enables developers to create and host AI tools, resources, and prompt templates, supporting various deployment scenarios from local development and Docker containers to serverless environments.
Installation
docker-compose upEnvironment Variables
- GITHUB_TOKEN
- MCP_SERVER_NAME
- MCP_SERVER_VERSION
- MCP_TRANSPORT
- MCP_STDIO
- USE_STDIO
- PORT
- DEBUG
- LOG_LEVEL
- MCP_LOG_LEVEL
- GOOGLE_CLIENT_ID
- GOOGLE_CLIENT_SECRET
- GOOGLE_REDIRECT_URI
- OAUTH_SERVER_URL
- GOOGLE_DRIVE_ROOT_FOLDER
- SESSION_PROVIDER
- SESSION_REDIS_URL
- OAUTH_AUTH_CODE_TTL
- OAUTH_ACCESS_TOKEN_TTL
- OAUTH_REFRESH_TOKEN_TTL
- OAUTH_CLIENT_REGISTRATION_TTL
- OAUTH_EXTERNAL_TOKEN_TTL
- AWS_LAMBDA_FUNCTION_NAME
- GOOGLE_CLOUD_FUNCTION_NAME
- AZURE_FUNCTIONS_ENVIRONMENT
- VERCEL
- NETLIFY
- FUNCTION_NAME
- FUNCTION_TARGET
- K_SERVICE
- K_CONFIGURATION
- K_REVISION
- GAE_APPLICATION
- GAE_DEPLOYMENT_ID
- GAE_ENV
- GAE_INSTANCE
- GAE_MEMORY_MB
- GAE_RUNTIME
- GAE_SERVICE
- GAE_VERSION
- GCE_METADATA_TIMEOUT
- GOOGLE_CLOUD_PROJECT
- GCLOUD_PROJECT
- GCP_PROJECT
- AWS_EXECUTION_ENV
- ECS_CONTAINER_METADATA_URI
- AWS_BEANSTALK_APPLICATION_NAME
- AWS_REGION
- AWS_DEFAULT_REGION
- AWS_ACCESS_KEY_ID
- AWS_SECRET_ACCESS_KEY
- AWS_SESSION_TOKEN
- WEBSITE_SITE_NAME
- ACI_RESOURCE_GROUP
- AzureWebJobsScriptRoot
- AzureWebJobsStorage
- FUNCTIONS_WORKER_RUNTIME
- AZURE_CLIENT_ID
- AZURE_SUBSCRIPTION_ID
- VERCEL_ENV
- VERCEL_URL
- VERCEL_REGION
- VERCEL_GIT_COMMIT_SHA
- NETLIFY_DEV
- SITE_ID
- DEPLOY_ID
- CONTEXT
- BRANCH
- COMMIT_REF
- CF_PAGES
- CF_PAGES_COMMIT_SHA
- CF_PAGES_BRANCH
- CLOUDFLARE_ACCOUNT_ID
- CLOUDFLARE_API_TOKEN
- RAILWAY_ENVIRONMENT
- RENDER
- FLY_APP_NAME
- HEROKU_APP_NAME
- KUBERNETES_SERVICE_HOST
- CONTAINER
Security Notes
The example `calculate` tool provided in the project scaffolding (`src/cli.py`) uses `eval()` on user-provided `expression` input. While it attempts to sanitize input by allowing only a limited set of arithmetic characters and digits, `eval()` is inherently dangerous and can potentially be exploited if the allow-list is not exhaustive against injection techniques. The framework's internal use of `exec()` for dynamic tool wrapper generation (`src/chuk_mcp_server/proxy/mcp_tool_wrapper.py`) is noted with `nosec B102`, indicating awareness, but this is for internally generated code rather than direct user input. Network binding defaults to `0.0.0.0` in cloud/containerized environments, which is standard but `Access-Control-Allow-Origin: *` for CORS in HTTP endpoints is broad and could be a concern if not explicitly desired for all clients.
Similar Servers
TASK-6-DONE-QUARTER4-MCP-SERVER-AND-github
Implements or proxies the Minecraft Client Protocol (MCP), likely for custom game logic, data interception, or alternative server implementations.
MCPSERVE
A server backend, likely related to the Minecraft Protocol (MCP), intended for game hosting or application services.
scb-mcp-server
Provides backend server functionality, likely related to Minecraft (MCP) protocol interactions or extensions.
mela-cp
This is likely a server or tool related to the Minecraft Client Protocol (MCP), potentially for managing a Minecraft server or developing Minecraft-related applications.