McpServer
Verified Safeby codelabStrawberry
Overview
A RAG (Retrieval Augmented Generation) server that integrates local LLMs (Ollama) with ChromaDB and FastAPI to provide API tools for chat, RAG search, document ingestion, and AI-driven job interview/career analysis.
Installation
docker-compose up --build -dEnvironment Variables
- OLLAMA_BASE_URL
- OLLAMA_CHAT_MODEL
- OLLAMA_EMBED_MODEL
- CHROMA_HOST
- CHROMA_PORT
- CHROMA_COLLECTION
- REDIS_URL
- INGEST_ON_STARTUP
- CORS_ORIGINS
- OLLAMA_CRAWL_MODEL
- MYSQL_HOST
- MYSQL_PORT
- MYSQL_USER
- MYSQL_PASSWORD
- MYSQL_DB
Security Notes
The server uses environment variables for sensitive configurations like database credentials, which is good practice. External content (URLs, PDFs) is processed with some sanitization and length limits to prevent excessive resource consumption or prompt injection. LLM output is parsed as JSON, which can be a potential risk if the LLM generates malicious JSON, though `json.loads` itself doesn't execute arbitrary code. Image processing for OCR on crawled URLs (`perform_qwen3vl_ocr`) also presents a potential, albeit common, attack surface if image libraries are vulnerable. No direct hardcoded secrets or obvious command injection vulnerabilities were found in the provided source code.
Similar Servers
flexible-graphrag
The Flexible GraphRAG MCP Server integrates document processing, knowledge graph building, hybrid search, and AI query capabilities via the Model Context Protocol (MCP) for clients like Claude Desktop and MCP Inspector.
rag-server-mcp
Provides Retrieval Augmented Generation (RAG) capabilities to Model Context Protocol (MCP) clients by indexing project documents and retrieving relevant content for LLMs.
mcp-raganything
Provides a FastAPI REST API and MCP server for Retrieval Augmented Generation (RAG) capabilities, integrating with the RAG-Anything and LightRAG libraries for multi-modal document processing and knowledge graph operations.
Little_MCP
A local AI assistant leveraging Retrieval-Augmented Generation (RAG) and multi-tool agents for document Q&A, real-time information, and SQL database interaction.