PRD-MCP-Server
by cpatel1293
Overview
A specialized Model Context Protocol (MCP) server dedicated to creating and validating Product Requirements Documents (PRDs) using AI and customizable templates.
Installation
npx -y prd-creator-mcpEnvironment Variables
- LOG_LEVEL
- MCP_TRANSPORT
- PORT
- HTTP_PORT
- DB_PATH
- OPENAI_API_KEY
- OPENAI_API_BASE_URL
- OPENAI_MODEL
- ANTHROPIC_API_KEY
- ANTHROPIC_API_BASE_URL
- ANTHROPIC_MODEL
- GEMINI_API_KEY
- GEMINI_MODEL
- LOCAL_MODEL_API_URL
- LOCAL_MODEL_NAME
- DEFAULT_AI_PROVIDER
Security Notes
Critical vulnerability: The `get_provider_config` MCP tool exposes all configured AI provider API keys (e.g., OPENAI_API_KEY, ANTHROPIC_API_KEY) to any connected MCP client. This means anyone who can connect to the server can steal these secrets. High severity vulnerability: Multiple tools (`get_logs`, `export_templates`, `import_templates`) are vulnerable to path traversal attacks, allowing arbitrary file read/write on the server's filesystem by manipulating input parameters like `fileName` or `filePath`.
Similar Servers
spec-workflow-mcp
Facilitates structured, specification-driven software development by providing a workflow engine, real-time dashboards, and tools for task management, approvals, and detailed implementation logging, integrated with AI agents and VSCode.
tmcp
A server implementation for the Model Context Protocol (MCP) to enable LLMs to access external context and tools.
mcp-advisor
Provides LLMs and humans with structured access to the Model Context Protocol (MCP) specification and documentation for understanding and compliance evaluation.
mcp-jest
A testing framework for Model Context Protocol (MCP) servers, allowing automated validation of AI agent tools, resources, and prompts.