fuzzing-mcp-server
Verified Safeby democratize-technology
Overview
Provides property-based testing and fuzzing capabilities to AI assistants for automated discovery of edge cases and bugs in Python functions.
Installation
docker run -i --rm fuzzing-mcp-serverEnvironment Variables
- MCP_TRANSPORT
- MCP_PORT
- FUZZING_MCP_SERVER_NAME
- FUZZING_MCP_SANDBOX_ENABLED
- FUZZING_MCP_MEMORY_LIMIT_MB
- FUZZING_MCP_TIMEOUT_SECONDS
- FUZZING_MCP_LOG_LEVEL
- FUZZING_PERFORMANCE_MODE
Security Notes
The server intentionally uses `exec()` for dynamic code execution, which is generally a high-risk operation. However, this is heavily mitigated by a robust, multi-layered sandbox built upon the professionally audited `asteval.Interpreter` library. Key security measures include AST validation, strict whitelisting of allowed modules, comprehensive blocking of dangerous built-in functions, frame access blocking, and enforced resource limits (memory, time, recursion). The Docker and Kubernetes configurations also demonstrate strong hardening with non-root users, read-only filesystems, dropped capabilities, and strict resource controls. A comprehensive security audit is claimed to be completed and approved for production, significantly reducing the inherent risks of dynamic code execution.
Similar Servers
mcp-server-code-execution-mode
This server enables LLM agents to execute Python code in a highly secure, isolated container environment, facilitating complex multi-tool orchestration and data analysis with minimal LLM context token usage.
In-Memoria
Provides persistent intelligence infrastructure for AI agents, enabling them to understand codebases, detect patterns, predict coding approaches, and generate context-aware insights.
mcp-interviewer
A Python CLI tool to evaluate Model Context Protocol (MCP) servers for agentic use-cases, by inspecting capabilities, running functional tests, and providing LLM-as-a-judge evaluations.
zeromcp
A minimal, pure Python Model Context Protocol (MCP) server for exposing tools, resources, and prompts via HTTP/SSE and Stdio transports.