redwood
by douglas-gibbons
Overview
The Redwood MCP server provides AI models with tools for command execution, web scraping, time retrieval, and persistent data storage.
Installation
make serverSecurity Notes
The `run_command` tool in `src/server/command.py` uses `subprocess.run(command, shell=True)`, which is a critical security vulnerability. This allows the AI model (or any untrusted caller) to execute arbitrary shell commands on the host system, leading to Remote Code Execution (RCE), data exfiltration, or system compromise. The `get_webpage_content` tool in `src/server/web_scraper.py` can fetch content from arbitrary URLs, posing a Server-Side Request Forgery (SSRF) risk if the server has access to internal networks. Due to the severe RCE vulnerability, the server is not safe to run in a production or untrusted environment without significant modifications.
Similar Servers
mcp-client-for-ollama
An interactive terminal client for connecting local Ollama LLMs to Model Context Protocol (MCP) servers, enabling advanced tool use and workflow automation for local LLMs.
mcp-server
Provides a Model Context Protocol (MCP) server for AI agents to search and retrieve curated documentation for the Strands Agents framework, facilitating AI coding assistance.
mcp-interviewer
A Python CLI tool to evaluate Model Context Protocol (MCP) servers for agentic use-cases, by inspecting capabilities, running functional tests, and providing LLM-as-a-judge evaluations.
zeromcp
A minimal, pure Python Model Context Protocol (MCP) server for exposing tools, resources, and prompts via HTTP/SSE and Stdio transports.