profile-memory-mcp-server
by eagleisbatman
Overview
External service for managing user profiles and conversation-based memory, including LLM-powered fact extraction from chat.
Installation
npm startEnvironment Variables
- DATABASE_URL
- OPENAI_API_KEY
- PORT
- CORS_ORIGIN
- NODE_ENV
Security Notes
CRITICAL SQL INJECTION: The `update_profile` endpoint dynamically constructs the SQL `SET` clause by interpolating field keys (`${key}`) directly from `req.body.fields` into the SQL string. This allows for SQL injection if a malicious user provides crafted keys in the `fields` object, potentially leading to unauthorized data manipulation or deletion. INFORMATION LEAKAGE: Error messages expose internal server details, which could aid attackers. The default CORS origin `*` is broad and should be tightened in production deployments to specific origins to prevent unintended cross-origin access, though it might be intended for internal use as an MCP server.
Similar Servers
memory-mcp-server-go
A Model Context Protocol server providing knowledge graph management capabilities for LLMs to maintain memory across conversations.
mcp-server
Manages AI customization and persistent context through modular, reusable elements (Personas, Skills, Agents, Templates, Memories).
cortexgraph
A Model Context Protocol (MCP) server providing AI assistants with ephemeral, local short-term memory, temporal decay, reinforcement, and automatic promotion to long-term storage.
memory-mcp
Provides persistent memory and intelligent context window caching for LLM conversations within AI coding environments.