wb-mcp-server
Verified Safeby eduard256
Overview
Allows AI assistants to interact with the Wildberries marketplace for product search, details, delivery, and filter discovery.
Installation
docker-compose up -dEnvironment Variables
- PORT
- NODE_ENV
Security Notes
The server utilizes Playwright for web scraping, which launches a headless Chromium browser. While `page.evaluate` allows arbitrary JavaScript execution within the browser context, the code appears to control the injected scripts and only makes API requests to Wildberries domains. Input sanitization is applied via `encodeURIComponent` for user-provided query and address parameters when constructing URLs. The use of `--no-sandbox` for Playwright in the Docker setup is common for containerized environments but is inherently less secure than a sandboxed browser on a host. CORS is broadly enabled for all origins, which is acceptable for a public API but could be a minor consideration depending on deployment context. No obvious hardcoded sensitive secrets or direct `eval` usage were found beyond controlled `page.evaluate` calls.
Similar Servers
browser-devtools-mcp
This MCP server provides AI coding assistants with comprehensive browser automation and debugging capabilities using Playwright, enabling execution-level and visual debugging for web pages.
playwright-mcp-server
Provides a robust, token-aware Playwright browser automation server for Large Language Models (LLMs) and coding agents to interact with web content, supporting advanced features like anti-detection and multi-page management.
playwright-mcp
Provides a guide and example client project for generating and running Playwright UI and API tests using an MCP Playwright server with LLM agents.
playwright-wizard-mcp
An intelligent Model Context Protocol (MCP) server that guides developers through creating professional Playwright test suites with built-in best practices.