ellymud
Verified Safeby ellyseum
Overview
A Multi-User Dungeon (MUD) game server with support for Telnet, WebSocket, and a Model Context Protocol (MCP) for AI agent integration and programmatic control.
Installation
npm startEnvironment Variables
- JWT_SECRET
- ELLYMUD_MCP_API_KEY
- OPENAI_API_KEY
- REDIS_URL
- STORAGE_BACKEND
- DATABASE_URL
Security Notes
The server uses JWT for admin API authentication and a specific API key (ELLYMUD_MCP_API_KEY) for the powerful MCP server. Passwords are hashed with PBKDF2 and sensitive input is masked from logs. Path traversal vulnerabilities in state snapshot loading are explicitly prevented. The initial 'admin' user is set with a default 'admin' password, which triggers a forced change on first login. The use of 'child_process.execFileSync' for syncing scripts in the MCP server is a potential risk, though currently it appears to be invoked with an empty argument array, mitigating direct RPC injection. Overall, good security practices are in place for user data and access control, but the extensive administrative and AI agent APIs require careful key management and environment configuration.
Similar Servers
emceepee
A proxy server enabling AI agents to dynamically connect to and interact with multiple Model Context Protocol (MCP) backend servers, exposing the full MCP protocol via a simplified tool interface or a sandboxed JavaScript execution environment.
mcp-game-asset-gen
An MCP server for generating various game development assets, including images, videos, audio, and 3D models using multiple AI providers.
mcp-ai-agent
This repository provides an AI agent designed to interact with and control entities within a Multi-Client Protocol (MCP) environment, likely a game or simulation.
agents-mcp-usage
This repository demonstrates the integration of a Model Context Protocol (MCP) server with various AI agent frameworks, showcasing agent communication and operation within a shared context.