ellymud

The server includes an MCP (Model Context Protocol) endpoint that allows AI agents to interact with the game. This endpoint requires an API key for authentication. A significant security concern is the exposure of `child_process.execFileSync` via RPC methods (`sync_to_hub`, `sync_from_hub`) within `src/mcp/mcpServer.ts`. While the arguments passed to these shell scripts are hardcoded to an empty array (mitigating direct command injection), the ability to trigger shell scripts remotely via an API call represents a high-privilege operation. If the `ELLYMUD_MCP_API_KEY` is compromised, this could potentially be exploited through manipulating the scripts themselves (if file permissions allow modification by the server process) or by triggering resource exhaustion. Additionally, user input is handled by a command registry and state machine, which includes basic sanitization (trimming, lowercasing) and specific checks for sensitive commands (passwords are masked in logs). However, robust input validation is critical for all commands that can modify game state or interact with other users.