mcp.expanso.io
by expanso-io
Overview
A Model Context Protocol (MCP) server for semantic search and retrieval over Expanso documentation, leveraging Cloudflare Workers, Vectorize, and LLMs to answer natural language queries and generate pipeline configurations.
Installation
npm run devEnvironment Variables
- CLOUDFLARE_ACCOUNT_ID
- CLOUDFLARE_API_TOKEN
- DOCS_DOMAINS
- POSTHOG_API_KEY
Security Notes
The `get_resource` MCP tool directly fetches content from a user-provided URI without validation or sanitization. This constitutes a critical Server-Side Request Forgery (SSRF) vulnerability, allowing an attacker (or a malicious AI prompt) to potentially access internal network resources, local files (if the runtime permits), or perform port scanning by crafting a URI like `http://localhost/admin` or `file:///etc/passwd`.
Similar Servers
context-portal
Manages structured project context for AI assistants and developer tools, enabling Retrieval Augmented Generation (RAG) and prompt caching within IDEs.
portaljs-mcp-server
A remote Model Context Protocol (MCP) server deployed on Cloudflare Workers, providing AI agent tools to interact with PortalJS datasets for search, retrieval, and data preview.
mcp-server-worker
A production-ready Model Context Protocol (MCP) server providing HTTP-based semantic search and intelligent search with AI-powered synthesis context using Cloudflare Workers AI and Vectorize.
mcp-server
Deploys an authentication-less Model Context Protocol (MCP) server on Cloudflare Workers, providing AI-powered tools for mathematical calculations and RAG-based search.