mcp-docs
Verified Safeby fabianbartsch
Overview
Automatically generates documentation pages for Laravel Model Context Protocol (MCP) servers by extracting metadata from server classes.
Installation
php artisan serveEnvironment Variables
- MCP_DOCS_SERVER_CLASS
- APP_URL
- APP_KEY
Security Notes
The package utilizes PHP reflection to extract metadata from trusted, user-configured classes, which is generally safe. Input values (like server instructions) are properly escaped with `htmlspecialchars` and `nl2br` before rendering to prevent XSS. Copy-to-clipboard functionality uses `navigator.clipboard.writeText` or a secure `execCommand` fallback, parsing configuration-derived data via `JSON.parse`. There are no clear indications of 'eval', obfuscation, hardcoded secrets (beyond standard Laravel `APP_KEY`), or direct malicious patterns. Configuration options for `installation_commands` could theoretically suggest malicious commands if the application's configuration itself is compromised, but this falls outside the direct scope of the package's code vulnerabilities.
Similar Servers
boost
Accelerates AI-assisted development by providing essential context and structure for generating high-quality, Laravel-specific code via an MCP server.
php-mcp
Facilitates communication and integration between LLM applications and external data sources or tools by implementing the Model Context Protocol (MCP).
php-mcp-sdk
A PHP SDK for building Model Context Protocol (MCP) servers that expose AI capabilities (tools, prompts, sampling) and data resources to clients, facilitating AI agent orchestration and structured human-AI interaction.
mcp-server-dump
A command-line tool to extract, analyze, and document the capabilities (tools, resources, prompts) of MCP (Model Context Protocol) servers in various formats, including Markdown, JSON, HTML, PDF, and Hugo sites.