mcp
Verified Safeby fastly
Overview
Securely control Fastly CDN/edge infrastructure through natural language interactions with AI assistants.
Installation
fastly-mcpEnvironment Variables
- FASTLY_CLI_PATH
Security Notes
The project demonstrates a very strong 'security-first' approach. It features multiple layers of input validation against command injection (no shell execution, shell metacharacter blocking, path traversal prevention), a strict command allowlist and denylist, and mandatory `--user-reviewed` flag for dangerous operations (e.g., delete, purge, create). It performs binary security checks on the Fastly CLI to prevent tampering (e.g., world-writable permissions on Unix). Sensitive tokens in responses are optionally encrypted using an ephemeral (non-persisted) key, protecting them in transit/display to the LLM. No hardcoded secrets were found. The HTTP server defaults to localhost, minimizing network exposure. The level of defense-in-depth is exceptionally high for a CLI wrapper.
Similar Servers
mcpstore
Orchestrate Microservice Context Protocol (MCP) services and adapt them for integration with various AI frameworks like LangChain, managing tools and their lifecycle.
fastify-mcp-server
A Fastify plugin providing a streamable HTTP transport for the Model Context Protocol (MCP), enabling AI assistants to interact with services.
fastify-mcp
Integrates Model Context Protocol (MCP) server functionality into Fastify web applications, supporting streamable HTTP and legacy HTTP+SSE transports.
fluidmcp
Orchestrates Model Context Protocol (MCP) servers and LLM inference engines (like vLLM) via a unified FastAPI gateway, enabling dynamic management, tool invocation, and multi-model LLM serving.