enterprise_mcp_server

CRITICAL: The `src/asgi.py` file contains hardcoded client credentials (`VALID_CLIENTS = {"cursor_client": "cursor_secret"}`) for its `/token` endpoint, posing a severe vulnerability for any client relying on this authentication mechanism. CRITICAL: The `docker-compose.yml` exposes Redis on `0.0.0.0:6378:6379` without authentication, making it susceptible to unauthorized access and data manipulation. The `claude_code` tool, while sandboxed (though bypassable via `SKIP_SANDBOX` env var), permits dynamic execution of `Read`, `Write`, and `Bash` tools, which could lead to remote code execution if the prompt input is compromised. Password hashing uses PBKDF2, which is less resilient than modern algorithms like bcrypt. An `/test-token` endpoint (in `src/api.py`) generates admin-level tokens, which could be dangerous if exposed in production. However, the system benefits from a layered architecture, Keycloak integration for advanced authentication, robust RBAC, parameterized SQL, and comprehensive audit logging, which improve overall security posture.