TaskPilot
Verified Safeby graphcs
Overview
A minimal MCP server demonstrating task management and a Crunchbase-style company database for ChatGPT Apps, featuring interactive UI widgets.
Installation
python server.pySecurity Notes
The server uses in-memory and local JSON file storage (`tasks.json`, `companies.json`) which is fine for a personal/demo app but not suitable for multi-user or production deployments without significant modifications (e.g., persistent database, proper authentication/authorization). There are no direct `eval()` calls or obvious command injection vulnerabilities. Input parameters for tools are handled safely (e.g., integer IDs, string comparisons). Potential client-side XSS risk if the UI widgets (`task_list.html`, `company_widget.html`) do not properly sanitize data received via `structured_content` before rendering, but this is a client-side concern, not a server-side vulnerability within the provided Python code.
Similar Servers
AutotaskMCP
Manage Autotask PSA (Professional Services Automation) data, including tickets, companies, contacts, time entries, and resources, through a Claude Desktop MCP server.
mcp-server
Provides real-time Indian options market data and volatility analytics from GetOutpost.in to AI chat platforms like Claude for quantitative analysis and trading insights.
dev-workflow-mcp-server
Enforces a disciplined software development workflow (coding, testing, documentation, commit, release) by guiding developers through sequential steps and maintaining project-specific history.
drilling_mcp_server
Analyzes oil and gas drilling data from CSV files, providing tools for Rate of Penetration (ROP), Mechanical Specific Energy (MSE), Non-Productive Time (NPT) calculations, and data visualization via an MCP server.