ccmcp
Verified Safeby gsong
Overview
A CLI tool that intelligently discovers, validates, and selects MCP (Model Context Protocol) server configurations for Claude Code, providing both a TUI and text-based interface.
Installation
npx @gsong/ccmcpSecurity Notes
The tool appears to follow good security practices for a CLI application. It uses Zod for comprehensive schema validation of MCP configuration files, which is a strong defense against malformed or malicious config data. Command-line arguments for launching the external 'claude' executable are properly escaped using the 'shell-quote' library to prevent command injection. Cache files are stored in standard OS-specific cache directories and hashed keys are used. The primary security considerations would stem from the trustworthiness of the 'claude' binary itself and the content of the MCP configuration files, which are external to the ccmcp tool's core logic.
Similar Servers
claude-code-subagents-collection
The repository serves as a comprehensive marketplace and registry for Claude Code, offering a wide array of specialized AI agents, commands, hooks, and a catalog of external Model Context Protocol (MCP) servers to enhance development workflows.
claude-code-mcp
Acts as an MCP server to enable LLMs to run Claude Code CLI in one-shot mode, bypassing permissions for complex coding, file system, Git, and terminal operations.
mcp-manager
A web GUI to easily manage and configure Model Context Protocol (MCP) servers for the Claude Desktop app on MacOS, generating terminal commands for installation and setup.
consult-llm-mcp
An MCP server that allows AI agents like Claude Code to consult stronger, more capable AI models (e.g., GPT-5.2, Gemini 3.0 Pro) for complex code analysis, debugging, and architectural advice.