mcp-android-playstore-deploy
Verified Safeby hitoshura25
Overview
Assists developers in setting up automated Google Play Store deployment for Android applications using GitHub Actions.
Installation
hitoshura25-mcp-android-playstore-deployEnvironment Variables
- SERVICE_ACCOUNT_JSON_PLAINTEXT
- SIGNING_KEY_STORE_BASE64
- SIGNING_KEY_ALIAS
- SIGNING_KEY_PASSWORD
- SIGNING_STORE_PASSWORD
- GITHUB_TOKEN
Security Notes
The project demonstrates a very strong commitment to security, including comprehensive input validation, path traversal protection, secure command execution (using subprocess.run with shell=False and temporary files for sensitive data), extensive sensitive data redaction, rate limiting, and audit logging. It explicitly documents security best practices, anti-patterns, and provides secure implementation examples. No 'eval' or similar dangerous patterns were found without clear justification. Passwords for keytool are handled via secure temporary files. Workflows recommend pinning GitHub Actions to specific commit SHAs. The only minor area for potential edge cases could be the regex-based modification of build.gradle.kts, though it operates on trusted project files.
Similar Servers
lamda
AI-powered Android automation framework for mobile data and task automation.
pabal-mcp
Manages App Store and Google Play ASO (App Store Optimization) workflows, including metadata sync, release management, and app registration, directly from an MCP-compatible AI client.
gas_mcp
Manages Google Apps Script (GAS) projects, enabling comprehensive operations like file management, code execution, deployment, authentication, Git integration, and search through a unified interface. It acts as a local intermediary for GAS development workflows.
gbox-mcp-server
Enable AI agents to automate Android devices, Linux environments, and browser sessions.