memento-cloudflare
Verified Safeby hockinghills
Overview
A Cloudflare Worker acting as a Model Context Protocol (MCP) server, exposing a Neo4j knowledge graph through hybrid semantic and keyword search capabilities, powered by VoyageAI embeddings.
Installation
wrangler devEnvironment Variables
- NEO4J_URI
- NEO4J_USER
- NEO4J_PASSWORD
- VOYAGE_API_KEY
- OAUTH_KV
Security Notes
The `test-vector-http.js` file contains hardcoded `VOYAGE_API_KEY` and `NEO4J_AUTH` credentials, which is a critical security vulnerability as it exposes sensitive production-like secrets directly in the codebase. While the main worker (`src/index.ts`) is configured to use environment variables (a good practice), the presence of these secrets in the repository significantly lowers its security posture. The worker's current `fetch` handler only returns static metadata, making it safe as deployed. However, the comments indicate future plans to expose the full tool capabilities, which would require robust OAuth (mentioned as 'next') to prevent unauthorized database access and API usage. Cypher queries are parameterized, mitigating direct SQL/Cypher injection.
Similar Servers
mcp-neo4j
The MCP Neo4j Cypher server enables AI models to interact with a Neo4j graph database, execute Cypher queries (read and write), explore the graph schema, and manage query performance and response sizes.
portaljs-mcp-server
A remote Model Context Protocol (MCP) server deployed on Cloudflare Workers, providing AI agent tools to interact with PortalJS datasets for search, retrieval, and data preview.
bluera-knowledge
Provides a semantic knowledge base and intelligent web crawling capabilities to power coding agents, enabling them to search internal project files, Git repositories, and crawled web documentation.
semantic-wake-intelligence-mcp
A Model Context Protocol (MCP) server providing AI agents with a 3-layer temporal intelligence system for memory, causality, and prediction.