firemcp
Verified Safeby iamanishroy
Overview
Enables AI agents and LLMs to securely interact with Firestore databases through a Model Context Protocol (MCP) server, offering complete CRUD and query operations.
Installation
bun run stdioEnvironment Variables
- FIREBASE_API_KEY
- FIREBASE_PROJECT_ID
- FIREBASE_USER_EMAIL
- FIREBASE_USER_PASSWORD
Security Notes
The server explicitly uses the Firebase Client SDK instead of the Admin SDK, which is a critical security advantage as it respects Firestore Security Rules. This prevents AI agents from having unrestricted database access even if they behave unexpectedly. All tool inputs are validated using Zod schemas, mitigating potential injection vectors for structured data. Environment variables are correctly used for Firebase credentials, preventing hardcoded secrets. The implementation of individual Firestore operations is standard, and there are no apparent uses of 'eval', obfuscation, or other broadly malicious patterns in the provided code snippets. Network risks are minimal for a well-tested SDK, although public-facing HTTP/SSE endpoints always carry some inherent attack surface.
Similar Servers
rmcp
Serves as an AI assistant backend to perform comprehensive statistical analysis, econometric modeling, machine learning, time series analysis, and data science tasks using R through natural language conversations.
ls-mcp
A command-line tool for discovering, analyzing, and reporting on Model Context Protocol (MCP) server configurations in a local development environment, including their status, versioning, and potential credential exposures.
sub-agents-mcp
Acts as an MCP server to enable Claude Code-style sub-agents in any MCP-compatible tool like Cursor, facilitating delegation of specialized AI tasks defined in markdown files.
company-docs-mcp
Transforms organizational documentation into an AI-powered knowledge base for semantic search, Q&A via chat interface, Claude Desktop, and Slack integration.