nix-mcp
Verified Safeby illustris
Overview
A Model Context Protocol (MCP) server for interacting with Nix build, evaluation, and search functionalities.
Installation
python -m nix_mcp.serverSecurity Notes
The server wraps Nix CLI commands using `subprocess.run` with a list of arguments, which generally mitigates common shell injection risks. There are no explicit uses of Python's `eval()` or obfuscation. The primary security consideration is that the server directly exposes powerful Nix functionalities (like building, evaluating, and searching) to an LLM. While `extra_args` allows for flexible command line additions, it is appended as separate arguments to the Nix command, making direct shell injection difficult. However, a malicious or poorly instructed LLM could potentially pass Nix-specific arguments or expressions that lead to resource exhaustion, information leakage, or unwanted system modifications through Nix itself, rather than a flaw in the server's code. Logs are written to `/tmp` which can aid auditing.
Similar Servers
XcodeBuildMCP
Provides an MCP (Model Context Protocol) server for AI agents and other clients to programmatically build, test, run, and debug iOS and macOS applications, manage simulators/devices, and capture logs.
nuxt-mcp-dev
This server provides development context and real-time insights from Vite/Nuxt applications to AI models via a Model Context Protocol (MCP) server.
mcp-servers-nix
Provides a Nix-based configuration framework for Model Control Protocol (MCP) servers with ready-to-use packages and reproducible deployments.
mcp-framework
A Rust framework for building AI agents with built-in Model Context Protocol (MCP) support, multi-LLM integration, and a web-based inspector for debugging.