mcp-server
Verified Safeby iwm57
Overview
An MCP server to expose Actual Budget financial functionality as callable tools, bridging an MCP client to an Actual Budget backend via actual-bridge.
Installation
python -m mcp_server.serverEnvironment Variables
- ACTUAL_BRIDGE_URL
- ACTUAL_SYNC_ID
- ACTUAL_FILE_PASSWORD
- BRIDGE_API_KEY
Security Notes
The `httpx.AsyncClient` is initialized with `verify=False` to skip SSL verification for the actual-bridge communication. While this might be intended for self-signed certificates in a controlled environment, it can lead to Man-in-the-Middle (MITM) vulnerabilities if the `ACTUAL_BRIDGE_URL` points to an untrusted endpoint or if the network is not secure. This significantly reduces the security posture for network communication. Other aspects like `eval` or hardcoded secrets are not present.
Similar Servers
mcp-compose
This server provides a robust example of OAuth2 authentication for MCP (Model Context Protocol) servers, using GitHub as the identity provider. It demonstrates secure multi-server management, protocol translation, and integration with AI agents for tool invocation.
actual-budget-mcp-server
A Model Context Protocol (MCP) HTTP server that exposes Actual Budget API functionality as streamable tools and resources for AI agents.
fmp_mcp_server
Serves real-time financial data via Model Context Protocol (MCP) to AI agents and LLM applications for various financial analyses.
expense-tracker-mcp-server-improvised
Provides AI-powered budgeting, smart expense tracking, and affordability insights via the Model Context Protocol (MCP) for financial management.