super-fetch-mcp-server
Verified Safeby j0hanz
Overview
The server fetches web pages, extracts readable content using Mozilla Readability, and returns AI-friendly Markdown for LLM summarization, context retrieval, knowledge base ingestion, and AI agents.
Installation
npx -y @j0hanz/superfetch@latest --stdioEnvironment Variables
- API_KEY
- ACCESS_TOKENS
- OAUTH_ISSUER_URL
- OAUTH_AUTHORIZATION_URL
- OAUTH_TOKEN_URL
- OAUTH_INTROSPECTION_URL
Security Notes
The server demonstrates strong security practices, including extensive URL validation, SSRF protection with comprehensive IP and hostname blocklists (private IP ranges, cloud metadata endpoints, internal domain suffixes), and robust HTTP host/origin validation. It implements rate limiting and requires authentication (API key or OAuth) for HTTP mode, using timing-safe comparisons for static tokens. Content transformation is handled in worker threads, mitigating some types of exploitation. No 'eval' or obvious malicious patterns were found in the provided code. However, as noted in the README, caution is advised when deploying in sensitive environments, as it can access external URLs on behalf of AI assistants.
Similar Servers
tomcp
Converts any website into an MCP (Model-Config-Protocol) server for AI tools and enables AI chat with website content by converting HTML to clean Markdown.
html-to-markdown-mcp
Converts HTML content from web pages or raw strings into Markdown format, with options for including metadata, truncating content, and saving to files.
Crawleo-MCP
Provides AI assistants with real-time web search and crawling capabilities via the Model Context Protocol (MCP).
mcp-server-requests
An MCP server that provides HTTP request capabilities, enabling LLMs to fetch and process web content, including saving to files.