claude-skills-mcp-expense-automation
Verified Safeby jageenshukla
Overview
Automated expense management agent with policy enforcement and PII redaction for Claude AI.
Installation
npm start --prefix mcp-serverSecurity Notes
The server's design inherently enhances security by offloading PII redaction and policy validation to local scripts/skills before data reaches the MCP server, ensuring sensitive information does not hit external APIs or the LLM. No 'eval' or direct command injection vulnerabilities are apparent in the provided server code. The MCP server explicitly validates the tool name ('expense-policy_submitExpense') before execution, preventing arbitrary tool calls. The HTTP mode, designed for testing, uses a permissive CORS policy (allowing all origins), which would be a security risk if exposed publicly in a production environment, but is acceptable for its stated local testing purpose. No hardcoded secrets were found.
Similar Servers
Google-Workspace-MCP
Seamlessly integrates Google Drive, Sheets, and Docs with Claude AI and other AI agents through the Model Context Protocol (MCP) for automation.
context-repo-mcp
Facilitates interaction between MCP-compatible AI clients and Context Repo for managing prompts, documents, and collections, including semantic search.
n8n-mcp-server
Facilitates natural language management of n8n workflows, executions, and credentials through integration with Claude AI via the Model Context Protocol.
ai-sdk-provider-claude-code
Provides a Vercel AI SDK integration for Claude models, specifically designed to enable universal tool support by translating AI SDK tools to Claude Code's XML format, eliminating the need for separate MCP servers.