gesetze-im-internet-mcp
by kaibruell
Overview
Provides tools to download, list, and extract paragraphs from German law XML files, integrated as an MCP server.
Installation
docker exec -i german-law-mcp-server node src/index.jsSecurity Notes
CRITICAL: The server is highly vulnerable to command injection. The `lawName` parameter is directly concatenated into shell commands executed via `child_process.execSync` in `mcp/src/index.js` without proper sanitization or quoting. For example, providing `estg; rm -rf /` as `lawName` will execute `rm -rf /` within the Docker container, leading to arbitrary code execution and potential data loss. This is present in `downloadLaw`, `getParagraph`, and `listContents` methods.
Similar Servers
claude-code-mcp
Acts as an MCP server to enable LLMs to run Claude Code CLI in one-shot mode, bypassing permissions for complex coding, file system, Git, and terminal operations.
ayunis-legal-mcp
A comprehensive system for searching and analyzing German legal texts using vector embeddings and semantic search, integrating with AI assistants via the Model Context Protocol.
consult-llm-mcp
An MCP server that allows AI agents like Claude Code to consult stronger, more capable AI models (e.g., GPT-5.2, Gemini 3.0 Pro) for complex code analysis, debugging, and architectural advice.
ast-mcp-server
Provides an MCP (Model Context Protocol) server for code structure and semantic analysis using ASTs and ASGs, integrated with external AI clients like Claude Desktop.