mcp_server_manager
Verified Safeby kakehashi-inc
Overview
An Electron-based GUI application for managing, monitoring, logging, and exposing (via ngrok and HTTPS proxy) local Model Context Protocol (MCP) servers, with features like auto-start/restart and WSL support.
Installation
yarn devSecurity Notes
The application employs standard Electron security practices, including context isolation and controlled IPC communication, and arguments for child process spawning are quoted. No direct code injection vulnerabilities were found. However, its core function involves executing user-defined commands and exposing local network services (via ngrok or HTTPS proxy). Sensitive configurations like ngrok authentication tokens and OIDC secrets are stored in the `config.json` file located in `~/.mcpm`. Compromise of this local configuration file could allow an attacker with file system access to execute arbitrary commands or expose unauthorized services. The HTTPS proxy defaults to listening on `0.0.0.0`, which should be noted.
Similar Servers
mcp-router
A desktop application that simplifies the management and aggregation of Model Context Protocol (MCP) servers.
mcpm.sh
MCPM is a command-line tool for managing Model Context Protocol (MCP) servers, enabling discovery, installation, execution, sharing, and integration with various MCP clients.
mcp-manager
A web GUI to easily manage and configure Model Context Protocol (MCP) servers for the Claude Desktop app on MacOS, generating terminal commands for installation and setup.
mcp-gearbox
A cross-platform desktop application for managing Model Context Protocol (MCP) servers across various AI agents.