vibecheck
Verified Safeby kfreiman
Overview
The VibeCheck server analyzes CVs against job descriptions by ingesting documents and generating structured analysis prompts for Language Models.
Installation
./vibecheck mcp-serverEnvironment Variables
- VIBECHECK_STORAGE_PATH
- VIBECHECK_STORAGE_TTL
Security Notes
The server implements strict path validation (e.g., for path traversal prevention and null bytes) for file operations and uses environment variables for configuration, which are good practices. Robust error handling, context cancellation, and retry logic are also present. A potential area of concern is the `cv_check` tool's reliance on the external `markitdown` binary (a Python dependency), which introduces an external attack surface not directly controlled by the Go codebase. The HTML converter (using Playwright) also introduces a complex external dependency, though it's not used in the primary document ingestion flow.
Similar Servers
mcp-devtools
A unified, high-performance Go-based MCP server providing access to a comprehensive suite of developer tools, with robust OAuth 2.1 authentication and observability features.
mkp
MKP is a Model Context Protocol (MCP) server for Kubernetes, enabling LLM-powered applications to interact with Kubernetes clusters by providing tools for resource listing, getting, applying, deleting, and executing commands.
kafka-mcp-server
Enables LLM models and AI applications to interact with Apache Kafka for producing/consuming messages, managing topics, monitoring consumer groups, and assessing cluster health via the Model Context Protocol (MCP).
mcp-factcheck
The MCP Fact-Check MCP Server validates content against the Model Context Protocol (MCP) specification using AI-powered semantic search to ensure technical accuracy and prevent misinformation.