knowns
Verified Safeby knowns-dev
Overview
A CLI-first knowledge layer and task/documentation management tool that provides AI agents with persistent project context.
Installation
npx knowns mcpEnvironment Variables
- API_URL
- WS_URL
- KNOWN_PREFERRED_PM
Security Notes
The project is designed as 'local-first' and uses 'files as database', which inherently limits external attack surfaces. The Web UI is explicitly 'localhost-only' and lacks authentication by design, relying on local machine security. File system operations are generally handled using `path.join` and basic input sanitization. The MCP server integrates with `claude` CLI and uses Zod for input validation, which is a good security practice. No instances of 'eval' or direct arbitrary command execution from unsanitized user input were found. Potential minor risks could involve advanced path traversal if inputs are not fully sanitized in all file operations, or if the local machine's file permissions are weak. The planned 'self-hosted sync' feature will introduce new security considerations requiring authentication.
Similar Servers
pluggedin-app
A testing environment for MCP (Model Control Protocol) servers, allowing interaction through a chat interface powered by LLMs and an AI agent using the LangChain ReAct framework.
context-sync
Context Sync provides AI systems with persistent, queryable memory across all development tools, sessions, and projects, allowing AI to remember codebase details, architectural decisions, and conversation history.
conductor-tasks
Conductor Tasks acts as an intelligent AI-powered assistant for developers, streamlining the entire development lifecycle from task generation and planning (parsing PRDs, expanding tasks, generating implementation steps) to execution and code modification (generating diffs). It provides visual task management, integrates with various IDEs, and leverages multiple LLM providers for optimal results and cost efficiency.
mcp-server
Provides AI tools with persistent context, semantic code search, and team knowledge sharing across sessions.