ls-mcp
Verified Safeby lirantal
Overview
A command-line tool for discovering, analyzing, and reporting on Model Context Protocol (MCP) server configurations in a local development environment, including their status, versioning, and potential credential exposures.
Installation
npx ls-mcpEnvironment Variables
- HOME
- NODE_DEBUG
Security Notes
The tool uses `child_process.execSync` to list running processes on the system (e.g., `ps` on Unix, `powershell` on Windows). While `execSync` can be a security risk if used with unsanitized user input, in this tool's implementation, the commands executed are fixed and not directly constructed from arbitrary user input, mitigating direct command injection risks. It also actively detects and masks potential credentials within *other* MCP server configurations, which is a security feature, not a vulnerability in the tool itself. The tool is designed to enhance security awareness by highlighting configuration issues.
Similar Servers
rmcp
Serves as an AI assistant backend to perform comprehensive statistical analysis, econometric modeling, machine learning, time series analysis, and data science tasks using R through natural language conversations.
karma
Provides a plug-and-play Knowledge Graph service via the Model Context Protocol (MCP), allowing AI agents to store, retrieve, and manage structured and unstructured knowledge (entities, relations, observations).
fastmcp
Build fast, declarative, and type-safe servers implementing the Model Context Protocol (MCP) in Dart.
mcp_tools_server
An MCP server that empowers an LLM to act as a comprehensive, multi-platform AI assistant capable of managing files, system processes, web browsing, personal organization, and media control on a local device.