flowlens-mcp-server
Verified Safeby magentic
Overview
Provides rich browser context (user actions, network, console, storage, DOM, screen recording) to coding agents for in-depth debugging and automated regression testing of web applications.
Installation
flowlens-mcp-serverEnvironment Variables
- FLOWLENS_MCP_TOKEN
Security Notes
The server uses standard HTTP clients (`httpx`, `requests`, `aiohttp`) for external communication, handling tokens securely via environment variables. Pydantic DTOs provide schema validation for data. However, the `LocalZipClient`'s use of `zipfile.ZipFile.extractall` on user-provided local zip files does not appear to sanitize filenames within the archive. This could potentially expose the system to path traversal vulnerabilities if a malicious zip file is processed, allowing files to be written outside the intended extraction directory. This risk is primarily confined to the local machine of the developer running the server and providing the local zip path.
Similar Servers
chrome-devtools-mcp
Enables AI coding agents to control and inspect a live Chrome browser for reliable automation, in-depth debugging, and performance analysis via the Model-Context-Protocol (MCP).
mcp-server-browserbase
Provides cloud browser automation capabilities, enabling LLMs to interact with web pages, take screenshots, extract information, and perform automated actions.
brightdata-mcp
The MCP server enables AI agents to access real-time web data and perform browser automation for tasks like research, e-commerce intelligence, market analysis, and content creation, bypassing bot detection and CAPTCHAs.
web-eval-agent
Autonomously evaluates web applications for UX/UI issues using a browser-driving AI agent, providing detailed reports and live browser view from within an IDE.