quickchart-mcp
Verified Safeby manelix2000
Overview
Generates chart images using QuickChart service, integrated as a tool for Model Context Protocol clients like GitHub Copilot, Cursor, or Claude Desktop.
Installation
npx -y @manelix2000/quickchart-mcp@latestEnvironment Variables
- QUICKCHART_BASE_URL
Security Notes
The server uses `axios` to fetch chart images from `quickchart.io`. The `QUICKCHART_BASE_URL` is configurable via an environment variable. The `download_chart` tool allows saving images to a user-specified path, defaulting to the desktop. While it checks for directory write permissions before writing (`fs.promises.access(dir, fs.constants.W_OK)`), a malicious AI prompt could theoretically instruct the server to write to sensitive but writable locations. No hardcoded secrets or arbitrary code execution vulnerabilities (like `eval`) were identified. Overall, it appears generally safe for its intended use case within a controlled MCP client environment.
Similar Servers
aderyn
A Rust-based Solidity static analyzer that identifies vulnerabilities in smart contracts and provides developer tooling such as LSP and an MCP server for integration with other development environments and AI agents.
SchemaCrawler-MCP-Server-Usage
Provides an AI-powered agent to assist with database schema analysis, design issue identification, and SQL query generation.
mdk-mcp-server
Provides AI agents with comprehensive SAP Mobile Development Kit (MDK) knowledge and tools to assist in MDK application development, including project creation, artifact generation (pages, actions, i18n, rules), project management (build, deploy, validate, migrate), and documentation access.
terry-form-mcp
Enables AI assistants to securely execute Terraform commands and leverage LSP-driven code intelligence for infrastructure-as-code management.