minimal_sushi_mcp_server_2025
by masaomi
Overview
Submit SUSHI bioinformatics jobs from Cursor/Claude via an MCP server, supporting new datasets and existing ones.
Installation
/home/masaomi/.conda/envs/mcp_server_py3.10/bin/python /srv/sushi/masa_test_sushi_20251002/minimal_sushi_mcp_server_2025/server.pyEnvironment Variables
- SUSHI_ROOT
Security Notes
The server constructs a shell command string using user-provided inputs like 'dataset_name' and 'next_dataset_name' and then executes it via `bash -c`. This pattern is highly vulnerable to shell injection if an attacker (or a compromised LLM) provides malicious input (e.g., `dataset_name='my_data; rm -rf /'`), allowing arbitrary commands to be executed on the host system. Input validation on `app_class`, `project`, and `dataset_id` helps, but string-based inputs are not sufficiently sanitized. Authentication is explicitly omitted for PoC purposes, further increasing risk in a non-PoC scenario.
Similar Servers
mcp-manager
A web GUI to easily manage and configure Model Context Protocol (MCP) servers for the Claude Desktop app on MacOS, generating terminal commands for installation and setup.
mcp-install-instructions-generator
Generates installation instructions for Model Context Protocol (MCP) servers across various client applications and formats.
claude-faf-mcp
Optimizes AI understanding of software projects by providing persistent context, fixing context-drift, and enabling bi-directional synchronization between project metadata and AI documentation.
Workshop-MCP-Server-Directions-Lab
This server integrates with Microsoft Dynamics 365 Business Central to expose its data and functionality as MCP tools for Claude Desktop, enabling AI-powered interactions with ERP data.