gohab
by mbocsi
Overview
A home automation server for managing IoT devices and sensors using a message-based architecture.
Installation
make server && ./bin/serverSecurity Notes
Critical security vulnerabilities exist. The server lacks explicit authentication and authorization mechanisms for client (device) connections, allowing any client to connect and declare capabilities. The WebSocket transport `websocket.Upgrader` explicitly sets `CheckOrigin: true`, which disables same-origin policy enforcement and makes it vulnerable to Cross-Site WebSocket Hijacking (CSWH) if not mitigated by external security. This combination makes the system highly insecure for deployment in any exposed or production environment without significant security enhancements.
Similar Servers
xiaozhi-esp32-server
This project provides a comprehensive backend service for ESP32-based intelligent terminal devices, enabling AI interaction, device control, voice recognition, and managing various smart features through MQTT, Websocket, and custom MCP protocols.
xiaozhi-esp32-server-java
Provides backend support and a management platform for smart hardware devices, focusing on AI-powered voice interaction, device management, and IoT control.
ha-mcp
Provides AI agents with complete control over Home Assistant via REST and WebSocket APIs, offering a comprehensive suite of tools for smart home management, automation, and debugging.
advanced-homeassistant-mcp
A powerful, secure, and extensible Model Context Protocol (MCP) server that enables AI assistants like Claude, GPT, and Cursor to seamlessly interact with Home Assistant. Control your lights, climate, automations, and more through natural language commands.