Back to Home
micartey icon

viro

Verified Safe

by micartey

View Source

Overview

JavaFX overlay doodle application for screen sharings and recordings, featuring an MCP endpoint for LLMs to programmatically draw and manipulate shapes.

Installation

Run Command
nix run github:micartey/viro

Security Notes

The MCP endpoint exposes 'ImageTools.drawImage' and 'ImageTools.drawImageFromURL' methods which allow loading images from arbitrary local file paths or URLs provided by an LLM. While 'viro' itself merely attempts to load the image, this could be an attack vector for an LLM to attempt local file access or Server-Side Request Forgery (SSRF) if not properly controlled or sandboxed in the LLM's environment. The server runs on localhost, limiting direct external network attacks.

Similar Servers

solon-ai

265

The Model Context Protocol (MCP) server provides a standardized interface for AI models to interact with external tools, resources, and prompt templates through a structured, bidirectional communication protocol.

Other
4
$Medium

quarkus-mcp-server

174

This server demonstrates a secure Model Context Protocol (MCP) using Server-Sent Events (SSE) for exposing tools, prompts, and resources, with authentication handled by Keycloak or GitHub OAuth2.

Other
9
$Low

mcp-annotated-java-sdk

23

Annotation-driven framework for building Model Context Protocol (MCP) servers in Java, simplifying the definition and integration of resources, prompts, and tools for LLM applications.

Other
8
$Low

jolokia-mcp-server

13

Enables an LLM to manage a Java application by providing a bridge to JMX API via Jolokia.

Other
6
$Medium

Stats

Interest Score19
Security Score8
Cost ClassMedium
Avg Tokens500
Stars1
Forks0
Last Update2026-01-01

Tags

JavaFXOverlayDoodleLLM IntegrationMCP ServerSpring Boot