wassette
Verified Safeby microsoft
Overview
A secure runtime for AI agents to execute WebAssembly Components as tools via the Model Context Protocol.
Installation
wassette runEnvironment Variables
- WASSETTE_CONFIG_FILE
- WASSETTE_COMPONENT_DIR
- WASSETTE_SECRETS_DIR
- PORT
- BIND_HOST
- RUST_LOG
- <COMPONENT_SPECIFIC_API_KEY>
Security Notes
The server is built with a strong focus on security, leveraging WebAssembly's sandboxing (Wasmtime) and a deny-by-default permission model. It enforces fine-grained access control for file system, network, and environment variables via explicit policies. Detailed threat models (confused deputy, supply chain, tool poisoning) and their mitigations are documented. While some cookbook examples mention `eval()` in Python, they also include warnings about its unsafe nature for untrusted input, demonstrating awareness. No obvious hardcoded secrets or malicious patterns were found in the provided snippets.
Similar Servers
trigger.dev
Local development and AI agent interface for Trigger.dev workflows, enabling Python script execution and managing tasks, runs, and deployments.
agentset
Agentset is an open-source platform for building, evaluating, and deploying production-ready Retrieval-Augmented Generation (RAG) and AI agentic applications. It provides end-to-end tooling including document ingestion, vector indexing, evaluation/benchmarks, a chat playground, API hosting, and multi-tenancy capabilities.
agentgateway
A flexible API gateway designed for routing and managing network traffic, with specialized capabilities for integrating AI/LLM models, Model Context Protocol (MCP) agents, and Agent-to-Agent (A2A) communications through configurable listeners, routes, and policies.
hyper-mcp
A fast, secure Model Context Protocol (MCP) server that extends its capabilities through WebAssembly plugins, enabling AI features in applications like Cursor IDE.