bmad-mcp-server
Verified Safeby mkellerman
Overview
Provides AI assistants with access to a comprehensive software development methodology (BMAD) including specialized agents, automated workflows, and resources through the Model Context Protocol.
Installation
npx -y bmad-mcp-serverEnvironment Variables
- BMAD_ROOT
- DEBUG
- NODE_ENV
Security Notes
The server's core functionality involves cloning Git repositories from arbitrary URLs specified by the user or CLI arguments. While Git operations are handled with proper path sanitization (e.g., using `path.join`), the content of these remote repositories is not inherently trusted. However, the execution model of BMAD agents within this server is to generate text-based prompts and instructions for an LLM, rather than executing arbitrary code from the loaded content directly within the Node.js process, which mitigates direct code execution risks. No use of `eval` or similar dynamic code execution found. No hardcoded production secrets identified.
Similar Servers
git-mcp-server
A Model Context Protocol (MCP) server that provides Git-specific tools and resources for AI/LLM agents to interact with version control systems.
mcp-servers
Provides a curated collection of Model Context Protocol (MCP) server configurations to enable AI agents to interact with various developer tools and services.
Polymcp
A comprehensive toolkit and agent framework for building Model Context Protocol (MCP) servers and orchestrating them with Large Language Models (LLMs) across Python and TypeScript environments.
azure-devops-mcp-server
Exposes Azure DevOps operations as tools for AI assistants, enabling AI agents to automate tasks like creating work items, managing pull requests, and queuing builds.