mcp
Verified Safeby mkornreich
Overview
A client-server application demonstrating how Claude can use external tools via the MCP protocol, specifically showcasing a job fetching tool.
Installation
python client.py server.pyEnvironment Variables
- ANTHROPIC_API_KEY
Security Notes
The `server.py` code itself is relatively secure, using standard libraries (`httpx`) for controlled external requests and operating over `stdio` which limits direct network exposure. It does not contain `eval`, obfuscation, or hardcoded secrets. The primary security consideration for the *overall system* lies in the client's ability to execute arbitrary server scripts (Python/Node.js) specified via command-line arguments. This means that if the client is used with an untrusted `server_script_path`, it could lead to arbitrary code execution. This is a design characteristic of how the MCP client launches a server, rather than a vulnerability in `server.py` itself.
Similar Servers
mcp-client-server
A specialized Model Context Protocol (MCP) server designed to act as a testing harness for developing and iterating on other MCP servers within a Claude AI environment.
slack-mcp-server
Provides an AI assistant, like Claude, programmatic access to Slack conversations, threads, and workspace information through the Model Context Protocol (MCP).
converse
Orchestrates and exposes various AI tools (chat, multi-model consensus, job management) over the Model Context Protocol, enabling local, persistent, and potentially asynchronous AI interactions across multiple Large Language Model (LLM) providers.
python-mcp-server
This project implements a Model Context Protocol (MCP) server providing weather information tools (alerts and forecasts) via Server-Sent Events (SSE), demonstrating how AI agents can interact with external services.