mcp-knowledge-graph
by moche-ai
Overview
Provides a Model Context Protocol (MCP) server for verified knowledge with trust scores, reasoning capabilities, and fact-checking.
Installation
mcp-kg-serverEnvironment Variables
- NEO4J_PASSWORD
Security Notes
The `/knowledge/collect` endpoint in `src/api/server.py` uses `sys.path.insert` to add `/data/apps/agents/src` to Python's import path, then dynamically imports modules. This creates a critical vulnerability: if an attacker can gain write access to `/data/apps/agents/src` (e.g., through container compromise or misconfigured volumes), they can inject malicious Python modules, leading to arbitrary code execution on the server. Proper container security and access controls are paramount to mitigate this specific risk. Other aspects like Neo4j credential handling via environment variables and controlled tool execution (using `getattr` on predefined methods) are more secure.
Similar Servers
context-portal
Manages structured project context for AI assistants and developer tools, enabling Retrieval Augmented Generation (RAG) and prompt caching within IDEs.
mcp
Enables AI models (LLMs) to interact with a Neo4j graph database by providing a structured set of tools via the Model Context Protocol (MCP).
knowledgebase-mcp
A standardized Model Context Protocol (MCP) server that aggregates and provides AI systems with access to diverse biomedical knowledge bases and analysis tools.
code-graph-context
A Model Context Protocol (MCP) server that builds and queries a knowledge graph of TypeScript codebases in Neo4j, supporting semantic search, impact analysis, dead code detection, and multi-agent coordination through stigmergy.