vibe
by mondaycom
Overview
Provides intelligent assistance for developers working with Monday.com's Vibe Design System components by offering component APIs, usage examples, icon discovery, and best practice guidance.
Installation
cd packages/mcp && node dist/index.jsSecurity Notes
The server utilizes `child_process.exec` to run `curl` commands to fetch metadata and icon data from `unpkg.com`. More critically, the `IconMetadataService` uses Node.js's `vm.runInContext` to execute JavaScript code fetched from `unpkg.com` for parsing icon metadata. While `vm.runInContext` operates in a sandboxed environment, executing externally sourced code poses a significant supply chain security risk. A compromise of `unpkg.com` or the specific package could lead to arbitrary code execution within the server's environment. Local file system access is observed in migration tools (`v3-migration.ts`, `dropdown-migration.ts`) for analyzing user project files, which is expected for such tools but underscores the need for trust in the tool's integrity.
Similar Servers
claude-prompts
This server provides a hot-reloadable prompt engine with chains, quality gates, and structured reasoning for AI assistants, enhancing control over Claude's behavior in prompt workflows.
comet
An AI-enhanced development workflow agent (Model Context Protocol server) to assist with building React/TypeScript components based on USWDS, including code generation, component listing, and documentation search.
flowbite-mcp
Enables AI assistants to create UI components using the Flowbite library and generate custom Tailwind CSS themes.
tiny-robot
A Vue 3 component library and AI interaction kit for building AI-powered frontend applications, providing UI components and a unified API interface to interact with various large AI models.