prompts-mcp
Verified Safeby mrsimpson
Overview
A Model Context Protocol (MCP) server for managing, templating, and exposing AI prompts defined in markdown files via stdio and HTTP transports.
Installation
node dist/bin.jsEnvironment Variables
- HTTP_PORT
- LOG_LEVEL
- ENABLE_STDIO
- ENABLE_HTTP
- SERVER_NAME
- SERVER_VERSION
- PROJECT_DIR
- PROMPTS_SUBDIR
Security Notes
The server uses Handlebars templating with `noEscape: true` for prompt content, which is intentional to preserve code formatting in prompts. While this means the server itself does not attempt to sanitize the *output* to the LLM, the content is intended for an AI, not direct rendering in a browser, mitigating typical XSS risks. All file paths are handled using `path.resolve` and `existsSync` which helps prevent directory traversal vulnerabilities. Configuration parsing includes validation for ports and log levels. No obvious hardcoded secrets or direct arbitrary code execution via user input were found. The directory discovery mechanism allows overrides via environment variables, which is a flexible but secure pattern.
Similar Servers
tmcp
A server implementation for the Model Context Protocol (MCP) to enable LLMs to access external context and tools.
claude-prompts-mcp
Enhances AI assistant behavior through structured prompt management, multi-step chains, quality gates, and autonomous verification loops, primarily for development tasks.
mcp-ai-agent-guidelines
A comprehensive AI agent development framework focused on structured design, prompt engineering, code analysis, and agent-to-agent orchestration for developers.
mcp-server-llmling
mcp-server-llmling serves as a Machine Chat Protocol (MCP) server, providing a YAML-based system to configure and manage LLM applications, including resources, prompts, and tools.