prompts-mcp
Verified Safeby mrsimpson
Overview
A Model Context Protocol (MCP) server for managing, templating, and exposing AI prompts defined in markdown files via stdio and HTTP transports.
Installation
node dist/bin.jsEnvironment Variables
- HTTP_PORT
- LOG_LEVEL
- ENABLE_STDIO
- ENABLE_HTTP
- SERVER_NAME
- SERVER_VERSION
- PROJECT_DIR
- PROMPTS_SUBDIR
Security Notes
The server uses Handlebars templating with `noEscape: true` for prompt content, which is intentional to preserve code formatting in prompts. While this means the server itself does not attempt to sanitize the *output* to the LLM, the content is intended for an AI, not direct rendering in a browser, mitigating typical XSS risks. All file paths are handled using `path.resolve` and `existsSync` which helps prevent directory traversal vulnerabilities. Configuration parsing includes validation for ports and log levels. No obvious hardcoded secrets or direct arbitrary code execution via user input were found. The directory discovery mechanism allows overrides via environment variables, which is a flexible but secure pattern.
Similar Servers
tmcp
Build Model Context Protocol (MCP) servers for AI agents to interact with external tools and data sources, enabling LLMs to access context and perform actions.
claude-prompts-mcp
The Claude Prompts MCP Server provides hot-reloadable prompts, structured reasoning, and chain workflows to enhance AI assistant interactions.
mcp-use-cli
An interactive command-line interface (CLI) tool for connecting to and interacting with Model Context Protocol (MCP) servers using natural language, acting as an AI client that orchestrates LLM responses with external tools.
mcp-server-llmling
mcp-server-llmling serves as a Machine Chat Protocol (MCP) server, providing a YAML-based system to configure and manage LLM applications, including resources, prompts, and tools.