secop-mcp-project
Verified Safeby oddradioada
Overview
AI-powered intelligent access to Colombian public procurement data (SECOP II) for searching processes, retrieving details, and aggregating statistics.
Installation
bash /home/oddradiocube/projects/secop-mcp/secop-mcp-server/start.shEnvironment Variables
- SOCRATA_API_KEY
- SOCRATA_API_SECRET
- SOCRATA_APP_TOKEN
Security Notes
The server uses environment variables for API keys/secrets and explicitly includes `.env` in `.gitignore`, which is good practice. Input validation is rigorously implemented using Zod schemas for all tool parameters, significantly reducing the risk of invalid or malicious data. SQL injection is mitigated with a custom `escape` function in the SoQL query builder. The server operates over STDIO, which is inherently more secure than network-exposed services as it avoids typical network vulnerabilities. If a future HTTP/SSE transport is implemented, additional security measures like OAuth2 and TLS will be required as noted in the project's plan.
Similar Servers
mcp-server
A Model Context Protocol (MCP) server that integrates with SerpApi to provide comprehensive search engine results and data extraction to an LLM.
ihale-mcp
Provides an MCP server to access Turkish public tender data (EKAP v2) and official government announcements (ilan.gov.tr) for LLM applications and other clients.
Riksdag-Regering-MCP
Enables LLMs to query and retrieve real-time open data, documents, protocols, and records from the Swedish Parliament (Riksdagen) and Government Offices (Regeringskansliet).
chip
The Collibra MCP Server acts as a bridge, enabling AI agents to interact with Collibra Data Governance Center for intelligent data discovery and governance operations.