bb-applescript-mcp-server
Verified Safeby pachipalabharath
Overview
Allows large language model (LLM) clients to communicate with macOS applications using AppleScript, providing tools for automation and control.
Installation
deno run --allow-all --unstable-kv main.tsEnvironment Variables
- ENABLE_ARBITRARY_SCRIPTS
- PLUGINS_DISCOVERY_PATHS
- LOG_LEVEL
- APPLESCRIPT_TIMEOUT_DEFAULT
- APPLESCRIPT_TIMEOUT_MAX
- DEBUG_APPLESCRIPT
- DEBUG_APPLESCRIPT_SAVE_ALL
- DEBUG_APPLESCRIPT_DIR
- DEBUG_APPLESCRIPT_CONTEXT
- PLUGINS_ALLOWED_LIST
- PLUGINS_BLOCKED_LIST
- MCP_TRANSPORT
- STORAGE_DENO_KV_PATH
- HTTP_PORT
- HTTP_HOST
Security Notes
The server uses Deno with `--allow-all`, granting broad permissions. The `run_script` tool allows arbitrary AppleScript execution, which is highly dangerous. However, this tool is explicitly disabled by default via `ENABLE_ARBITRARY_SCRIPTS=false` and documented as a security risk. If enabled, it poses a critical risk. AppleScript automation itself requires macOS user permissions for specific applications, adding a layer of system-level control. No direct 'eval' or obvious hardcoded secrets were found.
Similar Servers
XcodeBuildMCP
A Model Context Protocol (MCP) server that provides Xcode-related tools for AI assistants, enabling programmatic interaction with Xcode projects, simulators, devices, and Swift packages.
osaurus
Osaurus is a native macOS LLM server running local language models with OpenAI and Ollama compatible APIs, enabling tool calling and a plugin ecosystem for AI agents.
wcgw
An MCP server that empowers AI chat applications to execute shell commands, edit code, and manage project context on a local machine for development tasks.
macos-automator-mcp
Transforms an AI assistant into a macOS automation agent, allowing it to execute AppleScript and JavaScript for Automation (JXA) commands to control applications and system functions.