spring-ai-resos
Verified Safeby pacphi
Overview
Develops a Spring AI enhanced restaurant booking system allowing users to converse with a chatbot to search for restaurants and make reservations.
Installation
No command providedEnvironment Variables
- RESOS_API_ENDPOINT
- SPRING_AI_RESOS_SERVER_URL
- OPENAI_API_KEY
- CHAT_MODEL
- EMBEDDING_MODEL
- OLLAMA_BASE_URL
Security Notes
The project avoids hardcoded secrets by relying on environment variables for API keys and database credentials, and external configuration files (`creds.yml`). The `customQuery` parameter for data filtering directly appends to SQL queries in `PageableCustomerRepository` and `PageableFeedbackRepository`. While a `sanitizeCustomQuery` method is implemented to validate and restrict input using a regular expression, the regex is highly specific and might unintentionally limit functionality or could be brittle. A more robust solution would involve prepared statements or a proper query builder for parameterized queries to eliminate the potential for SQL injection completely. No other obvious malicious patterns or `eval` usage were detected.
Similar Servers
solon-ai
A framework for building AI agents and applications that communicate via the Model Context Protocol (MCP) to interact with diverse AI services, tools, and resources.
hello-spring-mcp-server
This server provides a set of tools for AI agents to query employee skills and retrieve employees based on specific skills from an in-memory dataset.
spring-boot-ai
The MCP Server provides a remote 'Booking Tool' for an AI agent to make accommodation reservations in tourist destinations.
springai-mcp-gateway
An OAuth 2.1 secured Spring AI MCP gateway enabling ChatGPT Connectors to interact with local development tools via a streamable HTTP endpoint.