CloudUxMCP
by pandiaaman
Overview
Provides an AI-powered assistant for Avid MediaCentral CTMS, enabling natural language interaction and system browsing of Production Asset Management (PAM) and Media Asset Management (MAM) systems.
Installation
uvicorn main:app --reload --host 0.0.0.0 --port 8000Environment Variables
- MCS_HOST
- MCS_USER
- MCS_PASSWORD
- BEARER_TOKEN
- OPENAI_API_KEY
- SERVER_HOST
- SERVER_PORT
Security Notes
Critical security risks identified: Hardcoded MediaCentral credentials (host, username, password, bearer_token) are present in frontend source files (`avidmcpui/src/components/LoginScreen.jsx`) and backend test scripts (`avidmcpserver/test_auth.py`, `avidmcpserver/test_complete.py`), making them easily discoverable and exploitable. SSL certificate verification is explicitly disabled (`verify=False`) for `httpx` client in `auth_service.py` and `ctms_service.py`, which is highly insecure for production environments and susceptible to Man-in-the-Middle (MITM) attacks. The backend's CORS middleware (`allow_origins=["*"]`) allows requests from any origin, which is overly permissive and potentially risky if sensitive data is involved. OpenAI API key is configured via environment variables but requires careful handling to prevent exposure.
Similar Servers
gemini-cli-desktop
A cross-platform desktop and web UI for interacting with AI models (Gemini CLI, Qwen Code, LLxprt Code) through ACP and MCP, featuring tool confirmation, code diffing, chat history, and file browsing.
MediaWiki-MCP-Server
An MCP server that enables Large Language Model (LLM) clients to interact with any MediaWiki wiki.
contentful-mcp-server
Provides AI assistants with comprehensive tools to interact with Contentful APIs for content creation, management, asset organization, workflow automation, and content modeling.
statamic-mcp
Provides an AI assistant with structured access and control over Statamic CMS content and configurations through a router-based API.