mcp-server-llmling
Verified Safeby phil65
Overview
mcp-server-llmling serves as a Machine Chat Protocol (MCP) server, providing a YAML-based system to configure and manage LLM applications, including resources, prompts, and tools.
Installation
uvx mcp-server-llmling@latestSecurity Notes
The server includes a 'config injection server' (FastAPI/WebSocket API) that, if enabled and exposed, allows for arbitrary code execution. This includes registering Python code as tools, importing functions from specified paths, and installing Python packages via pip. While disabled by default and restricted to 'stdio' transport by default, enabling this feature (e.g., via `--enable-injection`) requires extreme caution and robust access controls as it presents a severe Remote Code Execution (RCE) vulnerability. Additionally, example configurations may load external scripts from untrusted sources (e.g., Gist URLs), posing a supply chain risk if used.
Similar Servers
mcpo
Exposes Model Context Protocol (MCP) tools as OpenAPI-compatible HTTP servers for integration with LLM agents and other applications.
tmcp
Build Model Context Protocol (MCP) servers for AI agents, providing schema-agnostic tools, resources, and prompts, with optional OAuth 2.1 authentication and distributed session management.
mcp-servers
Provides a curated collection of Model Context Protocol (MCP) server configurations to enable AI agents to interact with various developer tools and services.
action_mcp
Provides Model Context Protocol (MCP) server capabilities to Ruby on Rails applications, enabling AI assistants to interact with external data sources and tools via JSON-RPC over HTTP/SSE.