hermes-mcp
Verified Safeby poetryprotocol
Overview
A lightweight MCP server providing file, shell, Git, HTTP, and system utilities for Claude Desktop, specifically fixing a common subprocess stdin inheritance bug.
Installation
python server.pySecurity Notes
File operations are restricted to `ALLOWED_PATHS` configured by the user, which is good. The `run_powershell` and `run_git` commands use `asyncio.create_subprocess_exec` with `stdin=asyncio.subprocess.DEVNULL` to prevent stdin inheritance issues, which is a critical security and stability fix. Arbitrary commands can be run via `run_powershell` and `run_git` within specified working directories, but inputs are passed as arguments, not via `shell=True`, reducing direct shell injection risk. The `fetch_url` and `http_request` tools allow unrestricted network access to any URL, which is explicitly noted as 'intentional for development' and 'local use only' in the README. This capability means the LLM can make arbitrary network requests from the host machine, which should be considered when assessing overall system security. No hardcoded secrets or 'eval' statements were found.
Similar Servers
claude-code-mcp
Acts as an MCP server to enable LLMs to run Claude Code CLI in one-shot mode, bypassing permissions for complex coding, file system, Git, and terminal operations.
mcpick
Manages MCP server configurations for Claude Code to optimize context usage and performance by enabling/disabling servers, creating backups, and using profiles.
miyabi-mcp-bundle
An all-in-one MCP server providing a vast array of development, monitoring, and automation tools, enabling Claude Desktop and AI agents to perform complex software development, operations, and analysis tasks efficiently and securely.
mcp-client-server
A specialized Model Context Protocol (MCP) server designed to act as a testing harness for developing and iterating on other MCP servers within a Claude AI environment.