thingsboard-mcp
Verified Safeby pophalea
Overview
Enables AI assistants to interact directly with ThingsBoard instances for managing IoT assets, devices, telemetry, and alarms via a Model Context Protocol (MCP) server.
Installation
python3 thingsboard_mcp/main.pyEnvironment Variables
- TB_URL
- TB_USERNAME
- TB_PASSWORD
- TB_EDITION
Security Notes
The server uses environment variables for ThingsBoard credentials, which is good practice. No direct 'eval' or similar arbitrary code execution found within the MCP server's own Python code. However, several tools (e.g., `rule_chain.test_script`, `converter.test_down_link_converter`, `converter.test_up_link_converter`) explicitly take string arguments that are then executed as scripts (JavaScript) on the remote ThingsBoard platform. This exposes a vector for server-side script injection on the ThingsBoard instance if the AI assistant is not constrained from providing malicious scripts, though this is an inherent feature of ThingsBoard's rule engine and converter capabilities, not a vulnerability in the MCP server's direct execution context.
Similar Servers
klavis
Develop and deploy AI agents that interact with a wide array of web services (e.g., Gmail, YouTube, LinkedIn, Supabase, Salesforce, Kubernetes) through a standardized Model Context Protocol (MCP), often orchestrated by an intelligent routing layer like Strata.
ha-mcp
Provides AI agents with complete control over Home Assistant via REST and WebSocket APIs, offering a comprehensive suite of tools for smart home management, automation, and debugging.
thingspanel-mcp
Serves as a Model Context Protocol (MCP) server for the ThingsPanel IoT platform, enabling natural language interaction with IoT devices for querying information, monitoring status, controlling functions, and analyzing platform data.
typingmind-mcp
A server for managing and integrating Model Context Protocol (MCP) servers with TypingMind, enabling custom AI model connections.