gdpr-mcp
Verified Safeby privacy-posture
Overview
A local Model Context Protocol (MCP) server for augmenting LLMs with GDPR document search capabilities using hybrid trigram and vector search.
Installation
./gdpr-mcp startEnvironment Variables
- GDPR_MCP_DB
- OPENAI_API_KEY
- GDPR_MCP_OPENAI
Security Notes
The server primarily operates via stdin/stdout for MCP communication, limiting direct network exposure. It uses SQLite with CGO, a standard but slightly more complex component. OpenAI API key is fetched from environment variables, which is good practice. No 'eval' or similar dynamic code execution or obfuscation is apparent. Network requests are limited to the optional OpenAI embeddings API. The 'SearchVectors' function reads all embeddings into memory for similarity calculation, which could be a denial-of-service risk for very large databases due to memory consumption, but this is an efficiency concern rather than a direct security vulnerability given the expected usage with a single GDPR document.
Similar Servers
mcp-omnisearch
Provides a unified interface for various search, AI response, content processing, and enhancement tools via Model Context Protocol (MCP).
meilisearch-mcp
Connect LLMs to Meilisearch for natural language interaction and management of search indices and data.
opensearch-mcp-server-py
Enables AI assistants and LLMs to interact with OpenSearch clusters by providing a standardized Model Context Protocol (MCP) interface through built-in and dynamic tools.
deepl-mcp-server
Provides DeepL translation and linguistic capabilities as a Model Context Protocol (MCP) server for integration with AI clients.