refined-mcp-servers
Verified Safeby promplate
Overview
This server provides a refined interface for LLMs to interact with GitHub's GraphQL API and Code Search, optimizing for token efficiency and readability.
Installation
uvx gh-mcpEnvironment Variables
- GH_TOKEN
Security Notes
The server executes `gh` CLI commands via `subprocess`, passing user-provided query strings and `jq` expressions as arguments or standard input. This approach reduces direct shell injection risks compared to `shell=True`. However, reliance on the `gh` CLI means its security model is inherited. Malicious `jq` expressions could potentially exploit `jq` vulnerabilities (though `jq` is generally robust) or lead to excessive resource consumption. The HTTP server uses broad CORS (`allow_origins=["*"]`), which is acceptable for local LLM agent setups but requires caution if publicly exposed. No hardcoded secrets or `eval` usage were found.
Similar Servers
zoekt-mcp
Provides code search and content fetching capabilities using Zoekt, designed for integration with AI assistants and LLMs.
gh-mcp
A GitHub CLI extension to seamlessly run the github-mcp-server in a Docker container using existing `gh` authentication.
producthunt-mcp-server
Provides structured, token-efficient access to Product Hunt data via its GraphQL API for AI models and agents.
MCP-server
The GitHub MCP Server connects AI tools like agents, assistants, and chatbots directly to GitHub's platform, enabling natural language interaction for repository management, issue/PR automation, CI/CD intelligence, code analysis, and team collaboration.