coder
Verified Safeby r-huijts
Overview
Transforms iTerm2 into an AI coding agent, providing structured tools for terminal control, filesystem interaction, and code search.
Installation
uvx --with mcp --with iterm2 python /path/to/your/coder/iterm2_mcp_server.pySecurity Notes
The server implements several safety features, including automatic detection and handling of complex quoting for command execution via temporary script files, and an explicit 'DANGEROUS_COMMANDS' list for `run_command` that requires `require_confirmation=True`. It strongly advocates for specialized, safer tools (e.g., `write_file`, `read_file`, `search_code`) over raw `run_command` for file operations and searching, which significantly reduces the risk of shell injection. Output limits are in place to prevent memory exhaustion. There are no direct uses of `eval` or `exec` on unsanitized user input. The primary remaining risk is if an AI agent is instructed to use `run_command` with malicious shell code that circumvents the temporary script safeguards (e.g., by breaking out of the script context), or if `require_confirmation=True` is misused for destructive actions.
Similar Servers
chrome-devtools-mcp
Enables AI coding agents to control and inspect a live Chrome browser for reliable automation, in-depth debugging, and performance analysis via the Model-Context-Protocol (MCP).
DesktopCommanderMCP
Enables an AI agent to interact with the local filesystem and terminal, execute commands, analyze data, and perform code editing.
wcgw
An MCP server that empowers AI chat applications to execute shell commands, edit code, and manage project context on a local machine for development tasks.
tmux-mcp
Enables AI assistants to interact with, control, and observe tmux terminal sessions.