git-tools-mcp
Verified Safeby rcx86
Overview
Enables LLMs to interact with and inspect local Git repositories to retrieve commit history, messages, diffs, and changed files.
Installation
git-tools-mcpSecurity Notes
The server executes Git commands using `subprocess.run` with a list of arguments, which prevents direct shell injection vulnerabilities. Inputs like commit hashes and working directories are passed as literal arguments to the Git command, not interpreted by a shell. There are no 'eval' or similar dangerous patterns, nor any hardcoded secrets. The primary remaining risk is if an LLM is prompted to provide malicious `cwd` values that could lead to unintended Git operations or access to sensitive repository data, but this is an LLM interaction risk rather than a code vulnerability. Note: The `git_is_git_repo` function contains a functional bug where it may always return `True` due to how `run_git_command` handles errors (by returning a string, not raising an exception), but this is not a security vulnerability.
Similar Servers
git-mcp-server
A Model Context Protocol (MCP) server that provides Git-specific tools and resources for AI/LLM agents to interact with version control systems.
tinystruct-mcp
A modular Java server providing a JSON-RPC interface for file system and Git/GitHub operations, aimed at automation and DevOps workflows.
mcp-http-agent-md
This server acts as a central hub for AI agents, managing project knowledge (AGENTS.md), structured tasks, version history, and ephemeral scratchpads, with capabilities to spawn context-isolated subagents for focused tasks.
repository-manager
Manages Git repositories (cloning, pulling, status, configuration) and serves as an Agentic AI tool for interacting with codebases, enabling semantic search and Python script execution.