yargi-mcp
by saidsurucu
Overview
Provides programmatic access to various Turkish legal databases (e.g., Yargıtay, Danıştay, Constitutional Court) as a Model Context Protocol (MCP) server for integration with Large Language Model (LLM) applications like Claude AI.
Installation
uvx yargi-mcpEnvironment Variables
- CLERK_PUBLISHABLE_KEY
- CLERK_SECRET_KEY
- JWT_SECRET_KEY
- UPSTASH_REDIS_REST_URL
- UPSTASH_REDIS_REST_TOKEN
- ENABLE_AUTH
- BASE_URL
- CLERK_DOMAIN
- OPENROUTER_API_KEY
- BRAVE_API_TOKEN
- STRIPE_SECRET
- STRIPE_WEBHOOK_SECRET
- HOST
- PORT
- LOG_LEVEL
- ALLOWED_ORIGINS
- API_TOKEN
- PYTHONUNBUFFERED
- OAUTH_CODE_TTL
- SESSION_TTL
Security Notes
CRITICAL: The API clients (Yargıtay, Danıştay, Emsal, Uyuşmazlık, KIK) use `verify=False` in `httpx.AsyncClient` when making requests to external APIs, disabling SSL/TLS certificate verification. This makes the application highly vulnerable to Man-in-the-Middle (MITM) attacks, allowing an attacker to intercept or modify communication with upstream legal databases. Additionally, a hardcoded AES-256-CBC encryption key (`KikV2ApiClient.DOCUMENT_ID_ENCRYPTION_KEY`) is used for document ID encryption, which is a severe security flaw if intended for any form of protection, as the key is publicly available. There is also a hardcoded fallback API token for Brave Search in `KvkkApiClient`.
Similar Servers
us-legal-mcp
The US Legal MCP server provides comprehensive US legal data, including Congress bills, Federal Register documents, and court opinions, for integration into AI workflows.
stocks-mcp
Access comprehensive stock market data and analysis tools, optimized for LLMs, including technical analysis, screeners, pivot points, and support for Turkish stocks.
openAi_MCP_server
This MCP server integrates Retrieval-Augmented Generation (RAG) for deep research document retrieval with interactive UI layout visualization (tables, maps, forms, buttons, Kanban boards) and OAuth 2.0 authentication for secure access.
mcp-server-demo
Demonstrates an MCP (Multi-Agent Communication Protocol) server using the FastMCP 2.0 framework, exposing tools, resources, and prompts via an HTTP API.