safely-update-bear-mcp
Verified Safeby samlevan
Overview
Provides a safety system for AI assistants to update Bear notes by creating previews for user review and approval.
Installation
python src/mcp_server.pySecurity Notes
The server uses `subprocess.run` to interact with the Bear app via `x-callback-url`, with all content parameters properly URL-encoded using `urllib.parse.quote` to prevent injection. SQLite database interactions for reading notes use parameterized queries, preventing SQL injection. The local database file has secure permissions (600). The web interface for previews correctly escapes HTML content, mitigating XSS risks. No `eval` or similar dangerous patterns are used without clear justification. The overall design prioritizes user review and explicit approval before applying changes to Bear notes, significantly enhancing safety.
Similar Servers
knowns
A CLI-first knowledge layer and task/documentation management tool that provides AI agents with persistent project context.
claude-desktop-extension-bear-notes
Manage Bear Notes (search, read, create, update) directly through AI conversations, offering local-only data processing and privacy.
bear-notes-mcp
This server connects Claude Desktop to Bear notes, enabling natural language querying and management of notes through a hybrid sync-safe approach.
tasksync-mcp
Facilitates feedback-oriented AI-assisted development by enabling real-time user feedback and media viewing for agents, reducing speculative operations and improving efficiency.