mcp-devtools
Verified Safeby sammcj
Overview
A high-performance MCP server providing a unified interface to essential developer tools, featuring OAuth 2.0/2.1 authorization and a multi-layered security framework.
Installation
./mcp-devtools --transport http --port 18080Environment Variables
- ENABLE_ADDITIONAL_TOOLS
- OAUTH_ENABLED
- OAUTH_ISSUER
- OAUTH_AUDIENCE
- BRAVE_API_KEY
- GOOGLE_SEARCH_API_KEY
- GOOGLE_SEARCH_ID
- GITHUB_TOKEN
- DOCLING_PYTHON_PATH
- AGENT_TIMEOUT
- MCP_SECURITY_RULES_PATH
- OTEL_EXPORTER_OTLP_ENDPOINT
Security Notes
The project demonstrates a strong focus on security, implementing a comprehensive, configurable security framework (`docs/security.md`) with explicit access controls, content analysis, and an override system. It utilizes security helper functions for safer HTTP and file operations, and actively sanitizes sensitive data in observability traces. Agent tools and filesystem access are explicitly disabled by default and require careful user configuration due to their inherent risks, which are well-documented. Potentially dangerous functions in tools like Excel are blocked. The primary risks stem from potential user misconfiguration or failure to follow documented security best practices.
Similar Servers
cclsp
Integrate LLM-based coding agents with Language Server Protocol (LSP) servers to enable robust code navigation, symbol resolution, and refactoring across various programming languages.
mcp-servers
An MCP server for managing files in Google Cloud Storage, supporting CRUD operations (save, get, search, delete) and exposing files as resources.
mkp
MKP is a Model Context Protocol (MCP) server for Kubernetes, enabling LLM-powered applications to interact with Kubernetes clusters by providing tools for resource listing, getting, applying, deleting, and executing commands.
AI-Prompt-Guide-MCP
Orchestrates AI agents for project management and development workflows by linking structured markdown specifications and tasks.