cli
Verified Safeby smithery-ai
Overview
The Smithery CLI is a developer tool for installing, managing, building, running, and deploying Model Context Protocol (MCP) servers and integrating them with various AI clients.
Installation
npx @smithery/cli <command>Environment Variables
- SMITHERY_API_KEY
- REGISTRY_ENDPOINT
- ANALYTICS_ENDPOINT
- SMITHERY_CONFIG_PATH
- LIBRECHAT_CONFIG_DIR
- SMITHERY_BEARER_AUTH
- NODE_ENV
Security Notes
The CLI dynamically loads and executes server configurations, including `stdioFunction` (a deprecated feature but still present in code) using `new Function()`. If the Smithery registry is compromised, this could lead to arbitrary code execution when installing or running servers from it. The tool utilizes `keytar` for secure OS keychain storage of API keys, which is a good security practice. The `dev` and `playground` commands offer local server tunneling via `ngrok`, exposing local services to the internet, which carries inherent risks if not used carefully or with proper authentication for the exposed services.
Similar Servers
mcpm.sh
MCPM is a command-line tool for managing Model Context Protocol (MCP) servers, enabling discovery, installation, execution, sharing, and integration with various MCP clients.
claude-prompts-mcp
Enhances AI assistant behavior through structured prompt management, multi-step chains, quality gates, and autonomous verification loops, primarily for development tasks.
agentx
A unified CLI tool for managing MCP (Model Context Protocol) servers and skills across multiple AI coding agents like Claude Code, Codex, Cursor, Gemini CLI, and OpenCode.
mmcp
Manages Model Context Protocol (MCP) server definitions in a central configuration and applies them to various AI agent tools.