mcp-server
Verified Safeby srwlli
Overview
Provides a modular platform for specialized AI agent personas and tools (documentation, planning, code analysis, workflow orchestration) to assist with software development lifecycle tasks.
Installation
python coderef-workflow/server.pyEnvironment Variables
- CODEREF_CLI_PATH
- CODEREF_LOG_LEVEL
- CODEREF_LOG_FORMAT
- CODEREF_SERVICE_NAME
- CODEREF_SERVICE_VERSION
- CODEREF_BATCH_WORKERS
- CODEREF_BATCH_TIMEOUT_MS
- CODEREF_DOCS_SERVICE_URL
- CODEREF_DOCS_FALLBACK_ENABLED
- RAG_API_KEYS
Security Notes
The system heavily relies on `subprocess.run` to invoke various external CLIs (Node.js for CodeRef, Git, Pytest, Jest, etc.). While typically arguments are passed as lists to prevent shell injection, continuous vigilance is required when constructing these arguments, especially from dynamic or untrusted inputs. Local network connections to internal services (e.g., Scriptboard, CodeRef backends on localhost) are present, which are generally safe in a controlled environment but could pose a risk if the main MCP server is exposed. Path traversal vulnerabilities appear to have been addressed through dedicated security testing.
Similar Servers
mcp-servers
A curated collection of Model Context Protocol (MCP) server configurations to integrate various developer tools and services with AI agents.
Delphi-MCP-Server
Implements the Model Context Protocol (MCP) in Delphi to enable AI-powered development workflows and integrate with clients like Claude Code.
consult-llm-mcp
An MCP server that allows AI agents like Claude Code to consult stronger, more capable AI models (e.g., GPT-5.2, Gemini 3.0 Pro) for complex code analysis, debugging, and architectural advice.
ast-mcp-server
Provides an MCP (Model Context Protocol) server for code structure and semantic analysis using ASTs and ASGs, integrated with external AI clients like Claude Desktop.