static-frame-www
Verified Safeby static-frame
Overview
A web application and API server providing search, documentation, and code examples for the StaticFrame Python library API, compatible with OpenAPI and Model Context Protocol (MCP).
Installation
npm run devSecurity Notes
The search functionality, specifically when `reSearch` is enabled, uses `new RegExp()` with user-provided input. While wrapped in a `try-catch` to prevent crashes from invalid regex, a malicious or complex regular expression could lead to a Regular Expression Denial of Service (ReDoS) attack, consuming excessive CPU resources and potentially making the server unresponsive. No other obvious critical vulnerabilities like arbitrary code execution or hardcoded secrets were found. The server does not appear to handle sensitive user data.
Similar Servers
fastmcp
FastMCP is an ergonomic interface for the Model Context Protocol (MCP), providing a comprehensive framework for building and interacting with AI agents, tools, resources, and prompts across various transports and authentication methods.
mcp-server
Provides a Model Context Protocol (MCP) server for AI agents to search and retrieve curated documentation for the Strands Agents framework, facilitating AI coding assistance.
opensearch-mcp-server-py
Enables AI assistants and LLMs to interact with OpenSearch clusters by providing a standardized Model Context Protocol (MCP) interface through built-in and dynamic tools.
movk-nuxt-docs
Provides a modern Nuxt 4 documentation theme with integrated AI chat assistant, Model Context Protocol (MCP) server support, and automated documentation generation.