claude-code-mcp
by steipete
Overview
Acts as an MCP server to enable LLMs to run Claude Code CLI in one-shot mode, bypassing permissions for complex coding, file system, Git, and terminal operations.
Installation
npx -y @steipete/claude-code-mcp@latestEnvironment Variables
- CLAUDE_CLI_NAME
- MCP_CLAUDE_DEBUG
Security Notes
The server explicitly uses the '--dangerously-skip-permissions' flag for the Claude CLI, which is its intended functionality. This bypasses all interactive permission prompts from Claude Code, giving it full access to the system (file operations, git, terminal). While intended for power users, it means a malicious or unconstrained LLM prompt could execute arbitrary and potentially destructive commands without further human confirmation. The security relies heavily on the trustworthiness and sandboxing of the LLM generating the prompt and the underlying Claude CLI itself.
Similar Servers
claude-codex-settings
A comprehensive toolkit and configuration for developing Claude Code plugins, integrating various external services and APIs, and enhancing AI-assisted coding workflows.
mcp-memory-keeper
Provides persistent context management for Claude AI coding assistants, ensuring work history, decisions, and progress are preserved across sessions and context limits.
consult-llm-mcp
An MCP server that allows AI agents like Claude Code to consult stronger, more capable AI models (e.g., GPT-5.2, Gemini 3.0 Pro) for complex code analysis, debugging, and architectural advice.
mcpick
Manages MCP server configurations for Claude Code to optimize context usage and performance by enabling/disabling servers, creating backups, and using profiles.