bluekit-mcp-server
Verified Safeby stephan-chiorean
Overview
The BlueKit MCP server provides tools for AI-assisted development, enabling the creation and management of code generation kits, structured blueprints, expert agents, system diagrams, and project walkthroughs, along with project initialization and git clone management.
Installation
node dist/main.jsEnvironment Variables
- ENABLE_MERMAID_MCP_VALIDATION
- MERMAID_VALIDATOR_TIMEOUT
Security Notes
The server uses `execSync` for git operations (`git clone`, `git checkout`) in `CloneTools.ts` and spawns external processes via `npx` for Mermaid validation in `MermaidValidatorClient.ts`. While `gitUrl`s are derived from local repositories during registration, rather than direct user input, and `npx` targets a specific known package, these interactions with external processes and fetching external code (git repos) introduce inherent supply-chain and execution risks. File system operations are extensive but generally confined to the project or user home directory, with path normalization applied to mitigate directory traversal. No obvious `eval` or direct arbitrary user command injection vulnerabilities were found, nor hardcoded sensitive secrets.
Similar Servers
arcade-mcp
Provides a framework and pre-built toolkits for integrating Large Language Models (LLMs) with various external services and databases, enabling AI agents to interact with the real world.
mcp-github-pr-issue-analyser
Enables LLMs to interact with GitHub for automated Pull Request analysis, issue management, and release tracking, along with public IP information retrieval.
AI-Prompt-Guide-MCP
Orchestrates AI agents for project management and development workflows by linking structured markdown specifications and tasks.
repository-manager
Manages Git repositories (cloning, pulling, status, configuration) and serves as an Agentic AI tool for interacting with codebases, enabling semantic search and Python script execution.