sumup-mcp
Verified Safeby sumup
Overview
Provides a Model Context Protocol (MCP) server to enable large language models (LLMs) to interact with SumUp APIs using natural language.
Installation
npm run devEnvironment Variables
- SUMUP_API_HOST
Security Notes
Authentication relies solely on a Bearer token (SumUp API Key) provided in the Authorization header, which is a standard and acceptable practice for API access. CORS is set to '*' (allow all origins), making the API publicly accessible, which is common for developer tools but relies heavily on the API key for security of operations. No 'eval' or obvious malicious patterns were found in the provided source code. Core business logic involving LLM interaction and SumUp API calls is delegated to the '@sumup/agent-toolkit' library, shifting some security responsibilities to that dependency. The security policy also outlines a private bug bounty program, indicating a proactive approach to security.
Similar Servers
awesome-mcp-servers
A central directory for discovering and referencing various Model Context Protocol (MCP) servers, clients, and frameworks for AI agents.
mcp-image
AI image generation and editing using Google Gemini 3 Pro Image (Nano Banana Pro), with intelligent prompt optimization using Gemini 2.0 Flash, integrated as an MCP server for AI assistants like Codex, Cursor, and Claude Code.
Accurate-Cyber-Box-Alpha
Accurate-Cyber-Box is an advanced cybersecurity tool designed for penetration testing, cyber drills, real-time network monitoring, and incident response, integrated with MCP servers and Telegram for enhanced communication and control.
agentic-voice-assistant
An agentic voice-to-voice product discovery assistant performing RAG and web searches over an Amazon product dataset to provide grounded answers.