tanuki-mcp
Verified Safeby tarfu
Overview
A high-performance GitLab Model Context Protocol (MCP) server for AI agents to interact with GitLab resources, with fine-grained access control.
Installation
docker run -d -p 20289:20289 -p 19892:19892 -e TANUKI_MCP__GITLAB_URL=https://gitlab.com -e TANUKI_MCP__GITLAB_TOKEN=glpat-xxx tanuki-mcp --httpEnvironment Variables
- TANUKI_MCP__GITLAB_URL
- TANUKI_MCP__GITLAB_TOKEN
- TANUKI_MCP_CONFIG
- TANUKI_MCP_LOG_LEVEL
- TANUKI_MCP_TRANSPORT
- TANUKI_MCP_HTTP_HOST
- TANUKI_MCP_HTTP_PORT
- TANUKI_MCP_NO_DASHBOARD
- TANUKI_MCP_DASHBOARD_HOST
- TANUKI_MCP_DASHBOARD_PORT
Security Notes
The server features robust, hierarchical access control to limit what AI agents can do on GitLab, including regex-based allow/deny lists. It uses a `SecretString` type to prevent accidental logging of sensitive tokens. Network services (HTTP, Dashboard) bind to `127.0.0.1` by default, reducing external exposure. Auto-update from GitHub releases introduces a dependency chain risk, common for such features. Proper configuration of access control rules by the user is critical to prevent unintended data exposure or actions, as powerful tools like `create_or_update_file` and `delete_project` are available.
Similar Servers
git-mcp-server
A Model Context Protocol (MCP) server that provides Git-specific tools and resources for AI/LLM agents to interact with version control systems.
mcp-framework
A Rust framework for building AI agents with built-in Model Context Protocol (MCP) support, multi-LLM integration, and a web-based inspector for debugging.
gitlab-api
This project provides a Python wrapper for GitLab, serving as an MCP (Model Context Protocol) server to expose GitLab APIs as tools for LLMs, and an A2A (Agent-to-Agent) multi-agent system for delegated GitLab task management with a knowledge graph.
Ops-Tools
A Rust-based command-line interface (CLI) toolset designed for DevOps workflows, offering features like infrastructure-as-code cache cleanup, AI code assistant management, system package installation, security scanning, LLM prompt generation, container image building, and Kubernetes configuration management.