tinystruct-mcp

The server exposes direct file system operations (read, write, copy, move, delete, create directories) via JSON-RPC, accepting user-provided paths directly. This creates a significant risk of path traversal vulnerabilities and unauthorized access to arbitrary files or directories on the host system if the server is exposed without robust external authentication and input validation. Furthermore, Git operations such as `cloneRepository` use user-supplied URLs directly, which could lead to Server-Side Request Forgery (SSRF) vulnerabilities, allowing an attacker to probe or interact with internal network resources. For GitHub API calls (issues, pull requests, workflows), a GitHub personal access token is passed as a direct parameter within the JSON-RPC request body. This method of handling sensitive credentials means the token could be intercepted if the communication channel is not secured with HTTPS, and it also increases the risk of token exposure through server logs or other diagnostic data.