enhanced-terminal-mcp
Verified Safeby tsoernes
Overview
Provides a robust Model Context Protocol (MCP) server for executing shell commands, managing background jobs, detecting developer tools, and ensuring security within a development environment.
Installation
./target/release/enhanced-terminal-mcpEnvironment Variables
- ENHANCED_TERMINAL_SUDO_WRAP
- ENHANCED_TERMINAL_SUDO_KEEPALIVE
- ENHANCED_TERMINAL_SUDO_KEEPALIVE_PRIME
- ENHANCED_TERMINAL_SUDO_ASKPASS
- ENHANCED_TERMINAL_SUDO_KEEPALIVE_REFRESH_SECS
Security Notes
The server implements a strong default denylist for dangerous commands (`rm -rf /`, `shutdown`, fork bombs, etc.), supports PTY for isolation, and allows custom denylist patterns. Sudo handling with automatic `-n` (non-interactive) wrapping and a keepalive mechanism is a key feature for convenience, but the `!tty_tickets` sudoers configuration (if applied as recommended) explicitly notes a security trade-off by allowing any process running as your user to reuse your sudo timestamp. This requires careful consideration and a reasonable `timestamp_timeout` for maximum security. No obvious hardcoded secrets or 'eval' vulnerabilities were found. Overall, the server is designed with security in mind, but the sudo integration requires responsible configuration.
Similar Servers
ssh-mcp-server
Bridging AI assistants to remote SSH server operations for command execution, file transfer, and server status retrieval via the Model Context Protocol (MCP).
Ops-Tools
A Rust-based command-line interface (CLI) toolset designed for DevOps workflows, offering features like infrastructure-as-code cache cleanup, AI code assistant management, system package installation, security scanning, LLM prompt generation, container image building, and Kubernetes configuration management.
dev-kit-mcp-server
A Model Context Protocol (MCP) server targeted for agent development tools, providing scoped authorized operations in the root project directory.
nu-mcp
Serves as a Model Context Protocol (MCP) server, exposing Nushell capabilities and custom CLI tools (e.g., Kubernetes, Git, Tmux) to AI agents with a focus on security and path validation.