hyper-mcp
Verified Safeby tuananh
Overview
A fast, secure Model Context Protocol (MCP) server that extends its capabilities through WebAssembly plugins, enabling AI features in applications like Cursor IDE.
Installation
hyper-mcpEnvironment Variables
- HYPER_MCP_TRANSPORT
- HYPER_MCP_BIND_ADDRESS
- HYPER_MCP_INSECURE_SKIP_SIGNATURE
- HYPER_MCP_USE_SIGSTORE_TUF_DATA
- HYPER_MCP_REKOR_PUB_KEYS
- HYPER_MCP_FULCIO_CERTS
- HYPER_MCP_CERT_ISSUER
- HYPER_MCP_CERT_EMAIL
- HYPER_MCP_CERT_URL
- AWS_ACCESS_KEY_ID
- AWS_SECRET_ACCESS_KEY
- AWS_REGION
- RUST_LOG
Security Notes
The server leverages Extism for plugin sandboxing with configurable `allowed_hosts`, `allowed_paths`, and `memory_limit`. OCI-based plugin distribution supports Sigstore verification, crucial for supply chain security. The `insecure_skip_signature` option allows bypassing signature verification, but it is explicitly named as insecure. Authentication for registries uses system keyrings or direct credentials, preventing hardcoded secrets. Environment variable references (`${ENVVARKEY}`) in `runtime_config` are resolved by the host, which is generally acceptable for admin-controlled configurations. No `eval` or direct code injection vulnerabilities were found in the core server logic.
Similar Servers
mcp-server-wazuh
Provides a Model Context Protocol (MCP) server to integrate Wazuh SIEM data with AI assistants for security monitoring and analysis, enabling natural language queries.
rust-docs-mcp
Provides AI agents with deep, cached access to Rust crate documentation, source code, and project structure for enhanced development.
wasmcp
Build composable Model Context Protocol (MCP) servers using WebAssembly components for AI-assisted development.
fastify-mcp-server
Provides a Fastify plugin to act as a Model Context Protocol (MCP) server, enabling AI assistants and clients to interact with services via streamable HTTP transport.