hyper-mcp
Verified Safeby tuananh
Overview
A fast, secure Model Context Protocol (MCP) server designed to host and execute WebAssembly-based plugins, extending AI capabilities for clients like Claude Desktop and Cursor IDE.
Installation
hyper-mcpEnvironment Variables
- HYPER_MCP_TRANSPORT
- HYPER_MCP_BIND_ADDRESS
- HYPER_MCP_INSECURE_SKIP_SIGNATURE
- HYPER_MCP_USE_SIGSTORE_TUF_DATA
- HYPER_MCP_REKOR_PUB_KEYS
- HYPER_MCP_FULCIO_CERTS
- HYPER_MCP_CERT_ISSUER
- HYPER_MCP_CERT_EMAIL
- HYPER_MCP_CERT_URL
Security Notes
The server leverages Extism for robust sandboxing of WebAssembly plugins, enforcing strong isolation and resource limits (memory, allowed hosts/paths). OCI plugins benefit from Sigstore signature verification, crucial for ensuring authenticity and integrity, though this can be bypassed via the `insecure_skip_signature` flag. Authentication for remote plugin fetching (OCI, HTTPS, S3) can involve system keyrings or explicit configuration, which introduces external security considerations. While the core server design is robust, overall security is highly dependent on how plugins are configured and the trustworthiness of the plugins themselves.
Similar Servers
hyper-mcp
A fast, secure Model Context Protocol (MCP) server that extends its capabilities through WebAssembly plugins, enabling AI agents to access tools, resources, and prompts.
mcp-server-wazuh
This Rust-based server acts as a bridge between a Wazuh SIEM system and applications requiring contextual security data, especially for AI assistants using the Model Context Protocol (MCP).
wasmcp
Build and run composable Model Context Protocol (MCP) servers using WebAssembly components for AI-assisted development.
fastify-mcp-server
A Fastify plugin providing a streamable HTTP transport for the Model Context Protocol (MCP), enabling AI assistants to interact with services.