envirofacts-mcp
Verified Safeby tyson-swetnam
Overview
This server provides a Model Context Protocol (MCP) interface to query the EPA Envirofacts Data Service API for environmental data.
Installation
python -m src.serverEnvironment Variables
- EPA_API_BASE_URL
- EPA_REQUEST_TIMEOUT
- EPA_MAX_RETRIES
- EPA_CACHE_TTL
- LOG_LEVEL
Security Notes
The server uses `httpx` for external API calls and `pydantic-settings` for configuration, which are good practices. It communicates via stdio, limiting network attack surface. The URL construction in `query_builder.py` directly appends user-provided filter values to the URL path. While the EPA API might sanitize these, this pattern could potentially allow for manipulation of the API request path or injection of unintended query parameters if the user input contains path delimiters (e.g., '/') and the EPA API does not rigorously validate or sanitize its path segments. Given it's a public EPA API with no authentication, the impact is primarily limited to making unintended API calls rather than direct server compromise.
Similar Servers
mcp_weather_server
Provides current and historical weather, air quality, and timezone information via an MCP server, integrating with the Open-Meteo API.
data-commons-mcp
A server that facilitates natural language search for open-access scientific datasets and tools using a Large Language Model (LLM) and the Model Context Protocol (MCP).
us-legal-mcp
The US Legal MCP server provides comprehensive US legal data, including Congress bills, Federal Register documents, and court opinions, for integration into AI workflows.
mcp-servers
Provides current weather conditions and forecasts from the Open-Meteo API for a given geographical location.