charly

Critical security flaw: The client-side API endpoint `/api/skills` (implemented in `client/_public/api/Skills.php`) reads and exposes the entire `../../../server/config.json` file. This file, as per `server/config.example.json`, contains sensitive credentials, most notably `AUTH0_CLIENT_SECRET` and potentially API keys for MCP providers. Exposing `AUTH0_CLIENT_SECRET` allows an attacker to impersonate the application in the OAuth2 flow, leading to significant security breaches. Additionally, the Python server's `StdioTransport` is configured to execute commands with arguments directly from `config.json`; while the `config.example.json` uses static commands, this structure could allow remote code execution if the `config.json` is compromised or modified without strict validation. Broad CORS `Access-Control-Allow-Origin: *` is enabled, which might not be ideal for all deployment scenarios.