strudel-mcp-server
Verified Safeby williamzujkowski
Overview
An MCP server enabling AI-powered music generation, live coding, and algorithmic composition by controlling Strudel.cc in a browser.
Installation
node dist/index.jsEnvironment Variables
- DEBUG
- NODE_ENV
Security Notes
The server executes user-provided JavaScript code within a Playwright-controlled browser context via `new Function()` in the `executeInStrudelContext` tool. While the `PatternValidator` attempts to detect dangerous patterns (e.g., `eval()`, infinite loops, excessive gain) and performs syntax checks for Strudel patterns, executing arbitrary, albeit validated, JavaScript in a browser still carries inherent risks if the validation is incomplete or new browser vulnerabilities emerge. File operations in `PatternStore` use `sanitizeFilename` to prevent path traversal. No hardcoded secrets were found. The default `headless: false` in `config.json` means a browser GUI will appear, which can be changed for server environments.
Similar Servers
claude-flow
AI Agent Orchestration and Development Platform for Claude Code
midi-mcp-server
An MCP server that enables AI models to generate MIDI files from text-based music data, allowing programmatic creation of musical compositions.
midi_ctrl
Enables AI assistants to control an Arturia MicroFreak synthesizer via MIDI using natural language commands.
mcp-browser-use-server
An MCP server that enables AI agents to control web browsers using the browser-use library, supporting various transports and persistent sessions.