uisp-mcp-server
by wolverin0
Overview
Automated network and customer relationship management for an Internet Service Provider (ISP), leveraging AI for diagnostics, optimization, and reporting.
Installation
node dist/server.jsEnvironment Variables
- CRM_API_URL
- NMS_API_URL
- CRM_API_KEY
- NMS_API_KEY
- LOG_LEVEL
- LOG_FILE_PATH
- CACHE_TTL_SECONDS
Security Notes
CRITICAL VULNERABILITY: The `api-client.ts` explicitly sets `rejectUnauthorized: false` for HTTPS requests. This disables SSL/TLS certificate validation, making the application vulnerable to Man-in-the-Middle (MITM) attacks. Any data exchanged with the UISP CRM and NMS servers (including sensitive customer data, device configurations, and API keys) could be intercepted, read, or modified by an attacker without detection. This is a severe security flaw for any system handling critical infrastructure or private customer information. While input validation using Zod is good, and API keys are loaded from environment variables (good practice), the complete bypass of TLS security makes the entire system highly insecure. In-memory storage for alerts in `NetworkAlertManagerTool` is a functional limitation, not a security one, but can lead to data loss.
Similar Servers
lunar
The Lunar MCP Server acts as an HTTP proxy, designed to intercept, analyze, and manage API traffic within a Python environment, applying policies for caching, throttling, queueing, and collecting data for observability.
nettune
This server acts as an MCP (Model Context Protocol) stdio client wrapper for the 'nettune' TCP network optimization tool, enabling AI-assisted network diagnostics and configuration on Linux servers.
gns3-mcp-server
Enables AI assistants to programmatically create, manage, and simulate network topologies within GNS3.
IoT-Edge-MCP-Server
A secure, production-ready IoT/Edge server designed to expose industrial protocols (MQTT, Modbus) via a unified HTTP API, enabling AI agents to monitor and control industrial infrastructure through the PolyMCP framework.