dotprompts
Verified Safeby xu2xulim
Overview
A SvelteKit application for managing and serving AI prompts, integrated with authentication and a database.
Installation
npm run devEnvironment Variables
- INSTANT_APP_ID
- INSTANT_API_KEY
- GITHUB_CLIENT_ID
- GITHUB_CLIENT_SECRET
- GOOGLE_CLIENT_ID
- GOOGLE_CLIENT_ID
- BETTER_AUTH_URL
- DATABASE_URL
- DATABASE_TOKEN
Security Notes
The project uses `better-auth` and InstantDB for authentication and data storage, which are generally robust solutions. Secrets are correctly managed via environment variables. However, the `svelte.config.js` sets `csrf: { trustedOrigins: ['*'] }`, which is a critical security vulnerability for a web application in a production environment as it disables CSRF protection from any origin. This setting should be locked down to specific trusted origins for production deployments.
Similar Servers
supermcp
A multi-tenant SQL database connector for the MCP platform, enabling AI assistants to interact with various SQL databases like PostgreSQL, MySQL, MSSQL, Oracle, Snowflake, and SQLite through a unified interface.
tiny-robot
A Vue 3 component library and AI interaction kit for building AI-powered frontend applications, providing UI components and a unified API interface to interact with various large AI models.
dotprompts
A personal prompt management system exposed as a Model Context Protocol (MCP) server, enabling AI agents to access, create, update, and delete user-defined prompts.
MCP-SQL-Server
This server provides a natural language interface to query an SQLite database using a local large language model (Ollama) to convert questions into SQL queries, accessible via a chat-based web application.