CLI MCP Server

by MCP-Mirror

A secure Model Context Protocol (MCP) server implementation for executing controlled command-line operations with comprehensive security features. It's perfect for providing controlled CLI access to LLM applications while maintaining security.

View on GitHub

Last updated: N/A

What is CLI MCP Server?

This MCP server enables secure command-line execution with robust security measures including command whitelisting, path validation, and execution controls.

How to use CLI MCP Server?

Configure the server using environment variables such as ALLOWED_DIR, ALLOWED_COMMANDS, ALLOWED_FLAGS, MAX_COMMAND_LENGTH, and COMMAND_TIMEOUT. Install via Smithery or manually configure in Claude Desktop's claude_desktop_config.json.

Key features of CLI MCP Server

Secure command execution with strict validation
Configurable command and flag whitelisting
Path traversal prevention
Shell operator injection protection
Execution timeouts and length limits
Detailed error reporting
Async operation support

Use cases of CLI MCP Server

Providing controlled CLI access to LLM applications
Securely executing commands in sandboxed environments
Enforcing security policies for command-line tools
Integrating with Claude Desktop for secure command execution

FAQ from CLI MCP Server

What is the purpose of ALLOWED_DIR?

ALLOWED_DIR specifies the base directory for command execution, restricting commands to operate within this directory.

How do I add more commands to the whitelist?

Modify the ALLOWED_COMMANDS environment variable with a comma-separated list of allowed commands.

What happens if a command exceeds MAX_COMMAND_LENGTH?

The server will reject the command and return an error message indicating a security violation.

How does the server prevent path traversal?

The server validates paths to ensure they remain within the ALLOWED_DIR, preventing access to unauthorized directories.

How can I debug the server?

Use the MCP Inspector for the best debugging experience, as MCP servers run over stdio.