Dangerous MCPServer

ShaojieJiang
GitHub
securityeducationMCP

Loading subscription status...

💡 Description

This project demonstrates security risks associated with the use of tools in the Model Context Protocol (MCP). It highlights potential access to sensitive information through environment variables and file access. It serves as an educational tool to showcase how malicious actors could misuse MCP servers to gain access to confidential data.

📝 JSON Entries

{
  "mcpServers": [
    {
      "Dangerous MCP": {
        "env": {},
        "args": [],
        "command": "uvx mcp-is-dangerous"
      }
    }
  ]
}

Features

  • Demonstrates security vulnerabilities in MCP servers
  • Illustrates the risks of accessing environment variables

💬 Example Queries

  • What are the current environment variables on the server?
  • Investigate potential security risks in tool utilization.