{"id":"copyleftdev-mcp-command-server","name":"mcp_command_server","homepage":null,"repo_url":"https://github.com/copyleftdev/mcp_command_server","category":"infrastructure","subcategories":[],"tags":["mcp","json-rpc","remote-command-execution","security","rust","docker","agentic"],"what_it_does":"Provides a JSON-RPC 2.0 HTTP API for executing shell commands on a server, with a pattern-based command exclusion/validation system (configured via exclude.yaml) and a /context endpoint that serves markdown API documentation.","use_cases":["Running predefined/approved operational shell commands from an AI agent or automation client","On-prem/containerized remote command execution with pre-execution allow/deny filtering","Integrating command execution into systems that speak JSON-RPC 2.0","Providing self-documented endpoints for tooling via /context"],"not_for":["General-purpose unrestricted remote shell access","Executing untrusted commands without strict allowlists and hardened hosting","Running in environments requiring strong authentication/authorization guarantees (no auth described)"],"best_when":"When the command set is tightly controlled via exclude.yaml (or equivalent configuration) and the service is placed behind a trusted network boundary (e.g., internal only) with monitoring and operational guardrails.","avoid_when":"When exposing the service to untrusted users/agents, or when you cannot enforce network-level access restrictions and robust command allow/deny policies.","alternatives":["Custom internal command runner service with explicit allowlists and strong auth","Systems like AWS SSM Run Command / GCP OS Config (managed command execution with audit and auth)","Workflow tools that avoid arbitrary shell execution (e.g., CI/CD runners with constrained actions)"],"af_score":44.5,"security_score":19.5,"reliability_score":25.0,"package_type":"mcp_server","discovery_source":["github"],"priority":"low","status":"evaluated","version_evaluated":null,"last_evaluated":"2026-04-04T19:46:08.963435+00:00","interface":{"has_rest_api":false,"has_graphql":false,"has_grpc":false,"has_mcp_server":false,"mcp_server_url":null,"has_sdk":false,"sdk_languages":[],"openapi_spec_url":null,"webhooks":false},"auth":{"methods":[],"oauth":false,"scopes":false,"notes":"No authentication/authorization mechanism is described in the provided README (requests appear to be sent directly to http://localhost:3030/)."},"pricing":{"model":null,"free_tier_exists":false,"free_tier_limits":null,"paid_tiers":[],"requires_credit_card":false,"estimated_workload_costs":null,"notes":"Open-source (MIT) repository; no pricing information provided."},"requirements":{"requires_signup":false,"requires_credit_card":false,"domain_verification":false,"data_residency":[],"compliance":[],"min_contract":null},"agent_readiness":{"af_score":44.5,"security_score":19.5,"reliability_score":25.0,"mcp_server_quality":0.0,"documentation_accuracy":75.0,"error_message_quality":null,"error_message_notes":"README provides example JSON-RPC success and an example error shape plus a small table of error codes/messages; however, it doesn’t describe the full set of error conditions or whether codes are consistently returned for validator rejections vs execution failures.","auth_complexity":10.0,"rate_limit_clarity":5.0,"tls_enforcement":20.0,"auth_strength":0.0,"scope_granularity":10.0,"dependency_hygiene":50.0,"secret_handling":30.0,"security_notes":"Security relies primarily on command pattern exclusion plus container non-root execution. The README does not describe TLS requirements, authentication/authorization, rate limiting, auditing, or input handling details beyond regex/pattern filtering. The presence of a cited 'whitespace injection' CVE is a positive sign of active security maintenance, but details are not independently verifiable from the provided content. Because this is remote command execution, any weaknesses in filtering or deployment controls can create critical risk.","uptime_documented":0.0,"version_stability":40.0,"breaking_changes_history":30.0,"error_recovery":30.0,"idempotency_support":"false","idempotency_notes":"The exposed operation is remote command execution, which is generally not idempotent; no idempotency guidance is provided.","pagination_style":"none","retry_guidance_documented":false,"known_agent_gotchas":["Command execution endpoints are inherently high-risk; agents should not attempt to bypass validation or craft shell payloads beyond the intended safe subset.","The service relies on pattern filtering (exclude.yaml). Overly broad exclusions or gaps in patterns can lead to either denial of legitimate commands or accidental acceptance of harmful ones.","No auth is documented; agents should assume you must secure network access and deployment configuration separately."]}}