{"id":"shuakami-mcp-ssh","name":"mcp-ssh","homepage":null,"repo_url":"https://github.com/shuakami/mcp-ssh","category":"devtools","subcategories":[],"tags":["mcp","ssh","tmux","devops","automation","terminal","nodejs","typescript","remote-management"],"what_it_does":"mcp-ssh is an MCP (Model Context Protocol) server that bridges AI clients to SSH functionality. It lets an AI assistant create/manage SSH connections, execute commands (including composite commands), manage tmux sessions, and perform file and process operations on remote servers using structured MCP tool calls.","use_cases":["Remote command execution on servers via an AI assistant","Persistent remote workflows using tmux session management","File upload/download and viewing remote files through MCP tools","Automation of common DevOps tasks (process monitoring, command retries/timeouts)","Reducing prompt-to-shell-command friction for operators"],"not_for":["Replacing a fully managed remote execution service with robust access controls and auditing","Handling untrusted, arbitrary command input without strict sandboxing/policy","Use cases requiring a documented public REST/GraphQL/SDK interface beyond MCP","High-assurance environments that require formally specified security guarantees"],"best_when":"You already use an MCP-capable client (e.g., Cursor) and want an AI-driven interface for controlled SSH/tmux operations in a developer/ops workflow.","avoid_when":"You need standardized web APIs, strong enterprise security controls (SSO/RBAC), or you cannot enforce policies around what commands/files the AI may access.","alternatives":["Direct SSH tooling (ssh, paramiko/ssh2 libraries) with custom automation","Existing MCP tools for terminal/remote operations (if available in your ecosystem)","Task runners/remote execution frameworks (Ansible, Fabric) for predictable automation","Self-hosted execution services with explicit RBAC and audit logs"],"af_score":47.0,"security_score":40.5,"reliability_score":27.5,"package_type":"mcp_server","discovery_source":["github"],"priority":"high","status":"evaluated","version_evaluated":null,"last_evaluated":"2026-03-30T15:19:36.258743+00:00","interface":{"has_rest_api":false,"has_graphql":false,"has_grpc":false,"has_mcp_server":true,"mcp_server_url":null,"has_sdk":false,"sdk_languages":[],"openapi_spec_url":null,"webhooks":false},"auth":{"methods":["SSH password authentication (as described)","SSH key authentication (as described)"],"oauth":false,"scopes":false,"notes":"Authentication is for SSH to remote hosts (password/key) rather than API-style auth for mcp-ssh itself. README does not describe any MCP server auth, scopes, or tenant isolation."},"pricing":{"model":null,"free_tier_exists":false,"free_tier_limits":null,"paid_tiers":[],"requires_credit_card":false,"estimated_workload_costs":null,"notes":"Open-source npm package; cost is self-hosting/operational overhead."},"requirements":{"requires_signup":false,"requires_credit_card":false,"domain_verification":false,"data_residency":[],"compliance":[],"min_contract":null},"agent_readiness":{"af_score":47.0,"security_score":40.5,"reliability_score":27.5,"mcp_server_quality":70.0,"documentation_accuracy":60.0,"error_message_quality":0.0,"error_message_notes":null,"auth_complexity":40.0,"rate_limit_clarity":0.0,"tls_enforcement":40.0,"auth_strength":45.0,"scope_granularity":20.0,"dependency_hygiene":55.0,"secret_handling":45.0,"security_notes":"Strengths: supports SSH key and password auth to remote hosts; README mentions timeouts and structured request validation via Zod (claims). Risks/unknowns: no described auth controls for the MCP server itself, no RBAC/scopes, and no stated audit/log redaction strategy. Rate limiting and explicit command allowlisting/sandboxing are not documented. TLS for MCP transport and secret handling behavior (e.g., logging) are not specified in the provided README/manifest content.","uptime_documented":0.0,"version_stability":50.0,"breaking_changes_history":0.0,"error_recovery":60.0,"idempotency_support":"false","idempotency_notes":"README describes reconnect/timeout/error recovery and background tasks, but does not document idempotent request semantics for MCP operations.","pagination_style":"none","retry_guidance_documented":false,"known_agent_gotchas":["Operations can run long or block; README emphasizes blocking detection and waiting behavior.","AI-driven command execution requires policy to avoid destructive or sensitive commands.","tmux collaboration guidance suggests creating tmux and waiting for command completion; agents may otherwise interleave commands incorrectly.","If required project files are removed (README warns not to delete the cloned directory), the MCP bridge may fail."]}}