github/penpot
1
0
Fork 0
mirror of https://github.com/penpot/penpot.git synced 2026-05-11 02:58:25 +00:00
Code Issues Packages Projects Releases Wiki Activity
penpot/mcp/packages/server
History
Andrey Antukh 798ee46b4a 🐛 Bind MCP ReplServer to localhost to prevent unauthenticated RCE 
The ReplServer Express app was calling `app.listen(port)` with no host
argument, causing Node/Express to default to binding on all interfaces
(0.0.0.0). Combined with the unauthenticated /execute endpoint, any
network peer could POST arbitrary JS and get it run inside the MCP
process.

Fix: add a `host` parameter (default "localhost") to the ReplServer
constructor and pass it to `app.listen`. The call site in
PenpotMcpServer now forwards `this.host` (sourced from
PENPOT_MCP_SERVER_HOST env var, default "localhost"), so environment-
variable overrides continue to work.

Signed-off-by: Andrey Antukh <niwi@niwi.nz>
2026-05-07 12:59:31 +02:00
..
data
📎 Update mcp types yaml file
2026-04-22 13:11:10 +02:00
scripts
Backport MCP from staging (part 1)
2026-04-20 19:37:02 +02:00
src
🐛 Bind MCP ReplServer to localhost to prevent unauthenticated RCE
2026-05-07 12:59:31 +02:00
.gitignore
Backport MCP from staging (part 1)
2026-04-20 19:37:02 +02:00
package.json
Backport MCP from staging (part 1)
2026-04-20 19:37:02 +02:00
pnpm-lock.yaml
🎉 Integrate mcp repository
2026-02-04 12:22:36 +01:00
README.md
🎉 Integrate mcp repository
2026-02-04 12:22:36 +01:00
tsconfig.json
🎉 Integrate mcp repository
2026-02-04 12:22:36 +01:00

README.md

Penpot MCP Server

A Model Context Protocol (MCP) server that provides Penpot integration capabilities for AI clients supporting the model context protocol (MCP).

Setup

  1. Install Dependencies

     pnpm install

  2. Build the Project

     pnpm run build

  3. Run the Server

     pnpm run start

Penpot Plugin API REPL

The MCP server includes a REPL interface for testing Penpot Plugin API calls. To use it, connect to the URL reported at startup.