STeLA MCP (Model Context Protocol) is a Python implementation of an MCP server that provides secure access to local system operations via a standardized API interface.

What is the purpose of STeLA MCP?

It acts as a bridge between applications and your local system, implementing the Model Context Protocol (MCP) architecture to provide a secure, standardized way for applications to execute commands and perform file operations on a local machine.

What are the key features of STeLA MCP?

Key features include command execution, file operations, directory visualization, working directory support, robust error handling, comprehensive output, simple integration, multi-directory support, security-first design, file search, file edit, type safety, and path validation.

How do I install STeLA MCP?

You can install it via Smithery or manually by cloning the repository, creating a virtual environment, and installing dependencies using pip.

What are the prerequisites for installing STeLA MCP?

Python 3.10 - 3.12, pip or uv package manager, and Pydantic v2.x are required.

How do I configure STeLA MCP?

STeLA MCP can be configured using environment variables such as `ALLOWED_DIRS`, `ALLOWED_DIR`, `ALLOWED_COMMANDS`, `ALLOWED_FLAGS`, `MAX_COMMAND_LENGTH`, and `COMMAND_TIMEOUT`.

What security considerations should I keep in mind when using STeLA MCP?

Run with appropriate permissions, use in trusted environments only, implement additional authorization mechanisms, be cautious about allowed directories, implement path validation, use the most restrictive configuration, regularly review and update allowed commands and directories, validate symlinks, and ensure parent directory checks for file creation operations.

How do I start the STeLA MCP server?

You can start the server using the command `uv run python -m src.stella_mcp.server`.

How can I use STeLA MCP with Claude Desktop?

You can configure STeLA MCP as a tool in Claude Desktop by providing the path to the Python executable and the argument `-m src.stela_mcp.server` or by using the binary distribution.

What are the available tools in STeLA MCP?

Available tools include `execute_command`, `change_directory`, `read_file`, `read_multiple_files`, `write_file`, `edit_file`, `list_directory`, `create_directory`, `move_file`, `search_files`, `directory_tree`, `get_file_info`, `list_allowed_directories`, and `show_security_rules`.

STeLA MCP: Secure Local System Operations for AI Agents

In the rapidly evolving landscape of AI, particularly with the advent of Large Language Models (LLMs) and AI agents, the need for secure and standardized methods for these models to interact with local systems has become paramount. STeLA MCP (Model Context Protocol) emerges as a robust solution, providing a secure bridge between AI applications and local machine operations.

STeLA MCP is a Python implementation of a Model Context Protocol server, offering secure access to local system operations through a standardized API interface. It is designed to facilitate safe and controlled interactions between AI agents and the underlying operating system.

At its core, STeLA MCP addresses a critical challenge: enabling AI agents to perform tasks such as executing commands, manipulating files, and gathering information from the local environment without compromising system security. This is achieved through a carefully designed architecture that emphasizes security, standardization, and ease of integration.

Why STeLA MCP?

Traditional methods of allowing AI agents to interact with local systems often involve direct access, which can introduce significant security vulnerabilities. STeLA MCP mitigates these risks by acting as an intermediary layer, enforcing strict access controls and validating all requests before executing them. This approach ensures that AI agents can only perform authorized actions within a defined and secure environment.

Use Cases

STeLA MCP finds applications in a wide range of scenarios where AI agents need to interact with local systems, including:

AI-Powered Development Environments: Integrate STeLA MCP with IDEs and code editors to enable AI agents to assist with tasks such as code generation, debugging, and automated testing.
Smart Automation Systems: Use STeLA MCP to create AI-driven automation workflows that can perform tasks such as file management, system monitoring, and application deployment.
Data Analysis and Processing: Enable AI agents to access and process local data files, perform data transformations, and generate reports.
Security Auditing and Compliance: Employ AI agents to monitor system activity, detect anomalies, and enforce security policies.
Integration with LLM-based applications: Securely provide LLMs the means to interact with the local file system and execute commands, thereby greatly expanding their capabilities while mitigating security risks.

Key Features

STeLA MCP boasts a comprehensive set of features designed to provide a secure, flexible, and easy-to-use solution for integrating AI agents with local systems:

Command Execution: Execute shell commands on the local system with robust error handling and security controls. This feature allows AI agents to perform tasks such as running scripts, executing system utilities, and managing processes.
File Operations: Read, write, and manage files on the local system with strict access controls. This feature enables AI agents to perform tasks such as creating, modifying, and deleting files, as well as reading file contents.
Directory Visualization: Generate recursive tree views of file systems to provide AI agents with a clear understanding of the file system structure. This feature is particularly useful for tasks such as file organization and navigation.
Working Directory Support: Execute commands in specific directories to provide AI agents with a controlled execution environment. This feature ensures that commands are executed in the correct context and prevents unintended side effects.
Robust Error Handling: Provide detailed error messages and validation to help developers quickly identify and resolve issues. This feature ensures that AI agents can gracefully handle errors and provide informative feedback to users.
Comprehensive Output: Capture and return both stdout and stderr to provide AI agents with complete information about command execution. This feature allows AI agents to analyze command output and make informed decisions.
Simple Integration: Standard I/O interface for easy integration with various clients. This feature allows developers to easily integrate STeLA MCP with their existing AI applications.
Multi-Directory Support: Configure multiple allowed directories for file operations to provide AI agents with access to specific parts of the file system. This feature allows administrators to restrict access to sensitive data and prevent unauthorized file operations.
Security-First Design: Strict path validation and command execution controls to prevent unauthorized access and malicious activity. This feature ensures that STeLA MCP is secure and can be used in sensitive environments.
File Search: Search for files matching a pattern to help AI agents quickly locate specific files. This feature is particularly useful for tasks such as data mining and information retrieval.
File Edit: Make selective edits to a file, allowing AI agents to modify file contents in a controlled manner. This feature is useful for tasks such as code refactoring and data transformation.
Type Safety: Strong type checking with Pydantic models for all tool inputs to ensure data integrity and prevent errors. This feature helps developers catch errors early and ensures that AI agents are working with valid data.
Path Validation: Enhanced symlink and parent directory validation to prevent unauthorized access to system files. This feature ensures that AI agents cannot bypass security controls by using symlinks or parent directory traversal.

Installation and Configuration

STeLA MCP is designed to be easy to install and configure. It can be installed using pip or uv, and it can be configured using environment variables.

Installation Steps

Clone the repository:
bash git clone cd stela-mcp
Create and activate a virtual environment:
bash python -m venv .venv source .venv/bin/activate # On Windows: .venvScriptsactivate
Install dependencies:
bash pip install -e .

Configuration

STeLA MCP can be configured using environment variables. The following environment variables are available:

ALLOWED_DIRS (Required): Comma-separated list of directories where file operations are allowed.
ALLOWED_DIR (Optional): Primary directory for command execution context.
ALLOWED_COMMANDS (Optional): Comma-separated list of allowed shell commands.
ALLOWED_FLAGS (Optional): Comma-separated list of allowed command flags.
MAX_COMMAND_LENGTH (Optional): Maximum length of command strings.
COMMAND_TIMEOUT (Optional): Maximum execution time for commands in seconds.

Integration with UBOS Platform

UBOS is a comprehensive AI Agent Development Platform designed to empower businesses in orchestrating AI Agents, connecting them with enterprise data, and building custom AI Agents with your LLM model and Multi-Agent Systems. STeLA MCP can be seamlessly integrated with the UBOS platform to provide AI agents with secure access to local system operations.

By integrating STeLA MCP with UBOS, businesses can create AI-powered solutions that can perform tasks such as:

Automated Deployment: Automatically deploy applications and services to local servers.
System Monitoring: Monitor system performance and detect anomalies.
Data Backup and Recovery: Back up and restore data to local storage.
Security Auditing: Audit system activity and identify security vulnerabilities.

To integrate STeLA MCP with UBOS, you can use the UBOS API to create a custom AI agent that uses STeLA MCP to interact with local systems. The UBOS API provides a simple and intuitive way to create and manage AI agents, making it easy to integrate STeLA MCP into your AI workflows.

Security Considerations

STeLA MCP provides direct access to execute commands and file operations on the local system. Consider the following security practices:

Run with appropriate permissions (avoid running as root/administrator).
Use in trusted environments only.
Consider implementing additional authorization mechanisms for production use.
Be cautious about which directories you allow command execution and file operations in.
Implement path validation to prevent unauthorized access to system files.
Use the most restrictive configuration possible for your use case.
Regularly review and update allowed commands and directories.
Validate symlinks to prevent access outside allowed directories.
Ensure parent directory checks for file creation operations.

Conclusion

STeLA MCP is a powerful tool for enabling AI agents to interact with local systems in a secure and standardized way. By providing a controlled environment for command execution and file operations, STeLA MCP mitigates the risks associated with direct access and ensures that AI agents can only perform authorized actions. With its ease of installation, flexible configuration, and seamless integration with the UBOS platform, STeLA MCP is an essential component for any organization looking to leverage the power of AI agents in their local environment.

STeLA MCP: Secure Local System Operations for AI Agents