Bash MCP (Master Control Program)

A TypeScript application that allows Claude to safely execute bash commands with security safeguards.

Features

Execute bash commands in a controlled environment
Support for both stateless and stateful (interactive) command execution
Security safeguards:
- Whitelisted commands
- Whitelisted directories
- Command validation
- Output sanitization
Session management for interactive commands
Comprehensive logging

Installation

npm install
npm run build

Configuration

The configuration is stored in config/default.json. You can customize:

Allowed commands
Allowed directories
Session settings
Security settings
Logging settings

Example configuration:

{
  "allowedCommands": ["ls", "cat", "echo", "pwd"],
  "allowedDirectories": ["/tmp", "/home"],
  "session": {
    "timeout": 300,
    "maxActiveSessions": 5,
    "defaultMode": "stateless"
  },
  "security": {
    "validateCommandsStrictly": true,
    "sanitizeOutput": true,
    "maxOutputSize": 1048576,
    "commandTimeout": 30
  },
  "logging": {
    "level": "info",
    "file": "logs/bash-mcp.log",
    "maxSize": 10485760,
    "maxFiles": 5
  }
}

Usage

Simple Command Execution

import { executeCommand } from 'bash-mcp';

const result = await executeCommand('ls -la', { cwd: '/home/user' });
console.log(result.output);

Interactive Sessions

import { initBashMCP } from 'bash-mcp';

const mcp = await initBashMCP();

// Create a session
const session = mcp.createSession('/home/user');
const sessionId = session.sessionId;

// Execute a command in the session
const result1 = await mcp.executeCommand('ls -la', { sessionId });
console.log(result1.output);

// Send input to the session
const result2 = await mcp.sendInput({ sessionId, input: 'echo "Hello, world!"' });
console.log(result2.output);

// Close the session when done
mcp.closeSession(sessionId);

Security Considerations

This MCP is designed with security in mind, but it's important to:

Keep the allowed commands and directories list as restrictive as possible
Regularly review and update the configuration
Monitor the logs for suspicious activity
Keep the MCP and its dependencies up to date

Development

Building

npm run build

Linting and Formatting

To check for linting issues:

npm run lint

To automatically fix linting and formatting issues:

./fix-lint.sh

Or manually:

npm run lint:fix  # Fix linting issues
npm run format    # Format code

Testing

npm test

This server cannot be installed

security - not tested

license - not found

quality - not tested

local-only server

The server can only run on the client's local machine because it depends on local resources.

A TypeScript application that allows Claude to safely execute bash commands with security safeguards including whitelisted commands, directories, and comprehensive logging.

Related MCP Servers

mcp-shell-server
tumf
A
security
A
license
A
quality
A secure shell command execution server implementing the Model Context Protocol (MCP). This server allows remote execution of whitelisted shell commands with support for stdin input.
Last updated -
1
74
Python
MIT License
MCP Terminal Server
dillip285
A
security
A
license
A
quality
A secure server for executing terminal commands within predefined paths, allowing safe interaction by Large Language Models with operating system environments.
Last updated -
1
11
3
JavaScript
MIT License
MCP Command Server
Andrew-Beniash
-
security
F
license
-
quality
A secure server that allows LLM applications like Claude to execute whitelisted system commands with user confirmation and comprehensive security features.
Last updated -
Python
JavaScript Sandbox MCP Server
garc33
A
security
F
license
A
quality
Provides a secure, isolated JavaScript execution environment with configurable time and memory limits for safely running code from Claude.
Last updated -
1
5
JavaScript

View all related MCP servers

Bash MCP (Master Control Program)