SSH MCP Tool

io.github.oaslananka/mcp-ssh-tool·v2.2.7·Other

Secure MCP SSH automation server with policy controls, resources, prompts, stdio, and HTTP.

Trust verdict · v1 advisory · method

NOT YET SCREENEDno verdict on file

Verdict not yet evaluated for this tool. The semantic screen takes adversarial cases first; coverage rolls out as the corpus expands (15/150 labels to graduation). The deterministic conformance probe is built but has not yet run on the public corpus, so a recorded verdict here is REVIEW or UNVERIFIED, never a clearing ALLOW. Until a verdict is recorded, an agent should treat this tool as not-yet-cleared and fall back to its own checks. Method: the eval, four-state verdict, honest limits.

Own this server? Screen its description →

Environment variables

SSH_MCP_HTTP_ALLOWED_ORIGINS

Comma-separated allowed browser origins for Streamable HTTP clients. Keep this restricted when not using loopback.

SSH_MCP_HTTP_BEARER_TOKEN_FILE

secret

Path to a bearer token file. Required for non-loopback HTTP bindings.

SSH_MCP_HTTP_PUBLIC_URL

Stable HTTPS public /mcp URL. Required for non-loopback HTTP bindings.

SSH_MCP_HTTP_TRUST_PROXY

Set to true only behind a trusted reverse proxy that controls forwarded headers.

MCP quality score · maturity, not trust · methodology

freshness

completeness

installability

documentation

stability

Alternatives in Other

agency.lona/trading

AI-powered trading strategy development: backtesting, market data, and portfolio analysis

ABMeter

ai.abmeter/abmeter

Feature flagging and A/B testing platform with AI-first experimentation workflows.

AdAdvisor MCP Server

ai.adadvisor/mcp-server

Query Meta Ads performance data — accounts, campaigns, ad sets, ads, metrics & settings.

Install

Claude Desktop (claude_desktop_config.json)

{
  "mcpServers": {
    "mcp-ssh-tool": {
      "command": "npx",
      "args": [
        "-y",
        "mcp-ssh-tool"
      ],
      "env": {
        "SSH_MCP_HTTP_ALLOWED_ORIGINS": "<ssh_mcp_http_allowed_origins>",
        "SSH_MCP_HTTP_BEARER_TOKEN_FILE": "<your-ssh_mcp_http_bearer_token_file>",
        "SSH_MCP_HTTP_PUBLIC_URL": "<ssh_mcp_http_public_url>",
        "SSH_MCP_HTTP_TRUST_PROXY": "<ssh_mcp_http_trust_proxy>"
      }
    }
  }
}

Cursor (.cursor/mcp.json)

{
  "mcpServers": {
    "mcp-ssh-tool": {
      "command": "npx",
      "args": [
        "-y",
        "mcp-ssh-tool"
      ],
      "env": {
        "SSH_MCP_HTTP_ALLOWED_ORIGINS": "<ssh_mcp_http_allowed_origins>",
        "SSH_MCP_HTTP_BEARER_TOKEN_FILE": "<your-ssh_mcp_http_bearer_token_file>",
        "SSH_MCP_HTTP_PUBLIC_URL": "<ssh_mcp_http_public_url>",
        "SSH_MCP_HTTP_TRUST_PROXY": "<ssh_mcp_http_trust_proxy>"
      }
    }
  }
}

Cline (cline_mcp_settings.json)

npx -y mcp-ssh-tool

Verdict API

curl -s mcpindex.ai/api/v1/trust/server/io-github-oaslananka-mcp-ssh-tool

Free-tier verdict as JSON: decision + dimensions + severity. Call it from your agent before it invokes a tool it just discovered.

Details

version: v2.2.7
category: Other
quality: 89 / 100
operator: oaslananka-lab

Provenance

Verdict history is anchored to Bitcoin via OpenTimestamps. The free tier returns the current verdict only; the anchored record is served on the authenticated tier.

Links

Repository →