home / mcp / container-mcp mcp server
Provides a secure, container-based MCP server exposing tools for code execution, file operations, web access, and knowledge base interactions.
Configuration
View docs{
"mcpServers": {
"54rt1n-container-mcp": {
"url": "http://127.0.0.1:8000/sse",
"headers": {
"DEBUG": "true",
"MCP_HOST": "127.0.0.1",
"MCP_PORT": "8000"
}
}
}
}Container-MCP provides a secure, container-based environment that exposes the Model Context Protocol as executable tools for large language models. It runs tools in isolated sandboxes, enforces strong security boundaries, and exposes discovery and execution endpoints so your AI systems can safely request code execution, file operations, web access, knowledge base queries, and more.
You will interact with this MCP server through a client that speaks the MCP protocol. Connect to the serverβs endpoint, discover available tools, and call the tools you need. Use the server to run safe, sandboxed commands, execute code, manipulate files, perform web requests, query knowledge storage, fetch market data, and manage lists. Ensure your client uses the SSE endpoint for communication and points to the correct host and port.
Prerequisites you need before installing Container-MCP:
Step-by-step installation flow you can follow exactly in your environment:
# Quick start all-in-one approach
git clone https://github.com/54rt1n/container-mcp.git
cd container-mcp
chmod +x bin/00-all-in-one.sh
./bin/00-all-in-one.sh
# Or perform steps individually
./bin/01-init.sh
./bin/02-build-container.sh
./bin/03-setup-environment.sh
./bin/04-run-container.shContainer-MCP relies on environment-based configuration. You can customize server settings, tool behavior, and resource limits through environment variables. A typical setup involves configuring the server host and port, enabling or disabling specific managers, and tuning timeout and memory limits for each execution environment. The system is designed to run in a container and expose an HTTP/SSE interface for clients to connect and issue commands.
Security is layered through container isolation, AppArmor, Firejail sandboxing, and strict resource limits. Paths are validated, extensions are controlled, and network access is restricted to protect the host system. If you encounter issues, check container health, review sandbox permissions, and verify that the client connects to the correct SSE endpoint.
Executes bash commands in a secure sandbox environment with stdout, stderr, exit code, and a success flag.
Executes Python code in a secure sandbox and returns printed output, error output, a possible return value, and a success flag.
Fetches environment variable values with an optional specific var name.
Reports server health, including system metrics and manager statuses.
Safely reads contents of a file within the sandbox and returns content, size, and modification time.
Safely writes content to a file inside the sandbox and returns the target path and status.
Lists directory contents safely, with optional pattern filtering and recursive option.
Deletes a file safely and returns the path of the deleted file.
Moves or renames a file within the sandbox and reports source and destination paths.
Applies a unified diff patch to a file in the sandbox and reports lines changed and new size.
Performs a web search and returns results with titles, URLs, and snippets.
Scrapes a URL content with optional CSS selector targeting and returns content, URL, and title.
Interactively browses a website using a headless browser and returns the final page content, URL, and title.
Creates a knowledge base document with optional metadata and content and returns the document index.
Writes content to an existing knowledge base document.
Reads knowledge base documents. Supports listing, bulk reads, and single document reads with optional content and index inclusion.
Manages RDF-style triples for documents, including preferences, references, and metadata.
Performs semantic search within the knowledge base with graph expansion options.
Performs knowledge base maintenance like moving documents or rebuilding indices.
Creates an organized list or collection with metadata and storage path.
Retrieves lists with items, metadata, and statistics using flexible filters.
Adds, updates, or removes items within a list with status and tag support.
Updates list properties with merge semantics for metadata.
Permanently deletes or archives a list and its items.
Searches across lists by text or tags and returns matches with context.
Fetches stock or cryptocurrency data, fundamentals, news, and trend analysis.
Fetches and parses RSS or Atom feeds and returns structured items.