Command Palette

Search for a command to run...

UnylyUnyly
Browse all

Common Server

FreeNot checked

Zero-dependency MCP server that provides AI models with secure read/write/exec access to local files and directories over HTTP and SSE, designed to be tunneled

GitHubEmbed

About

Zero-dependency MCP server that provides AI models with secure read/write/exec access to local files and directories over HTTP and SSE, designed to be tunneled via ngrok for integration with Claude Web.

README

Zero-dependency Node.js MCP server with 476 tools across 10 categories.

# Category Tools
1 Read & File System 94
2 Write & Edit 22
3 Git 42
4 Code Analysis & Audit 79
5 Security Scanning 57
6 Browser Automation 71
7 Network & Messaging 64
8 Data & Format Utilities 31
9 Execution & Process 8
10 Email & Database 9
Total 475

Read & File System (94)

read_directory, read_file, read_files, read_allfiles, file_info, search_files, search_lines, search_in_document, file_checksum, checksum_verify, hash_string, regex_test, env_info, system_resources, which_command, compare_directories, file_diff_dir, count_lines, file_tree, hash_directory, base64_encode, text_transform, file_stats, dir_size_stats, disk_usage_summary, dir_diff_summary, image_ops, pdf_rich_extract, pdf_to_md, docx_to_md, docx_to_pdf, dotenv_client, toml_client, yaml_client, ini_client, xml_client, markdown_client, csv_client, jsonl_client, zip_client, tar_client, json_client, excel_client, pdf_client, msgpack_client, cbor_client, protobuf_client, jsonrpc_client, avro_client, thrift_client, parquet_client, orc_client, arrow_client, hdf5_client, pcap_client, ical_client, sqlite_client, log_client, geo_client, font_client, epub_client, audio_client, video_client, image_client, 3d_client, wasm_client, ssh_keygen, registry_client, k8s_client, prometheus_client, elasticsearch_client, mongodb_client, cassandra_client, influxdb_client, ntp_client, syslog_client, clickhouse_client, semver_compare, url_parse, json_flatten, uuid_generate, diff_strings, base62_encode, base62_decode, markdown_to_html, xml_parse, string_transform, ip_cidr, color_convert, number_format, date_calc, text_extract, str_similarity, cron_next

Write & Edit (22)

write_file, write_files, create_file, create_files, replace_in_file, truncate_file, append_file, base64_decode, delete_file, delete_files, move_file, copy_file, move_directory, copy_directory, create_directory, delete_directory, gzip_compress, brotli_compress, md_to_docx, md_to_pdf, pdf_to_docx, json_path_set

Git (42)

git_write_ops, find_stale_branches, check_branch_protection_hints, git_hooks_audit, git_status, git_log, git_blame, git_diff, git_stash_list, git_branch_list, git_worktree_list, git_worktree_prune_candidates, git_commit_message_lint, check_gitignore_coverage, git_diff_summary, git_show, git_tag_list, git_reflog, git_dangling_commits, git_object_count, git_untracked_size, git_cherry, git_contributors_summary, find_recent_force_pushes, check_stash_apply_risk, git_blame_ownership_diff, git_tag_annotate_audit, suggest_next_version, check_commit_signatures, git_commit_frequency, git_orphaned_branches, git_submodule_status, git_ownership, git_blame_hotspots, git_file_age, find_todo_owners, find_stale_todos, generate_pr_description, find_large_git_objects, check_dotenv_files_not_gitignored, check_lfs_coverage, merge_conflict_risk

Code Analysis & Audit (79)

find_files, check_binary_file, find_duplicates, scan_todos, scan_conflict_markers, find_binary_diffs, find_circular_deps, find_dead_exports, find_unused_dependencies, find_console_logs, find_duplicate_dependencies, readme_link_check, find_env_var_usage, check_npm_audit_cache, find_unreachable_modules, find_orphaned_test_files, check_test_coverage_gaps, check_line_endings, find_large_files, find_empty_dirs, package_json_audit, check_package_lock_sync, scan_dockerfile_issues, scan_dependency_licenses, find_case_sensitive_import_mismatches, find_duplicate_yaml_keys, find_unsafe_regex, scan_npm_lifecycle_scripts, check_semver_range_strictness, find_empty_catch_blocks, find_sync_fs_in_async_context, find_dangling_promises, find_unbounded_recursion, find_unbounded_object_growth, find_regex_denial_of_service_in_route_params, check_test_flakiness_risk, find_unbounded_array_push_in_loop, find_env_var_default_fallback_masking_errors, find_promise_all_without_catch, find_blocking_child_process_calls, find_unhandled_express_error_middleware, check_dockerignore_coverage, find_json_parse_without_try_catch, find_inconsistent_error_response_shape, summarize_package_scripts, check_docker_compose_issues, find_setinterval_without_clear, find_async_callback_in_foreach, find_duplicate_html_id, find_positive_tabindex, find_duplicate_json_keys, find_inline_event_handlers, find_missing_viewport_meta, find_missing_lang_attribute, find_missing_meta_charset, find_missing_aria_role, find_hardcoded_color_literals, find_missing_doctype, find_unused_css_variables, find_magic_numbers, find_long_functions, find_deprecated_html_elements, find_eval_usage, find_missing_error_context, find_promise_race_without_timeout, find_missing_try_catch_in_async, find_unhandled_rejection_patterns, find_memory_leak_patterns, find_circular_reference_risks, find_promise_constructor_antipattern, find_event_emitter_leak, find_sql_injection_risk, find_command_injection_risk, find_xss_risk, find_path_traversal_risk, find_insecure_deserialization, find_prototype_pollution_via_merge, find_timing_attack_risk, find_missing_input_validation

Security Scanning (57)

scan_secrets, find_hardcoded_ips, find_missing_await, scan_cors_misconfig, scan_dangerous_code_patterns, find_unpinned_github_actions, find_hardcoded_credentials_in_config, find_hardcoded_ports, find_insecure_random_usage, find_missing_null_checks_after_regex_exec, check_missing_csp_header, find_missing_sort_comparator, find_req_body_mass_assignment, find_prototype_pollution_risk, check_missing_rate_limit, check_dependency_confusion_risk, find_error_message_leaking_internals, find_disabled_tls_verification, find_unpinned_docker_base_image, check_missing_helmet_security_headers, check_missing_rate_limit_headers, find_duplicate_route_registrations, find_missing_pagination_limit, find_missing_error_boundary_in_async_route, find_missing_websocket_error_handler, find_hardcoded_localhost_urls, find_open_redirect_risks, find_unvalidated_redirect, find_race_condition_risk, find_missing_json_response_content_type, find_missing_findindex_check, find_missing_null_check_on_optional_chaining_default, find_missing_cleanup_on_early_return, find_hardcoded_jwt_secret, check_insecure_cookie_flags, check_missing_engines_field, find_missing_shebang_in_bin_scripts, find_missing_return_after_res_send, find_missing_stream_error_handler, find_missing_img_alt_text, find_missing_form_label, find_missing_button_accessible_name, find_missing_rel_noopener, find_missing_remove_event_listener, jwt_decode, jwt_sign, jwt_verify, crypto_encrypt, crypto_decrypt, hmac_sign, hmac_verify, totp_generate, totp_verify, password_generate, key_generate, oauth2_token, tls_cert_inspect

Browser Automation (71)

browser_launch, browser_navigate, browser_get_content, browser_get_title, browser_evaluate, browser_click, browser_type, browser_screenshot, browser_get_console_logs, browser_list_sessions, browser_close, browser_wait_for_navigation, browser_hover, browser_upload_file, browser_drag_and_drop, browser_download, browser_get_attribute, browser_is_checked, browser_uncheck, browser_get_element_info, browser_close_page, browser_emulate, browser_set_viewport, browser_set_extra_headers, browser_set_local_storage, browser_add_init_script, browser_get_page_metrics, browser_get_exposed_calls, browser_wait_for_response, browser_get_storage_state, browser_storage_state_save, browser_accessibility_snapshot, browser_find_by_role, browser_wait_for_dialog, browser_frame_evaluate, browser_replay_actions, browser_new_page, browser_switch_page, browser_list_pages, browser_start_recording, browser_stop_recording, browser_get_recording, browser_clear_recording, browser_select_option, browser_press_key, browser_scroll, browser_double_click, browser_right_click, browser_check, browser_wait_for_selector, browser_get_current_url, browser_go_back, browser_go_forward, browser_reload, browser_pdf, browser_is_visible, browser_expose_function, browser_get_cookies, browser_set_cookies, browser_network_start, browser_network_stop, browser_get_network_requests, browser_route, browser_unroute, browser_get_local_storage, browser_handle_next_dialog, browser_get_dialog_log, browser_list_frames, browser_frame_click, browser_frame_type, browser_frame_get_content

Network & Messaging (64)

http_fetch, http_download, port_check, wait_for_port, port_scan_range, dns_lookup, websocket_client, sse_client, smtp_client, redis_client, mqtt_client, imap_client, snmp_client, ftp_client, kafka_client, amqp_client, stomp_client, ldap_client, nats_client, memcached_client, grpc_client, http_client, graphql_client, tcp_client, udp_client, ssh_exec, http_multi_fetch, multipart_upload, http_serve, modbus_client, coap_client, whois_client, tls_client, dns_client, irc_client, tftp_client, rtsp_client, sip_client, xmpp_client, radius_client, diameter_client, pop3_client, nntp_client, zookeeper_client, etcd_client, consul_client, vault_client, aws_client, gcp_client, azure_client, terraform_client, github_client, gitlab_client, bitbucket_client, jira_client, confluence_client, slack_client, teams_client, notion_client, discord_client, linear_client, zendesk_client, pagerduty_client, twilio_client stripe_client - Zero-dependency Stripe REST API v1 client (pure Node.js https). Auth: secret_key (sk_*/rk_*). 63 ops: Customers, PaymentIntents, PaymentMethods, Charges, Refunds, Subscriptions, Invoices, Products, Prices, Coupons, Checkout Sessions, Webhook Endpoints, Balance/Payouts, Disputes, Generic. Stripe Connect support, idempotency keys, credentials scrubbed from all errors.

Data & Format Utilities (31)

json_schema_validate, env_diff, zip_directory, create_tar, read_archive, query_json, query_data, diff_files, query_path, json_patch_generate, json_diff, json_format, json_patch, apply_patch, unzip_archive, extract_tar, yaml_patch, yaml_merge, json_merge, convert_data, csv_convert, gzip_decompress, brotli_decompress, csv_diff, json_schema_generate, csv_query, json_unflatten, template_render, table_ops, graphql_query, jsonl_ops

Execution & Process (8)

run_command, start_process, get_process_output, kill_process, list_processes, run_npm_script, execute_pipeline, send_process_input

Email & Database (9)

email_list_mailboxes, email_send, email_search, sqlite_create, sqlite_connect, sqlite_execute, sqlite_disconnect, sqlite_connections, sqlite_tables

from github.com/tamilts124/mcp-common-server

Installing Common Server

This server has no published package — it is built from source. Open the repository and follow its README.

▸ github.com/tamilts124/mcp-common-server

FAQ

Is Common Server MCP free?

Yes, Common Server MCP is free — one-click install via Unyly at no cost.

Does Common Server need an API key?

No, Common Server runs without API keys or environment variables.

Is Common Server hosted or self-hosted?

Self-hosted: the server runs locally on your machine via the install command above.

How do I install Common Server in Claude Desktop, Claude Code or Cursor?

Open Common Server on unyly.org, pick your client tab (Claude Desktop, Claude Code, Cursor) and press Install — the config is generated automatically, no JSON editing.

Related MCPs

Compare Common Server with

Not sure what to pick?

Find your stack in 60 seconds

Author?

Embed badge for your README

Browse similar

All ai MCPs