Mobile Command Bridge
БесплатноНе проверенA controlled local program execution bridge for mobile MCP clients, exposing structured tools for running programs, file operations, and network diagnostics wit
Описание
A controlled local program execution bridge for mobile MCP clients, exposing structured tools for running programs, file operations, and network diagnostics without shell access.
README
Full container control bridge for mobile MCP clients (RikkaHub, etc.).
This project exposes MCP tools that let an AI agent run shell commands, execute programs, manage files, make HTTP requests, and install packages inside a Docker container sandbox. The container IS the sandbox — the agent has full control inside it, with all operations audit-logged and workspace data persisted to the host.
Works on Windows and Linux (VPS). Deploy to a VPS with the one-click script for secure remote access from your phone.
Features
Core Tools
run_shell(command)— PREFERRED tool. Execute shell command strings directly viabash -c. Supports pipes (|), redirects (>), chaining (&&,||), env vars ($HOME), globs (*), and all bash syntax. No need to write scripts to files first.run_program(program, args)— Structured argv execution (shell=False). Use when you need precise control without shell interpretation.run_workspace_script(runtime, path)— Run a script file from the workspace.get_policy()/get_capability_details(name)— Capability discovery for the LLM.
Task Tools
- HTTP:
http_probe(url),fetch_url(url) - Network:
ping_host,dns_lookup,tcp_probe,trace_route - System:
system_snapshot() - Files:
list_files,read_file,write_file,append_file,make_directory
Security & Infrastructure
- Streamable HTTP MCP server at
/mcp(mobile-compatible: no DNS rebinding / Origin checks). - Bearer token auth + optional IP allowlist + rate limiting.
- Environment variable override for token and secrets (
MCB_TOKEN,MCB_SECRET_*). - Full UTF-8 encoding support — Chinese and other non-ASCII text works out of the box.
- JSONL audit logging of all operations to
data/logs/audit.jsonl(host-mapped). - Secret placeholder replacement and masking in outputs and logs.
- Timeout and output truncation.
Data Persistence
| Container path | Host path | Purpose |
|---|---|---|
/app/agent_workspace |
data/workspace/ |
Agent's writable workspace |
/app/projects |
data/projects/ |
Cloned repos and project files |
/app/logs/audit.jsonl |
data/logs/audit.jsonl |
Audit log of all operations |
Files saved outside these paths are ephemeral and will be lost on container restart.
Install
pip install -e .
Configure
Start from config.example.yaml (LAN) or config.vps.yaml (VPS).
Important fields:
server.token: required Bearer token (or setMCB_TOKENenv var).server.allowed_origins: accepted browser/client origins.server.ip_allowlist: optional IP restriction (empty = allow all).server.rate_limit_per_minute: app-level rate limit (0 = unlimited).server.compact_toolset: expose compact grouped tools instead of many granular tools.execution.allowed_roots: directories commands may run inside.execution.writable_roots: directories MCP clients may create and edit files inside.programs.<name>.enabled: whether a program is callable.secrets: values available through${NAME}placeholders (orMCB_SECRET_<NAME>env vars).
Run
python -m mcp_command_bridge.server --config config.example.yaml
The default sample config listens on:
http://127.0.0.1:8765/mcp
For LAN use, keep server.host: "0.0.0.0" in the config and connect from the phone to:
http://<computer-lan-ip>:8765/mcp
VPS Deployment
Deploy to a VPS with Docker — port 8765 is exposed for your own reverse proxy setup:
git clone https://github.com/XD06/MCP_Command_Bridge.git
cd MCP_Command_Bridge
sudo bash deploy/deploy.sh --domain mcp.yourdomain.com
The script installs Docker, generates a strong token, builds the container, and exposes port 8765. A reference Nginx config (TLS + rate limiting + security headers) is at deploy/nginx/mcp-command-bridge.conf — set up your own Nginx/Caddy for TLS and domain routing. Data (workspace, audit logs) is mapped to the host for easy access.
See docs/vps-deployment.md for full details.
Send:
Authorization: Bearer <server.token>
Test
python -m unittest discover -s tests
Current result:
95 tests passed
Security Model
Container Full-Control Mode (VPS)
In VPS/Docker deployment, the container IS the sandbox:
run_shellandrun_programare exposed with no restrictions on URLs, methods, paths, or arguments.- The agent can
apt-get install,pip install,git clone, write scripts, and execute them. - Isolation comes from Docker resource limits, not application-level restrictions.
- All operations are audit-logged to
data/logs/audit.jsonl(host-mapped).
Restricted Mode (LAN)
run_program and run_shell are hidden by default (server.expose_advanced_tools: false). File tools are restricted to execution.writable_roots. This mode is for local development.
Encoding
All subprocess I/O uses hardcoded UTF-8 encoding (encoding="utf-8", errors="replace"). The Docker container sets LANG=C.UTF-8, LC_ALL=C.UTF-8, PYTHONUTF8=1, PYTHONIOENCODING=utf-8. Chinese and other non-ASCII text works without errors.
Tool Selection Guide
run_shell(command)— PREFERRED for most tasks. Pipes, redirects, chaining, inline code.http_probe(url)/fetch_url(url)— Quick HTTP status / text fetch.ping_host,dns_lookup,tcp_probe,trace_route— Network diagnostics.system_snapshot()— OS, IP, Python version info.write_file/read_file— Create and read workspace files.run_workspace_script(runtime, path)— Run a workspace script file.run_program(program, args)— Precise argv control without shell interpretation.
get_policy() returns a capability summary. get_capability_details(name) returns detailed rules.
server.require_capability_preflight: true forces models to call get_capability_details(name) before task tools in that capability can run.
With server.compact_toolset: true, the default tool surface is:
get_policy
get_capability_details
system_snapshot
http_request
network_check
workspace
run_workspace_script
Установка Mobile Command Bridge
У этого сервера нет опубликованного пакета — он собирается из исходников. Открой репозиторий и следуй инструкции в README.
▸ github.com/XD06/MCP_Command_BridgeFAQ
Mobile Command Bridge MCP бесплатный?
Да, Mobile Command Bridge MCP бесплатный — установка в пару кликов через Unyly без оплаты.
Нужен ли API-ключ для Mobile Command Bridge?
Нет, Mobile Command Bridge работает без API-ключей и переменных окружения.
Mobile Command Bridge — hosted или self-hosted?
Self-hosted: сервер запускается локально на твоей машине командой из раздела установки.
Как установить Mobile Command Bridge в Claude Desktop, Claude Code или Cursor?
Открой Mobile Command Bridge на unyly.org, выбери вкладку своего клиента (Claude Desktop, Claude Code, Cursor) и нажми Install — конфиг сгенерируется автоматически, без правки JSON.
Похожие MCP
GitHub
PRs, issues, code search, CI status
автор: GitHubFilesystem
Secure file operations with configurable access controls.
Memory
Knowledge graph-based persistent memory system.
Template MCP Server
A CLI tool to create a new Model Context Protocol server project with TypeScript support, dual transport options, and an extensible structure
автор: mcpdotdirectCompare Mobile Command Bridge with
Не уверен что выбрать?
Найди свой стек за 60 секунд
Автор?
Embed-бейдж для README
Похожее
Все в категории development
