mcp-safe-run
Solves the 'hardcoded secrets in mcp.json' problem by wrapping existing MCP servers with secure credential injection. No server modifications required.
Tired of hardcoding secrets like API keys in your MCP client configuration (e.g., mcp.json, claude_desktop_config.json)? mcp-secure-launcher lets you run your existing MCP servers securely without modifying them.
- Keep sensitive credentials out of configuration files and version control
- Launch tool connectors securely without modifying their code
- Manage secrets separately from your tool server configurations
Solves the 'hardcoded secrets in mcp.json' problem by wrapping existing MCP servers with secure credential injection. No server modifications required.
Security-conscious teams deploying MCP servers who need to keep API keys out of configuration files and version control.
https://github.com/Kanak03-star/mcp-safe-run
By Kanak03-star
How to Get It
claude mcp add mcp-safe-run -- npx -y mcp-safe-run
Tip: Paste this into a Claude Code conversation. Verify command matches your Claude Code version.
Trust Signals Auto-scanned
Data & Access
Community Pulse Growing
Discussed on Reddit
- Sandbox MCP: Enable LLMs to run ANY code safely — Reddit · 26 pts
- How do you check if an MCP server is “safe” before you run it? — Reddit · 4 pts
- Syrin: A runtime intelligence system that makes MCP servers debuggable, testable — Reddit · 1 pts
3 mentions across 1 sources
Reviewer notes
Auto-scanned review. These are observations, not a security certification.
Secures MCP server configs by removing hardcoded API keys. Solves real security gap.
How to evaluate tools before deploying →
Data shown here comes from public APIs and automated scanning. Reviewer notes reflect one person's experience. This is not a security certification or legal recommendation. Always evaluate tools according to your own organization's policies.
Evaluation
Related Outcomes
This tool shows up in these problem-focused recommendations.