Model Context Protocol moderate risk

Box

This MCP server allows searching and reading files from Box, using JWT or developer tokens for authentication, with potential risks depending on the token type and permissions.

Connections & Capabilities

Connects To

GitHub

Capabilities

read

Quickstart

Config

{
  "mcpServers": {
    "box": {
      "command": "npx",
      "args": ["box-mcp-server"],
      "env": {
        "BOX_JWT_BASE64": "YOUR_BASE64_ENCODED_JWT",
        "BOX_USER_ID": "123456"
      }
    }
  }
}

Exposed MCP Tools (2)

safe

search_files

Searches for files within the Box account.

Read-only operation, no modification of data.

safe

read_file

Reads the content of a file from Box.

Read-only operation, no modification of data.

Safety Assessment

This MCP server is relatively safe for read-only operations. The biggest risk comes from misconfiguration of the JWT or using a developer token for extended periods. Ensure the JWT has the least privilege necessary and rotate tokens regularly.

Read-only access to files (search and read)
Authentication required (JWT or Developer Token)
No file deletion capabilities
Limited scope (search and read only)

Developer tokens have limited lifespan (60 minutes)
JWT configuration requires careful management of private keys
Potential for over-permissioning if JWT is not configured correctly
Exposure of BOX_USER_ID in environment variables