Model Context Protocol moderate risk

Graphlit

The Graphlit MCP server connects MCP clients to the Graphlit platform, enabling knowledge retrieval, RAG, and data ingestion from various sources.

Connections & Capabilities

Connects To

GitHubSlackDiscordNotionJiraLinearGoogle Drive

Capabilities

readwriteexecadmin

Quickstart

Install

npx -y graphlit-mcp-server

Config

{
  "mcp": {
    "inputs": [
      {
        "type": "promptString",
        "id": "organization_id",
        "description": "Graphlit Organization ID",
        "password": true
      },
      {
        "type": "promptString",
        "id": "environment_id",
        "description": "Graphlit Environment ID",
        "password": true
      },
      {
        "type": "promptString",
        "id": "jwt_secret",
        "description": "Graphlit JWT Secret",
        "password": true
      }
    ],
    "servers": {
      "graphlit": {
        "command": "npx",
        "args": ["-y", "graphlit-mcp-server"],
        "env": {
          "GRAPHLIT_ORGANIZATION_ID": "${input:organization_id}",
          "GRAPHLIT_ENVIRONMENT_ID": "${input:environment_id}",
          "GRAPHLIT_JWT_SECRET": "${input:jwt_secret}"
        }
      }
    }
  }
}

Exposed MCP Tools (7)

safe

Query Contents

Searches for content within the Graphlit project.

Read-only operation; no data modification.

moderate

Prompt LLM Conversation

Engages an LLM using data from the Graphlit project.

LLM interaction could lead to unexpected outputs or data exposure if not properly sandboxed.

moderate

Publish as Audio (ElevenLabs Audio)

Generates audio from text using ElevenLabs.

Potential for misuse of audio generation if not properly controlled.

moderate

Web Crawling

Crawls web pages and ingests content.

Could potentially crawl sensitive or malicious sites if not restricted.

critical

Delete Content(s)

Deletes content from the Graphlit project.

Destructive operation; irreversible data loss.

high

Configure Project

Modifies the settings of a Graphlit project.

Can alter project behavior and access controls.

moderate

Add Contents to Collection

Adds content to a collection within the Graphlit project.

Modifies the organization of content within the project.

Safety Assessment

The Graphlit MCP server offers a balance of data access and control. It's safe when used with well-defined projects and limited tool access. Risks increase with broader permissions and the use of publishing or data connector tools.

Environment variables for credentials
Granular MCP tools allow for specific permission control
No direct shell access
Project-based configuration limits scope

Access to organization and environment-level data
Potential for data exfiltration through publishing tools
Reliance on Graphlit platform security
JWT secret exposure risk if not properly managed
Data connectors could expose external services