Snipara Mcp
v0.1.0Semantic search tool to quickly find answers across multiple code repositories with AI memory of your preferences for faster documentation lookup.
⭐ 1· 1.6k·0 current·0 all-time
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
OpenClaw
Suspicious
high confidencePurpose & Capability
The code and SKILL.md describe a documentation/semantic-search MCP client that talks to snipara.com (rlm_* tools, OAuth, API key support). That purpose is coherent with the network calls and tools implemented. However the registry metadata claims no required environment variables or credentials while the code and README clearly require SNIPARA_API_KEY and SNIPARA_PROJECT_ID (and optionally SNIPARA_API_URL/SNIPARA_IGNORE_OAUTH) and will store OAuth tokens in ~/.snipara/tokens.json. Also package versioning is inconsistent: registry shows 0.1.0 while pyproject.toml reports 2.2.0 and __version__ is 2.1.0. These discrepancies are concerning and should be resolved with the publisher before trusting the skill.
Instruction Scope
SKILL.md and README focus on using rlm tools to query pre-indexed docs and instruct the user to install the package and set SNIPARA_API_KEY / SNIPARA_PROJECT_ID. They recommend adding the MCP server to various client config files (Claude, Cursor, etc.). The instructions do not ask the agent to read arbitrary local files beyond what is needed (it will read/write ~/.snipara/tokens.json for OAuth). They do suggest using rlm_remember to store preferences remotely (this persists user preferences to Snipara). Overall the runtime instructions stay within the stated purpose, but they include actions that persist credentials and settings (local token file and remote memory) which users should understand and opt into explicitly.
Install Mechanism
The registry lists 'No install spec — instruction-only skill' yet the bundle includes full Python package sources (pyproject.toml, README, server.py, auth.py, rlm_tools.py) and SKILL.md explicitly instructs pip/npm installation (pip install snipara-mcp, npm install snipara-mcp) and uvx usage. That mismatch (no declared install spec but a distributable package present and explicit install instructions) is an incoherence. The code's dependencies are standard (mcp, httpx) and there are no obvious download-from-untrusted-URL patterns in the included files, but you should verify the package origin (PyPI name, GitHub repo, publisher) before installing.
Credentials
The skill bundle requires and uses secrets but the registry metadata declared none. The code expects SNIPARA_API_KEY or OAuth tokens (and SNIPARA_PROJECT_ID) and will persist OAuth tokens to ~/.snipara/tokens.json. Requiring an API key and project id is proportionate to a cloud search service, but the omission in the declared requirements is a red flag. Also note SNIPARA_API_KEY may be used as an X-API-Key header (legacy) and OAuth tokens are stored and refreshed automatically — treat stored tokens as sensitive.
Persistence & Privilege
The skill does not request 'always: true' and does not modify other skills' configuration. It does implement a persistent MCP stdio server that users are instructed to register in their LLM client configs; it also writes OAuth tokens to ~/.snipara/tokens.json. Those behaviors are consistent with an MCP client and are expected for this functionality, but they do create persistent state (local token file and remote memories) that the user must explicitly authorize.
What to consider before installing
Things to check before installing/using this skill:
- Provenance: The bundle includes full Python source and suggests installation via pip/uvx, but the registry metadata omitted install/env declarations and shows a different version. Verify the publisher (check PyPI package name, the GitHub repo referenced in README, and that snipara.com is the legitimate service) before running pip/npm.
- Credentials: The package uses SNIPARA_API_KEY and SNIPARA_PROJECT_ID (and supports OAuth device flow). These are sensitive. Do not reuse high-privilege or long-lived credentials; prefer limited-scope or short-lived keys and revoke after testing.
- Local token storage: OAuth tokens are stored at ~/.snipara/tokens.json with owner-only permissions. If you run the login flow, expect a token file to be created — review its contents and clean up when no longer needed.
- Client config changes: SKILL.md shows examples of adding the MCP server to client config files (Claude, Cursor, etc.). Those are manual instructions — the package does not need to modify other tools automatically, but if you follow them you are giving that client persistent access to the Snipara MCP server. Only add it to clients you control and trust.
- Data persistence on remote service: The skill offers rlm_remember/rlm_recall for storing preferences and 'memory' on Snipara servers. Understand what you store remotely; avoid sending secrets or private tokens to the third-party memory store.
- Audit the code (or run in an isolated environment): Because there are metadata inconsistencies and the package will make network calls, consider inspecting the code, running it in a disposable container, or using network egress controls before granting it credentials.
If the publisher and package sources check out and you are comfortable with storing a project-scoped API key or using OAuth, the tool's behavior aligns with its stated purpose. If you cannot verify the package origin or you don't want tokens stored remotely or locally, do not install it.Like a lobster shell, security has layers — review code before you run it.
latestvk97a4p46pg4pbv3wrxpdg5zkvn804dpd
License
MIT-0
Free to use, modify, and redistribute. No attribution required.