Secure Fetch

Secure fetch to prevent access to local resources

GitHub

Secure Fetch

This project implements a secure URL fetching tool using FastMCP.

Prerequisites

Python 3.7+
uv (Python package installer and environment manager)

Installation

Install uv if you haven't already:

pip install uv

Create a new virtual environment and install dependencies:

uv venv source .venv/bin/activate uv pip install fastmcp requests

Usage

Set the allowlist environment variable (optional):

export SECURE_FETCH_ALLOWLIST="example.com,trusted-domain.org"

Run the script:

uv run main.py

Features

Fetches URLs securely
Resolves domains to IPs
Checks for private/internal IPs
Handles redirects (up to 3)
Supports custom HTTP methods and headers
Uses an allowlist for trusted domains/IPs

Security Considerations

The tool prevents access to private/internal IPs unless explicitly allowed
Only HTTP and HTTPS schemes are permitted
SNI is set to match the hostname for HTTPS connections

Example Usage

Once the script is running, you can use the fetch_url function to securely fetch URLs. The function will return a dictionary containing the status code, response body, and content length.

Note

This tool is designed for secure URL fetching. Always review and understand the code before using it in your environment.

Servidores relacionados

Bright Data

patrocinador

Discover, extract, and interact with the web - one interface powering automated access across the public internet.

MCP LLMS.txt Explorer

Explore and analyze websites that have implemented the llms.txt standard.

Playwright

Provides browser automation capabilities using Playwright. Interact with web pages, take screenshots, and execute JavaScript in a real browser environment.

Document Extractor MCP Server

Extracts document content from Microsoft Learn and GitHub URLs and stores it in PocketBase for retrieval and search.

Open Crawler MCP Server

A web crawler and text extractor with robots.txt compliance, rate limiting, and page size protection.

Notte

Leverage Notte Web AI agents & cloud browser sessions for scalable browser automation & scraping workflows

MCP-Puppeteer-Linux

Automate web browsers on Linux using Puppeteer. Enables LLMs to interact with web pages, take screenshots, and execute JavaScript.

Oxylabs AI Studio

AI-powered tools for web scraping, crawling, and browser automation.

Web Browser MCP Server

Provides advanced web browsing capabilities for AI applications.

HTTP Requests

An MCP server for making HTTP requests, enabling LLMs to fetch and process web content.

Playwright SSE MCP Server

An MCP server that provides Playwright features for web scraping and browser automation.