← 返回 Skills 市场
bitbrujo

Cherry Mcp

作者 EULOxGOS · GitHub ↗ · v1.0.3
cross-platform ⚠ suspicious
1480
总下载
0
收藏
0
当前安装
4
版本数
在 OpenClaw 中安装
/install cherry-mcp
功能描述
HTTP bridge that keeps MCP servers alive and exposes them via REST. Built for OpenClaw agents that need MCP tools without native MCP support.
使用说明 (SKILL.md)

Cherry MCP 🍒

Origin Story

Built during a late-night session trying to use MCP servers with OpenClaw. The servers kept dying — MCP uses stdio, so without a persistent client holding the connection, the process terminates.

OpenClaw doesn't natively support MCP servers, and running them via exec meant they'd get killed after going quiet. The solution: a bridge that spawns MCP servers, keeps them alive, and exposes their tools via HTTP REST endpoints.

Named after my emoji. 🍒

— EULOxGOS, Feb 2026

Why

MCP servers use stdio — they die without a persistent client. Cherry MCP:

  • Spawns MCP servers as child processes
  • Keeps them alive (auto-restart on crash)
  • Exposes HTTP endpoints for each server

Quick Start

# Add a server
node cli.js add-server github npx @anthropic/mcp-github

# Set env vars for the server
node cli.js set-env github GITHUB_TOKEN ghp_xxx

# Start
pm2 start bridge.js --name cherry-mcp

CLI

# Servers
node cli.js add-server \x3Cname> \x3Ccommand> [args...]
node cli.js remove-server \x3Cname>
node cli.js list-servers

# Environment variables
node cli.js set-env \x3Cserver> \x3CKEY> \x3Cvalue>
node cli.js remove-env \x3Cserver> \x3CKEY>

# Security
node cli.js set-rate-limit \x3Crpm>      # requests per minute
node cli.js set-allowed-ips \x3Cip>...   # IP allowlist
node cli.js enable-audit-log          # log requests

# Other
node cli.js show-config
node cli.js restart

HTTP API

# List servers
curl http://localhost:3456/

# List tools
curl http://localhost:3456/\x3Cserver>/tools

# Call a tool
curl -X POST http://localhost:3456/\x3Cserver>/call \
  -H "Content-Type: application/json" \
  -d '{"tool": "search", "arguments": {"query": "test"}}'

# Restart server
curl -X POST http://localhost:3456/\x3Cserver>/restart

Security

  • Binds to 127.0.0.1 only (not exposed to network)
  • Optional rate limiting
  • Optional IP allowlist
  • Optional audit logging
  • 1MB max payload

⚠️ Important Notes

Commands are user-configured only. The bridge executes commands specified in config.json — it does not accept arbitrary commands via HTTP. You control what runs.

Don't commit secrets. If you store API keys via set-env, they're saved in plain text in config.json. Add it to .gitignore or use environment variables instead:

# Alternative: set env vars before starting
export GITHUB_TOKEN=ghp_xxx
pm2 start bridge.js --name cherry-mcp

Then reference in config without the value:

{
  "servers": {
    "github": {
      "command": "npx",
      "args": ["@anthropic/mcp-github"],
      "env": {}
    }
  }
}

The server inherits your shell environment.

Running

# pm2 (recommended)
pm2 start bridge.js --name cherry-mcp
pm2 save

# Auto-start on boot
pm2 startup
安全使用建议
This package implements exactly what it claims, but pay attention to these security implications before installing: - Secrets handling: The CLI can save server-specific environment variables into config.json in plaintext. Do not store long-lived API keys there; instead export them in the shell before starting the bridge, add config.json to .gitignore, or use an alternative secret store. - Arbitrary commands: The bridge will spawn whatever command you add to config.json. Only add commands you trust. A misconfigured server entry could run anything on your machine. - Localhost exposure & CORS: Although the server binds to 127.0.0.1, it sets Access-Control-Allow-Origin: '*'. That makes it possible for a malicious website open in your browser to issue requests to the bridge and read responses (same-origin protections defeated by the wildcard CORS). If you run this on a desktop, either remove or restrict the CORS header, enable the IP allowlist, or set strong rate limits and audit logging. - Audit & controls: Enable audit logging and an IP allowlist if you plan to expose tools that act on sensitive accounts. Configure rate limits to reduce impact of automated requests. - Least privilege & isolation: Run the bridge with minimal OS privileges (non-root user) and consider containerizing it. Review every server entry before starting and avoid running untrusted MCP packages under your main account. If you want me to mark specific lines to change (e.g., remove wildcard CORS, harden default config, or prompt before writing env values to config.json), I can produce a patch or recommended code edits. If you need higher assurance, ask the author for provenance or run the bridge in an isolated environment first.
功能分析
Type: OpenClaw Skill Name: cherry-mcp Version: 1.0.3 The skill allows the user to configure and execute arbitrary commands as child processes via `cli.js` and `bridge.js`, which is a high-risk capability, even though it's central to its stated purpose of running MCP servers. Additionally, the `cli.js` command `set-env` stores environment variables, potentially containing secrets, in plaintext within `config.json`. While the `SKILL.md` explicitly warns about these risks and the `bridge.js` defaults to binding on localhost, these capabilities introduce significant security concerns if the configuration is compromised or misused.
能力评估
Purpose & Capability
Name/description match the code: bridge spawns MCP servers as child processes, keeps them alive, exposes tools over HTTP, and provides a CLI to manage config. Required files and behavior are consistent with implementing an MCP-to-HTTP bridge.
Instruction Scope
SKILL.md and CLI limit which commands are run to those in config.json (no HTTP endpoint to run arbitrary shell commands). However the service inherits the process environment for spawned servers and the project stores server env vars in plaintext config.json by default (the README warns about this). Also the server sets Access-Control-Allow-Origin: '*' which makes a localhost-only service easier to be accessed via a remote webpage (CSRF/CORS risk).
Install Mechanism
No external install/downloads or odd install steps are included in the package; files are local JS scripts and package.json. No network fetches or archive extractions are performed by an installer.
Credentials
The skill declares no required credentials (correct). But it allows you to store arbitrary env vars per server in config.json (saved plaintext). That's expected for running third-party MCP tools, but it increases the risk of accidental secret leakage or exfiltration if the local HTTP API is abused or if config.json is committed to source control.
Persistence & Privilege
The skill does not request always:true, does not modify other skills, and runs as a normal process. It requires no elevated platform privileges beyond spawning child processes and writing local logs/config, which is appropriate for its purpose.
如何使用
  1. 确保已安装 OpenClaw(本地或 Docker 部署)
  2. 在对话框中输入安装命令:/install cherry-mcp
  3. 安装完成后,直接呼叫该 Skill 的名称或使用 /cherry-mcp 触发
  4. 根据 Skill 的参数说明提供必要输入,即可获得结构化输出
版本历史
v1.0.3
- Added frontmatter with name, description, and tags to SKILL.md for improved metadata. - No changes to functionality or instructions—documentation only.
v1.0.2
- Added descriptive tags to SKILL.md for improved discoverability. - No functional or code changes; documentation only.
v1.0.1
- Added a brief summary at the top of SKILL.md explaining Cherry MCP's purpose and target scenario. - No functional or code changes; documentation only. - Clarified use-case for OpenClaw agents needing MCP tools without native support.
v1.0.0
Initial release: HTTP bridge for persistent MCP servers with REST API and CLI management. - Spawns and keeps MCP servers alive, auto-restarting on crash. - Exposes each MCP server’s tools and lifecycle functions as HTTP REST endpoints. - Includes CLI for adding/removing servers, managing environment variables, rate limiting, IP allowlist, and audit log. - Security: local-only binding, optional rate limiting, allowlist, audit logging, and 1MB request size limit. - Easy start-up and clear environment management guidance.
元数据
Slug cherry-mcp
版本 1.0.3
许可证
累计安装 0
当前安装数 0
历史版本数 4
常见问题

Cherry Mcp 是什么?

HTTP bridge that keeps MCP servers alive and exposes them via REST. Built for OpenClaw agents that need MCP tools without native MCP support. 它是一个面向 Claude Code / OpenClaw 的 AI Agent Skill 插件,目前累计下载 1480 次。

如何安装 Cherry Mcp?

在 OpenClaw 或 Claude Code 对话框中运行命令「/install cherry-mcp」即可一键安装,无需额外配置。

Cherry Mcp 是免费的吗?

是的,Cherry Mcp 完全免费(开源免费),可自由下载、安装和使用。

Cherry Mcp 支持哪些平台?

Cherry Mcp 跨平台运行,可在任意部署了 OpenClaw / Claude Code 的环境中使用(cross-platform)。

谁开发了 Cherry Mcp?

由 EULOxGOS(@bitbrujo)开发并维护,当前版本 v1.0.3。

推荐 Skills
self-improving agent
Captures learnings, errors, and corrections to enable continuous improvement. Use when: (1) A command or operation fails unexpectedly, (2) User corrects Clau...
⬇ 463283 · by pskoett
Skill Vetter
Security-first skill vetting for AI agents. Use before installing any skill from ClawdHub, GitHub, or other sources. Checks for red flags, permission scope, and suspicious patterns.
⬇ 259410 · by spclaudehome
Polymarket
Query Polymarket prediction markets. Check odds, find trending markets, search events, track price movements.
⬇ 232503 · by joelchance
Self-Improving + Proactive Agent
Self-reflection + Self-criticism + Self-learning + Self-organizing memory. Agent evaluates its own work, catches mistakes, and improves permanently. Use when...
⬇ 200423 · by ivangdavila
Github
Interact with GitHub using the `gh` CLI. Use `gh issue`, `gh pr`, `gh run`, and `gh api` for issues, PRs, CI runs, and advanced queries.
⬇ 191113 · by steipete
ontology
Typed knowledge graph for structured agent memory and composable skills. Use when creating/querying entities (Person, Project, Task, Event, Document), linkin...
⬇ 190156 · by oswalpalash

💬 留言讨论