Obris

8.0

Stop re-explaining yourself to AI. Save knowledge once, use it in every conversation.

streamable-httpai-ml

Installation

Claude Desktop config (remote)

{
  "mcpServers": {
    "ai-obris-mcp": {
      "type": "streamable-http",
      "url": "https://mcp.obris.ai/"
    }
  }
}

Cursor config

{
  "mcpServers": {
    "ai-obris-mcp": {
      "url": "https://mcp.obris.ai/"
    }
  }
}

Security Report

Score Breakdown

Description10

Permissions10

Behavior6

Stability--

Findings (6)

medium

vague-description

Unclear Server Purpose and Functionality

The server description is abstract and doesn't clearly explain what technical capabilities or operations it provides. 'Stop re-explaining yourself to AI' and 'Save knowledge once, use it in every conversation' are marketing-oriented statements that don't specify what the server actually does or what tools/resources it exposes.

medium

network-access

Remote HTTP Endpoint Without Visible Authentication

The server uses a remote HTTP endpoint (https://mcp.obris.ai/) rather than local stdio transport. Remote endpoints are inherently higher risk as they accept connections from the internet. No authentication mechanism is documented in the provided metadata.

low

excessive-scope

Broad Scope Implied by Description

The description suggests the server manages and retrieves 'knowledge' across conversations, which could imply broad data storage and retrieval capabilities. Without tool definitions, the actual scope cannot be verified, but the framing suggests potentially wide-ranging functionality.

low

info

Tool Definitions Not Available for Review

Tool definitions could not be fetched from the server, preventing detailed analysis of input validation, prompt injection risks, or capability scope. This limits the security audit depth.

info

Positive Trust Signals Present

The server has a public GitHub repository, official website, and clear organizational identity (obris-dev), which are positive indicators of legitimacy and accountability.

info

vague-description

Semantic Analysis Summary

Obris presents moderate security concerns primarily due to its remote HTTP endpoint, vague technical description, and unavailable tool definitions for detailed review. While the server has positive trust signals (public repo, website, clear identity), the lack of clarity about what data it stores, how it's accessed, and what authentication protects it warrants caution. The abstract marketing-focused description should be supplemented with technical documentation before deployment in sensitive environments.

Last scanned 53m ago

Details

Version: 0.4.0
Transport: streamable-http
Capabilities
Repository: obris-dev/obris-mcp
Website: obris.ai