Security News
Deno 2.6 + Socket: Supply Chain Defense In Your CLI
Deno 2.6 introduces deno audit with a new --socket flag that plugs directly into Socket to bring supply chain security checks into the Deno CLI.
By Sarah Gooding - Dec 12, 2025
🚨 Shai-Hulud Strikes Again:834 Packages Compromised.Technical Analysis →
mcp-file-uploader
Advanced tools
MCP File Uploader
一个基于 MCP (Model Context Protocol) 的文件上传工具,支持将本地文件上传到指定的接口。
功能特性
- 文件上传:支持将本地文件上传到指定的HTTP接口
- 文件验证:上传前检查文件是否存在
- 错误处理:提供详细的错误信息和异常处理
- 响应反馈:返回上传结果和服务器响应
本地测试步骤
-
首先,确保你已经安装了所有依赖:
npm install -
构建项目:
npm run build -
启动 MCP 服务器(需要提供上传接口URL和API密钥):
npx mcp-file-uploader --uploadUrl <上传接口URL> --apiKey <API密钥>示例:
npx mcp-file-uploader --uploadUrl https://api.example.com/upload --apiKey your-api-key-here
可用工具
uploadFile
上传本地文件到指定接口。
参数:
filePath(string): 要上传的本地文件路径
启动参数:
--uploadUrl: 上传接口的URL地址--apiKey: API密钥,用于验证用户身份
接口规范:
- 请求方法:POST
- Content-Type:multipart/form-data
- 自动生成的参数:
fileKey: 文件唯一标识(格式:文件MD5_文件名)fileName: 原始文件名(含后缀)fileSize: 文件大小(字节)fileMd5: 文件MD5值file: 文件二进制流
MCP JSON
{
"mcpServers": {
"mcp-file-uploader": {
"command": "npx",
"args": [
"-y",
"mcp-file-uploader",
"--uploadUrl",
"https://api.example.com/upload",
"--apiKey",
"your-api-key-here"
]
}
}
}
技术栈
- TypeScript: 主要开发语言
- MCP SDK: Model Context Protocol 软件开发工具包
- Node.js: 运行时环境
Keywords
FAQs
MCP文件上传工具 - 支持将本地文件上传到指定接口
The npm package mcp-file-uploader receives a total of 3 weekly downloads. As such, mcp-file-uploader popularity was classified as not popular.
We found that mcp-file-uploader demonstrated a healthy version release cadence and project activity because the last version was released less than a year ago. It has 1 open source maintainer collaborating on the project.
Package last updated on 12 Nov 2025
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Related posts
Security News
New React Server Components Vulnerabilities: DoS and Source Code Exposure
New DoS and source code exposure bugs in React Server Components and Next.js: what’s affected and how to update safely.
By Sarah Gooding - Dec 12, 2025
Security News
Software Engineering Daily Podcast: Feross on AI, Open Source, and Supply Chain Risk
Socket CEO Feross Aboukhadijeh joins Software Engineering Daily to discuss modern software supply chain attacks and rising AI-driven security risks.
By Sarah Gooding - Dec 11, 2025