cardosofelipe/syndarix
1
0
Fork 0
forked from cardosofelipe/fast-next-template
Code Issues 18 Pull Requests Wiki Activity

security(mcp-kb): Add content size limits to prevent DoS attacks #78

New Issue
Closed
opened 2026-01-03 23:57:03 +00:00 by cardosofelipe · 0 comments
cardosofelipe commented 2026-01-03 23:57:03 +00:00
Owner
Copy Link

Security Issue

The Knowledge Base MCP server has no content size limits, making it vulnerable to DoS attacks via memory exhaustion.

Vulnerable Endpoints

  1. add_document: No limit on content size
  2. batch_add_documents: No limit on batch size or total content
  3. update_document: No limit on new content size

Attack Vector

An attacker could:

  1. Submit extremely large documents (hundreds of MB)
  2. Submit thousands of documents in a single batch
  3. Exhaust server memory and crash the service

Fix Required

  1. Add MAX_DOCUMENT_SIZE config (e.g., 10MB)
  2. Add MAX_BATCH_SIZE config (e.g., 100 documents)
  3. Add MAX_TOTAL_BATCH_SIZE config (e.g., 50MB)
  4. Validate content size before processing
  5. Return 413 Payload Too Large for oversized requests

Implementation

# config.py
MAX_DOCUMENT_SIZE: int = 10 * 1024 * 1024  # 10MB
MAX_BATCH_SIZE: int = 100
MAX_BATCH_TOTAL_SIZE: int = 50 * 1024 * 1024  # 50MB

# server.py - validate before processing
if len(content.encode()) > settings.MAX_DOCUMENT_SIZE:
    raise ValueError(f"Content exceeds maximum size of {settings.MAX_DOCUMENT_SIZE} bytes")

Related

  • Found during PR #72 security review
  • Issue #57 (Knowledge Base MCP Server)
  • OWASP: Denial of Service
## Security Issue The Knowledge Base MCP server has no content size limits, making it vulnerable to DoS attacks via memory exhaustion. ### Vulnerable Endpoints 1. **add_document**: No limit on content size 2. **batch_add_documents**: No limit on batch size or total content 3. **update_document**: No limit on new content size ### Attack Vector An attacker could: 1. Submit extremely large documents (hundreds of MB) 2. Submit thousands of documents in a single batch 3. Exhaust server memory and crash the service ### Fix Required 1. Add `MAX_DOCUMENT_SIZE` config (e.g., 10MB) 2. Add `MAX_BATCH_SIZE` config (e.g., 100 documents) 3. Add `MAX_TOTAL_BATCH_SIZE` config (e.g., 50MB) 4. Validate content size before processing 5. Return 413 Payload Too Large for oversized requests ### Implementation ```python # config.py MAX_DOCUMENT_SIZE: int = 10 * 1024 * 1024 # 10MB MAX_BATCH_SIZE: int = 100 MAX_BATCH_TOTAL_SIZE: int = 50 * 1024 * 1024 # 50MB # server.py - validate before processing if len(content.encode()) > settings.MAX_DOCUMENT_SIZE: raise ValueError(f"Content exceeds maximum size of {settings.MAX_DOCUMENT_SIZE} bytes") ``` ### Related - Found during PR #72 security review - Issue #57 (Knowledge Base MCP Server) - OWASP: Denial of Service
Sign in to join this conversation.
No Branch/Tag Specified
Branches Tags
Labels
Clear labels
agents
Agent orchestration
 architecture
Architectural decisions
 backend
Backend work
 blocked
Blocked by dependency
 database
Database/migrations
 design
UI/UX design work
 devops
DevOps/Infrastructure work
 epic
Epic/parent issue
 frontend
Frontend work
 infrastructure
Infrastructure / DevOps
 mcp
MCP related
 phase-0
Phase 0: Foundation
 phase-1
Phase 1: Core Platform
 phase-2
Phase 2: MCP Integration
 priority:high
High priority
 spike
Architecture spike / research task
No Label
Milestone
No items
No Milestone
Assignees
Clear assignees
cardosofelipe
No Assignees
1 Participants
Notifications
Due Date
No due date set.
Dependencies

No dependencies set.

Reference: cardosofelipe/syndarix#78
Delete Branch "%!s()"

Deleting a branch is permanent. Although the deleted branch may continue to exist for a short time before it actually gets removed, it CANNOT be undone in most cases. Continue?