Bridge sandboxed environments with whitelisted host CLI commands through a secure, direct execution layer.
Sponsored
Bash Bridge is an MCP server designed to securely connect sandboxed agents, such as AI assistants like Claude Cowork, with the host system's command-line interface. It enables these agents to execute specific host CLI commands against a rigorously enforced binary whitelist. By running commands directly without a shell and rejecting dangerous shell operator tokens, it provides a safe mechanism for extending the capabilities of restricted environments, returning structured output including stdout, stderr, and exit codes for comprehensive feedback.
Key Features
01Enforces a strict binary whitelist for allowed commands
020 GitHub stars
03Configurable command timeouts to prevent long-running processes
04Real-time configuration reloads for whitelist updates
05Direct subprocess execution without a shell
06Returns structured output including stdout, stderr, and exit code
07Rejects standalone shell operator tokens for enhanced safety
Use Cases
01Enabling sandboxed AI agents to securely interact with host system utilities
02Extending the functionality of restricted execution environments with controlled host access
03Integrating host CLI tools into automated workflows from agent-based systems
