Is Signal Mcp Server safe to use?

Signal Mcp Server has no known CVEs as of the latest MCPpedia security scan. It does not require authentication, so any local process can connect — keep this in mind in shared environments.

How do I install Signal Mcp Server?

Signal Mcp Server supports copy-paste install configs on its MCPpedia page for Claude Desktop, Cursor, and Claude Code. Scroll to the Quick Install section and select your client.

What can Signal Mcp Server do?

Signal Mcp Server provides 3 tools: signal_list_chats, signal_get_chat_messages, signal_search_chat. See the full tools list on the server page for descriptions and parameters.

What AI clients work with Signal Mcp Server?

Signal Mcp Server is compatible with claude-desktop, cursor, claude-code. It uses stdio and sse and http transport.

Is Signal Mcp Server actively maintained?

Signal Mcp Server is less actively maintained — last commit was 301 days ago. It has 7 GitHub stars.

Signal Mcp Server

Name: Signal Mcp Server
Author: stefanstranger

uv · by stefanstranger

Sigal MCP Server

7 3 tools GitHub PyPI

No known CVEs

No license

Stale

Last commit 301d ago

Works with most clients

Transport: stdio, sse, http

3 tools · ~628 tok

Grade B · 0.3% of 200K ctx

Edit this pageView history

Communication

Step 1

Install in your client

Config is the same across clients — only the file and path differ.

Supported in Claude Desktopstdio, sse, http · Node 18+

Paste into ~/Library/Application Support/Claude/claude_desktop_config.json

{
  "mcpServers": {
    "signal-mcp-server": {
      "args": [
        "run",
        "--with",
        "mcp[cli]",
        "--with",
        "signal-export",
        "mcp",
        "run",
        "C:\\Github\\signal-mcp-server\\server.py"
      ],
      "type": "stdio",
      "command": "uv"
    }
  }
}

Are you the author?

Add this badge to your README to show your security score and help users find safe servers.

Embed in your READMEAbout badges →

[![MCPpedia Score](https://mcppedia.org/api/badge/signal-mcp-server)](https://mcppedia.org/s/signal-mcp-server)

Read me

What Signal Mcp Server does

MCP Server for retrieving Signal messages using signal-export logic.

Test This Server

Run this in your terminal to verify the server starts. Then let us know if it worked — your result helps other developers.

uvx 'uv' 2>&1 | head -1 && echo "✓ Server started successfully"

After testing, let us know if it worked:

Loading README…

Scored, not listed

Why this score

Five weighted categories — click any category to see the underlying evidence.

Score breakdown

73/100across 5 weighted dimensions

How we score →

0255075100

−27

Security

Maintenance

Efficiency

Documentation

Compatibility

Categoriesclick a row to see evidence

Security

OSV.dev

4 fixed

GHSA-pjjw-68hj-v9mwmedium · fixedCVSS 4

uv vulnerable to arbitrary file deletion through RECORD entries

## Impact Wheel RECORD entries can contain relative paths that traverse outside of the wheel’s installation prefix. In versions 0.11.5 and earlier of uv, these wheels were not rejected on installation and the RECORD was respected without validation on uninstall. uv uses the RECORD to determine files to remove on uninstall. Consequently, a malicious or malformed wheel could induce deletion of arbitrary files outside of the wheel’s installation prefix on uninstall. uv does not use the RECORD fi

Affected: >= 0Fixed in 0.11.6source →

CVE-2025-13327medium · fixedCVSS 4

uv allows ZIP payload obfuscation through parsing differentials

### Impact In versions 0.9.5 and earlier of uv, ZIP archives were handled in a manner that enabled two parsing differentials against other components of the Python packaging ecosystem: 1. Central directory entries in a ZIP archive can contain comment fields. However, uv would assume that these fields were not present, since they aren't widely used. Consequently, a ZIP archive could be constructed where uv would interpret the contents of a central directory comment field as ZIP control structur

Affected: >= 0Fixed in 0.9.6source →

GHSA-w476-p2h3-79g9info · fixed

uv has differential in tar extraction with PAX headers

### Impact In versions 0.9.4 and earlier of uv, tar archives containing PAX headers with file size overrides were not handled properly. As a result, an attacker could contrive a source distribution (as a tar archive) that would extract differently when installed via uv versus other Python package installers. The underlying parsing differential here originates with astral-tokio-tar, which disclosed this vulnerability as CVE-2025-62518. In practice, the impact of this vulnerability is **low**:

Affected: >= 0Fixed in 0.9.5source →

CVE-2025-54368medium · fixedCVSS 4

uv allows ZIP payload obfuscation through parsing differentials

## Impact In versions 0.8.5 and earlier of uv, remote ZIP archives were handled in a streamwise fashion, and file entries were not reconciled against the archive's central directory. This enabled two parser differentials against other Python package installers: 1. An attacker could contrive a ZIP archive that would extract with legitimate contents on some package installers, and malicious contents on others due to multiple local file entries. The attacker could choose which installer to target

Affected: >= 0Fixed in 0.8.6source →

Inventory

Tools (3)

Click any tool to inspect its schema.

~628 tokens total

Inventory

Prompts (4)

signal_summarize_chat_prompt

Generate a summary prompt for recent messages in a specific chat.

signal_chat_topic_prompt

Generate a prompt to analyze discussion topics in a chat.

signal_chat_sentiment_prompt

Generate a prompt to analyze message sentiment in a chat.

signal_search_chat_prompt

Generate a search prompt for finding specific text in a chat.

Community

Reviews

Be the first to review

Have you used this server?

Share your experience — it helps other developers decide.

How easy was setup?Did it work reliably?How was the documentation?

Frequently Asked Questions

Is Signal Mcp Server safe to use?: Signal Mcp Server has no known CVEs as of the latest MCPpedia security scan. It does not require authentication, so any local process can connect — keep this in mind in shared environments.
How do I install Signal Mcp Server?: Signal Mcp Server supports copy-paste install configs on its MCPpedia page for Claude Desktop, Cursor, and Claude Code. Scroll to the Quick Install section and select your client.
What can Signal Mcp Server do?: Signal Mcp Server provides 3 tools: signal_list_chats, signal_get_chat_messages, signal_search_chat. See the full tools list on the server page for descriptions and parameters.
What AI clients work with Signal Mcp Server?: Signal Mcp Server is compatible with claude-desktop, cursor, claude-code. It uses stdio and sse and http transport.
Is Signal Mcp Server actively maintained?: Signal Mcp Server is less actively maintained — last commit was 301 days ago. It has 7 GitHub stars.

Similar servers

Others in communication

View all →

Mcp_agent_mail96

Asynchronous coordination layer for AI coding agents: identities, inboxes, searchable threads, and advisory file leases over FastMCP + Git + SQLite

2.0k 6

Mac_messages_mcp93

An MCP server that securely interfaces with your iMessage database via the Model Context Protocol (MCP), allowing LLMs to query and analyze iMessage conversations. It includes robust phone number validation, attachment processing, contact management, group chat handling, and full support for sending and receiving messages.

289 4

Agenticmail92

Email & SMS infrastructure for AI agents — send and receive real email and text messages programmatically

133 7

Ms 365 Mcp Server91

A Model Context Protocol (MCP) server for interacting with Microsoft 365 and Office services through the Graph API

736 22

MCP Security Weekly

Get CVE alerts and security updates for Signal Mcp Server and similar servers.

Community

Discussion

Start a conversation

Ask a question, share a tip, or report an issue.

Has anyone used this with Cursor?How do you handle auth?Any alternatives?

Edit this pageView history

Communication

Step 1

Install in your client

Config is the same across clients — only the file and path differ.

Supported in Claude Desktopstdio, sse, http · Node 18+

Paste into ~/Library/Application Support/Claude/claude_desktop_config.json

{
  "mcpServers": {
    "signal-mcp-server": {
      "args": [
        "run",
        "--with",
        "mcp[cli]",
        "--with",
        "signal-export",
        "mcp",
        "run",
        "C:\\Github\\signal-mcp-server\\server.py"
      ],
      "type": "stdio",
      "command": "uv"
    }
  }
}

Are you the author?

Add this badge to your README to show your security score and help users find safe servers.

Embed in your READMEAbout badges →

[![MCPpedia Score](https://mcppedia.org/api/badge/signal-mcp-server)](https://mcppedia.org/s/signal-mcp-server)

Read me

What Signal Mcp Server does

MCP Server for retrieving Signal messages using signal-export logic.

Test This Server

Run this in your terminal to verify the server starts. Then let us know if it worked — your result helps other developers.

uvx 'uv' 2>&1 | head -1 && echo "✓ Server started successfully"

After testing, let us know if it worked:

README

📱 signal-mcp-server

MCP Server for retrieving Signal messages using signal-export logic.

🎯 Overview

This MCP server enables AI agents and tools to access Signal Desktop chat messages and attachments via the Model Context Protocol (MCP).

🛠️ Features

Retrieve Signal messages from your local Signal Desktop database
List all Signal chats with contact details and message counts
Filter messages by chat/contact name
Paginate through message history with offset and limit
Support for multiple operating systems (Windows, macOS, Linux)
Handle encrypted Signal databases

📋 Prerequisites

Python 3.13 or higher
UV package manager
Signal Desktop installed with existing message database
Node.js and npm (for MCP inspector tools)
Windows, macOS, or Linux operating system

1. Signal Desktop

Official Download Page:
https://signal.org/download/
Direct Download Links:

Note: Signal Desktop requires Signal to be installed on your phone for initial setup.

2. Python

Official Download Page:
https://www.python.org/downloads/
Direct Download for Python 3.13.5:
Python 3.13.5 Release Page
Download the installer for your OS (Windows, macOS, Linux) and follow the setup instructions.

3. UV (Python Package Manager)

Official Documentation & Source:
https://github.com/astral-sh/uv
UV Documentation
Installation (Windows):
```
irm https://astral.sh/uv/install.ps1 | iex
```
Or, using pip (if you already have Python and pip installed):
```
pip install uv
```

Installation (macOS/Linux):

curl -LsSf https://astral.sh/uv/install.sh | sh

More Info:
UV Installation Guide

4. Claude Desktop

Official Download Page:
https://claude.ai/download
Download the installer for your OS (Windows, macOS) and follow the setup instructions.

🚀 Installation Signal MCP Server

Clone the repository:

git clone https://github.com/stefanstranger/signal-mcp-server.git
cd signal-mcp-server

Create a virtual environment:
```
uv venv .venv --python 3.13
```
Activate the virtual environment:
- Windows PowerShell:
```
.\.venv\Scripts\Activate.ps1
```
- macOS/Linux:
```
source .venv/bin/activate
```
Install dependencies:
```
uv pip install fastmcp signal-export
```

⚙️ Configuration

🔧 Claude Desktop Setup

Usage with Claude Desktop Add the following to your claude_desktop_config.json file:

{
  "mcpServers": {
    "signal-mcp-server": {
         "type": "stdio",
         "command": "uv",
         "args": [
            "run",
            "--with",
            "mcp[cli]",
            "--with",
            "signal-export",
            "mcp",
            "run",
            "C:\\Github\\signal-mcp-server\\server.py"
         ]
    }
  }
}

Signal Data Directory

The server automatically detects your Signal data directory based on your operating system:

Windows: %APPDATA%\Signal
macOS: ~/Library/Application Support/Signal
Linux: ~/.config/Signal (or Flatpak: ~/.var/app/org.signal.Signal/config/Signal)

Encryption

If your Signal database is encrypted, you may need to provide:

password: Database password (if set)
key: Encryption key (if required)

🏃 Running the Server

Start MCP Server

uv run .\server.py

Inspect

... View full README on GitHub

Loading README…

Scored, not listed

Why this score

Five weighted categories — click any category to see the underlying evidence.

Score breakdown

73/100across 5 weighted dimensions

How we score →

0255075100

−27

Security

Maintenance

Efficiency

Documentation

Compatibility

Categoriesclick a row to see evidence

Security

OSV.dev

4 fixed

GHSA-pjjw-68hj-v9mwmedium · fixedCVSS 4

uv vulnerable to arbitrary file deletion through RECORD entries

Affected: >= 0Fixed in 0.11.6source →

CVE-2025-13327medium · fixedCVSS 4

uv allows ZIP payload obfuscation through parsing differentials

Affected: >= 0Fixed in 0.9.6source →

GHSA-w476-p2h3-79g9info · fixed

uv has differential in tar extraction with PAX headers

Affected: >= 0Fixed in 0.9.5source →

CVE-2025-54368medium · fixedCVSS 4

uv allows ZIP payload obfuscation through parsing differentials

Affected: >= 0Fixed in 0.8.6source →

Inventory

Tools (3)

Click any tool to inspect its schema.

~628 tokens total

Inventory

Prompts (4)

signal_summarize_chat_prompt

Generate a summary prompt for recent messages in a specific chat.

signal_chat_topic_prompt

Generate a prompt to analyze discussion topics in a chat.

signal_chat_sentiment_prompt

Generate a prompt to analyze message sentiment in a chat.

signal_search_chat_prompt

Generate a search prompt for finding specific text in a chat.

Community

Reviews

Be the first to review

Have you used this server?

Share your experience — it helps other developers decide.

How easy was setup?Did it work reliably?How was the documentation?

Frequently Asked Questions

Is Signal Mcp Server safe to use?: Signal Mcp Server has no known CVEs as of the latest MCPpedia security scan. It does not require authentication, so any local process can connect — keep this in mind in shared environments.
How do I install Signal Mcp Server?: Signal Mcp Server supports copy-paste install configs on its MCPpedia page for Claude Desktop, Cursor, and Claude Code. Scroll to the Quick Install section and select your client.
What can Signal Mcp Server do?: Signal Mcp Server provides 3 tools: signal_list_chats, signal_get_chat_messages, signal_search_chat. See the full tools list on the server page for descriptions and parameters.
What AI clients work with Signal Mcp Server?: Signal Mcp Server is compatible with claude-desktop, cursor, claude-code. It uses stdio and sse and http transport.
Is Signal Mcp Server actively maintained?: Signal Mcp Server is less actively maintained — last commit was 301 days ago. It has 7 GitHub stars.