npm package discovery and stats viewer.

Discover Tips

  • General search

    [free text search, go nuts!]

  • Package details

    pkg:[package-name]

  • User packages

    @[username]

Sponsor

Optimize Toolset

I’ve always been into building performant and accessible sites, but lately I’ve been taking it extremely seriously. So much so that I’ve been building a tool to help me optimize and monitor the sites that I build to make sure that I’m making an attempt to offer the best experience to those who visit them. If you’re into performant, accessible and SEO friendly sites, you might like it too! You can check it out at Optimize Toolset.

About

Hi, 👋, I’m Ryan Hefner  and I built this site for me, and you! The goal of this site was to provide an easy way for me to check the stats on my npm packages, both for prioritizing issues and updates, and to give me a little kick in the pants to keep up on stuff.

As I was building it, I realized that I was actually using the tool to build the tool, and figured I might as well put this out there and hopefully others will find it to be a fast and useful way to search and browse npm packages as I have.

If you’re interested in other things I’m working on, follow me on Twitter or check out the open source projects I’ve been publishing on GitHub.

I am also working on a Twitter bot for this site to tweet the most popular, newest, random packages from npm. Please follow that account now and it will start sending out packages soon–ish.

Open Software & Tools

This site wouldn’t be possible without the immense generosity and tireless efforts from the people who make contributions to the world and share their work via open source initiatives. Thank you 🙏

© 2026 – Pkg Stats / Ryan Hefner

mcp-bulkhead

v1.1.0

Published

MCP server for secure PowerShell command execution on Windows

Downloads

302

Vulnerabilities

Powered byPowered by Snyk
  • 0High
  • 0Medium
  • 0Low

Links

Git

Maintainers

vcampbell3vcampbell3

Keywords

mcpmodel-context-protocolpowershellwindowsclaude-desktop

Readme

mcp-bulkhead

⚠️ WARNING: Do not run this on anything you care about. Development testing only. ⚠️

An MCP server that gives Claude Desktop the ability to run PowerShell commands on your local Windows machine. It includes a configurable command blacklist — a simple safety you can adjust or removed (if you like running with knives).

Quick Start (Claude Desktop)

Add to %APPDATA%\Claude\claude_desktop_config.json:

{
  "mcpServers": {
    "mcp-bulkhead": {
      "command": "cmd",
      "args": ["/c", "npx", "-y", "mcp-bulkhead"],
      "env": {
        "MCP_BULKHEAD_CONFIG": "C:\\path\\to\\bulkhead.json"
      }
    }
  }
}

The cmd /c wrapper is required for Claude Desktop to launch npx-based MCP servers on Windows.

MCP_BULKHEAD_CONFIG is optional — if omitted, the server uses built-in defaults.

Configuration

Create a JSON config file and point MCP_BULKHEAD_CONFIG to it:

{
  "workingDirectory": "C:\\dev",
  "blacklist": [
    "Remove-Item", "rm", "rmdir", "del", "rd",
    "Format-Volume", "format", "Clear-Disk",
    "Set-Acl", "chmod", "chown", "icacls",
    "Start-Process", "sudo", "su", "runas",
    "Stop-Computer", "Restart-Computer", "shutdown", "reboot",
    "reg", "regedit"
  ],
  "timeoutSeconds": 30,
  "audit": { "enabled": true }
}

| Field | Type | Default | Description | |-------|------|---------|-------------| | workingDirectory | string | process cwd | Absolute path used as cwd for execution | | blacklist | string[] | see above | Commands blocked from execution | | timeoutSeconds | number | 30 | Max seconds per command before kill | | audit.enabled | boolean | true | Log every command execution as JSON lines | | audit.file | string | bulkhead.log next to config file | File path to append audit logs to. Set to "" to disable file logging. |

All fields are optional. Omitted fields use defaults. The blacklist is fully yours to control — add, remove, or empty it.

Command rules

  • One command per call. Chain operators (;, &&, ||) are rejected.
  • Pipes are allowed. Each pipe segment is checked against the blacklist.
Get-Process | Select-Object Name     # allowed — pipe
Get-Process; Stop-Service foo        # blocked — chain operator
Get-Process | Remove-Item            # blocked — Remove-Item in second segment

Features (configurable in JSON)

  1. Blacklist — blocks dangerous commands. Can be emptied.
  2. Working directory — sets the default execution context. Does not restrict access to other paths.
  3. Timeout — kills long-running commands.
  4. Audit log — JSON lines to stderr and/or a file. Can be disabled.

Development

git clone https://github.com/CarolinaTech-io/mcp-bulkhead.git
cd mcp-bulkhead
npm install
npm run build
npm test

Test with the MCP Inspector:

npx @modelcontextprotocol/inspector node build/index.js

License

MIT