How do I install SaturnZap?

SaturnZap is a local plugin. Install it using PyPI package: saturnzap and add the generated configuration snippet to your AI app's MCP config file. Then restart your AI app.

What credentials does SaturnZap need?

SaturnZap requires the following credentials or environment variables: SZ_PASSPHRASE, SZ_MCP_MAX_SPEND_SATS. You can find setup instructions on the server detail page.

What AI apps work with SaturnZap?

SaturnZap uses the Model Context Protocol (MCP) and works with any MCP-compatible AI app, including Claude, ChatGPT / Codex, Gemini, Copilot, Cursor, and more.

Back to Browse

SaturnZap MCP Server

by Lqwdtech

Developer ToolsModerate5.8MCP RegistryLocal

Free

Server data from the Official MCP Registry

Non-custodial Bitcoin Lightning (LDK) wallet for AI agents — pays L402 APIs from CLI or MCP.

About

Non-custodial Bitcoin Lightning (LDK) wallet for AI agents — pays L402 APIs from CLI or MCP.

Security Report

5.8

Moderate5.8Moderate Risk

SaturnZap is a well-architected Lightning wallet CLI with strong fundamentals, but contains several security concerns that warrant attention. The codebase demonstrates good cryptographic practices (Fernet encryption for seeds, BIP39), proper input validation in most areas, and appropriate permission scoping. However, critical vulnerabilities include use of `subprocess` with shell=True for firewall operations without input validation, unsafe passphrase retrieval via `getpass()` with fallback to plaintext env vars, insufficient escaping in IPC socket operations, and weak validation of external Esplora endpoints that could lead to chain synchronization attacks. Additionally, the MCP server lacks per-tool spending limits and request rate limiting, and there is inadequate logging of sensitive operations. The architecture is sound and the code quality is generally high, but these security gaps should be addressed before production mainnet use. Supply chain analysis found 3 known vulnerabilities in dependencies (0 critical, 1 high severity). Package verification found 1 issue.

3 files analyzed · 16 issues found

Security scores are indicators to help you make informed decisions, not guarantees. Always review permissions before connecting any MCP server.

Permissions Required

This plugin requests these system permissions. Most are normal for its category.

File System Read

Reads files on your machine. Normal for tools that analyze or process local data.

File System Write

Writes or modifies files on your machine. Check that this is expected for the tool.

env_vars

Check that this permission is expected for this type of plugin.

HTTP Network Access

Connects to external APIs or services over the internet.

Shell Command Execution

Runs commands on your machine. Be cautious — only use if you trust this plugin.

system_info

Check that this permission is expected for this type of plugin.

process_spawn

Check that this permission is expected for this type of plugin.

What You'll Need

Set these up before or after installing:

Passphrase used to decrypt the local wallet seed.Required

Environment variable: SZ_PASSPHRASE

Optional per-request spend cap for MCP L402 operations.Optional

Environment variable: SZ_MCP_MAX_SPEND_SATS

How to Install

Add this to your MCP configuration file:

{
  "mcpServers": {
    "io-github-lqwdtech-saturnzap": {
      "env": {
        "SZ_PASSPHRASE": "your-sz-passphrase-here",
        "SZ_MCP_MAX_SPEND_SATS": "your-sz-mcp-max-spend-sats-here"
      },
      "args": [
        "saturnzap"
      ],
      "command": "uvx"
    }
  }
}

Reviews

No reviews yet

Be the first to review this server!

More Developer Tools MCP Servers

Git

Free

by Modelcontextprotocol · Developer Tools

Read, search, and manipulate Git repositories programmatically

Fetch

Free

by Modelcontextprotocol · Developer Tools

Web content fetching and conversion for efficient LLM usage

Toleno

Free

by Toleno · Developer Tools

Toleno Network MCP Server — Manage your Toleno mining account with Claude AI using natural language.

SaturnZap MCP Server

About

Security Report

Findings (16)Action required

Permissions Required

What You'll Need

How to Install

Reviews

No reviews yet

More Developer Tools MCP Servers

Git

Fetch

Toleno

mcp-creator-python

MarkItDown

FinAgent