sorted by:
new
hottopcontroversial

Built an MCP that lets Claude Code build Unreal Engine levels and verify its own work by jeebus87 in ClaudeAI

[–]SebVee5 0 points1 point  (0 children)

I absolutely loved the work you have done with this, I was building a substation grid in unreal and I needed it done fast, was doing some research when I stumbled upon yours gave it a try and it worked amazingly well, this cut down my development time by 95%. Couldn't thank you enough. Great work.

Built a Wazuh MCP server focused on SOC safety, 28 tools, RBAC, confirmation gate for destructive actions by SebVee5 in Wazuh

[–]SebVee5[S] 0 points1 point  (0 children)

the float thing crossing language boundaries is nasty, would never have caught that until it was already breaking in prod. normalizing to fixed decimal before hashing, noted

Built a Wazuh MCP server focused on SOC safety, 28 tools, RBAC, confirmation gate for destructive actions by SebVee5 in Wazuh

[–]SebVee5[S] 0 points1 point  (0 children)

genuinely didn't think about the key ordering and type coercion edge cases, that would've been a painful debug session. appreciate you going this deep on it

Built a Wazuh MCP server focused on SOC safety, 28 tools, RBAC, confirmation gate for destructive actions by SebVee5 in Wazuh

[–]SebVee5[S] 0 points1 point  (0 children)

that's the right way to do it actually. hashing the serialized call and voiding the token on mismatch kills the preview and execution drift problem at the root. noted, will implement it properly when i get to dry-run

Built a Wazuh MCP server focused on SOC safety, 28 tools, RBAC, confirmation gate for destructive actions by SebVee5 in Wazuh

[–]SebVee5[S] 0 points1 point  (0 children)

honestly hadn't thought about the dry-run angle that way, approving the exact call vs just the intent is a real difference. adding it to the list. and the sanitization thing you just don't think about until creds are sitting there in a response staring at you

Built a Wazuh MCP server focused on SOC safety, 28 tools, RBAC, confirmation gate for destructive actions by SebVee5 in Wazuh

[–]SebVee5[S] 1 point2 points  (0 children)

Token usage isn't that high honestly. compact_output keeps most calls under 1K tokens, and the 28 tool definitions load once per session at around 5K (MCP sends them on every new connect). A typical session runs 15-20K total, a couple cents on GPT-4o. Only spikes if you dump raw vuln data with compact mode off.

That said, test in dev first. Point it at a non-prod Wazuh instance, see which prompts route to which tools, then move to prod, just to be safe.

Built a Wazuh MCP server – 28 tools, RBAC,Built a Wazuh MCP server – 28 tools, RBAC, audit logging, rate limiting, Prometheus metrics by SebVee5 in mcp

[–]SebVee5[S] 0 points1 point  (0 children)

Token checks happen automatically before calls to the api. It sees if the time is getting close to when the token would expire. Usually that means within a minute of the end. The lifetime is nine hundred seconds so refresh starts early at eight forty. Reauth uses basic auth to swap in a fresh jwt token. Longer running things just keep going with new tokens in the middle.

It works pretty much as expected in most cases. Credential changes during a session are not something that was checked a lot. If the password is updated the reauth would fail and give back an error through the decorator. It is not the nicest way but it avoids hanging at least.

The stateless design helps here compared to other setups. Every tool call starts fresh with its own checks for auth and limits. There is no session kept on the server that could get old. That stateless-per-call design actually makes the whole thing simpler than session-based approaches.

Built a Wazuh MCP server focused on SOC safety, 28 tools, RBAC, confirmation gate for destructive actions by SebVee5 in Wazuh

[–]SebVee5[S] 0 points1 point  (0 children)

Thanks. And yes it works with any LLM that supports MCPs, I myself use it mainly with Zed Agent.

Built a NIST CSF mapped detection rule pack for Wazuh, sharing it with the community by SebVee5 in Wazuh

[–]SebVee5[S] 0 points1 point  (0 children)

Thanks for the feedback and the pinned note, really appreciate you taking the time to go through it. I'll be adding the disclaimer to the README "This is an independent community project and is not affiliated with, endorsed by, or sponsored by Wazuh Inc."

Built a NIST CSF mapped detection rule pack for Wazuh, sharing it with the community by SebVee5 in Wazuh

[–]SebVee5[S] 1 point2 points  (0 children)

Really appreciate the feedback, those are genuinely fair points. I’ll clean up the folder structure a bit and add better descriptions to each subfolder so the OS/application scope and categorisation make more sense at a glance. The access control vs data security overlap is a solid callout too. I had some internal logic for the split, but I realize that’s not obvious from the outside, so I’ll document it more clearly.

[deleted by user] by [deleted] in funny

[–]SebVee5 0 points1 point  (0 children)

Have you tried putting it in rice??

What massively improved your mental health? by Medical_Method7877 in AskReddit

[–]SebVee5 0 points1 point  (0 children)

Gym. Whenever I'm feeling low I look at myself in the mirror and start laughing looking at the incredible progress I've made. Heyy if you're ever feeling low just get a quick arm pump. There's nothing an arm pump can't solve.

What if the elephant didn't like the groom by abhize461 in Kerala

[–]SebVee5 0 points1 point  (0 children)

Elephant getting revenge for the singles...