Sophia Stack MCP

Sophia Stack MCP

Enables external AI agents to edit and manage a self-hosted website via a token-gated MCP server, including page content, data, media, and sandboxed functions with validation and rollback.

Category
Visit Server

README

<p align="center"><img src="brand/sophia-stack-logo.svg" width="380" alt="Sophia Stack"></p>

<h1 align="center">Sophia Stack</h1>

<p align="center"><b>Your own website, built and edited by AI — you host it, you own it.</b></p>


Sophia Stack is a complete website you deploy to your own commodity hosting as a single zip (zero npm install). After a one-time setup you build and edit it by talking to an AI — either the built-in builder (bring your own key) or any external AI agent you hand a token to. No platform lock-in, no monthly SaaS holding your site hostage. It's yours.

Replit/Bolt/Lovable power — but remote, contained, and owned, on a host you control.

Screenshots

Your branded site Build by chatting with Sophia
Landing Build chat
Connect any AI (token / MCP / OpenAPI) Bring your own key — one-tap providers
Connect Settings

…and a complete page it built from one prompt ("build me a coffee shop landing page"):

<p align="center"><a href="docs/screenshots/06-built-page.png"><img src="docs/screenshots/06-built-page.png" width="520" alt="A page Sophia built"></a></p>

What it does

  1. Deploy the zip to any Node host (Hostinger "Setup Node.js App", Railway, Render, a VPS).
  2. Get started — set an admin login; you get a five-word recovery phrase (shown once).
  3. Build with AI — two ways:
    • Built-in builder (chat): add an AI key in Settings (OpenAI, DeepSeek, Groq, OpenRouter, Together, Mistral — one-tap presets + "get a key" links). Then just chat in the dashboard. A real agent loop reads your site, makes changes, fixes its own mistakes, and iterates.
    • Any external agent: mint a mykey- token and hand any web-capable AI the skill + URL + token — it edits the live site directly via the REST API or the built-in MCP server.
  4. Own everything — pages, custom HTML/CSS/JS, a data layer with auto CRUD, media hosting, and sandboxed server functions, all on your domain.

Why it's different

  • You own it. Self-hosted, single artifact, no platform lock-in. Cancel nothing — it's your files.
  • Any AI can operate it. The deployed site is itself an agent-operable endpoint: a token-gated REST API, an MCP server (/mcp), and an OpenAPI schema (/openapi.json).
  • Safe by design. Every edit is validated before it lands (bad edits rejected), with version history + one-click rollback, and an immutable core + footer the AI can't remove.
  • A real app platform, not a template: multi-page, custom code, database + forms, media, and sandboxed backend functions.
  • Ownership recovery. Lost your password or someone got in? Your recovery phrase resets the login and revokes every key + session — no support ticket, because there's no company in the middle.

Connect an external AI

  • ChatGPT: see docs/Connect-ChatGPT.md — build a Custom GPT Action from /openapi.json (Bearer = your mykey- token).
  • Claude / MCP clients: add /mcp as a custom connector with a Bearer token.
  • Cursor / Cline / Claude Code: hand it the skill + URL + token; it edits via the API directly.

A plain chat with no web tool (e.g. the Grok app) can read your site but can't send the request — that's the app's limit, not the token. The token is full auth wherever the AI can make calls.

What the AI can and cannot do

CAN: edit pages, write custom HTML/CSS/JS, define data + forms (CRUD), upload media, write sandboxed backend functions, use blocks/styles/effects, roll back. CANNOT: touch the framework core or remove the footer/branding · read your password, recovery phrase, or keys · reach the host OS/filesystem/network (backend code runs in a locked-down sandbox) · run code outside that sandbox. Full details in SECURITY.md.

Deploy from the prebuilt zip

Grab release/sophia-stack.zip (or build it — below), upload to your host, set the start file to app.js (Node 18+), start it, open the URL. Full step-by-step in the zip's README.txt.

Build from source

npm install
npm run build       # SSR + client bundles
npm test            # full suite (run the demo/*.mjs)
node scripts/package.mjs   # -> package/  (the deployable artifact)

Repo map

Path What
src/ server · agent loop · store · data · media · sandbox · blocks · styles · effects · dashboard
scripts/ build · package · catalog
mcp/ zero-dep stdio MCP wrapper
demo/ the test suite (server, agent, dashboard, recovery, mcp, pages, pro, ui, package…)
docs/ Connect-ChatGPT guide
brand/ logo
ARCHITECTURE.md · SECURITY.md design + safety model

Status — v1

Deployable, branded, and tested end to end: onboarding + recovery, the conversational agent builder, the agent-operable REST/MCP/OpenAPI surface, data + media + sandboxed functions, validate-before-commit

  • rollback + immutable core. Runs as a CommonJS Express app for broad host compatibility.

Built under SophiaXT, operator-directed.

Recommended Servers

playwright-mcp

playwright-mcp

A Model Context Protocol server that enables LLMs to interact with web pages through structured accessibility snapshots without requiring vision models or screenshots.

Official
Featured
TypeScript
Magic Component Platform (MCP)

Magic Component Platform (MCP)

An AI-powered tool that generates modern UI components from natural language descriptions, integrating with popular IDEs to streamline UI development workflow.

Official
Featured
Local
TypeScript
Audiense Insights MCP Server

Audiense Insights MCP Server

Enables interaction with Audiense Insights accounts via the Model Context Protocol, facilitating the extraction and analysis of marketing insights and audience data including demographics, behavior, and influencer engagement.

Official
Featured
Local
TypeScript
VeyraX MCP

VeyraX MCP

Single MCP tool to connect all your favorite tools: Gmail, Calendar and 40 more.

Official
Featured
Local
graphlit-mcp-server

graphlit-mcp-server

The Model Context Protocol (MCP) Server enables integration between MCP clients and the Graphlit service. Ingest anything from Slack to Gmail to podcast feeds, in addition to web crawling, into a Graphlit project - and then retrieve relevant contents from the MCP client.

Official
Featured
TypeScript
Kagi MCP Server

Kagi MCP Server

An MCP server that integrates Kagi search capabilities with Claude AI, enabling Claude to perform real-time web searches when answering questions that require up-to-date information.

Official
Featured
Python
E2B

E2B

Using MCP to run code via e2b.

Official
Featured
Neon Database

Neon Database

MCP server for interacting with Neon Management API and databases

Official
Featured
Exa Search

Exa Search

A Model Context Protocol (MCP) server lets AI assistants like Claude use the Exa AI Search API for web searches. This setup allows AI models to get real-time web information in a safe and controlled way.

Official
Featured
Qdrant Server

Qdrant Server

This repository is an example of how to create a MCP server for Qdrant, a vector search engine.

Official
Featured