A Model Context Protocol (MCP) server that provides read-only access to Unix shell prompts via tmux. This enables AI assistants like Claude to safely observe terminal environments without executing commands.
- ๐ Read-only access - Observe terminal content without execution risks
- ๐ฅ๏ธ tmux integration - Leverages tmux's session management for reliable terminal access
- ๐ Scrollback history - Access historical terminal output
- ๐ Terminal metadata - Retrieve dimensions, current path, and session info
- ๐ MCP protocol - Standard protocol for AI assistant integration
Will you be adding GNU screen support?
Not in the immediate future. Although screen can be used for pair programming/debugging, it does not have any mechanism to enforce read only mode.
Since the read-only safeguard is the main difference between this MCP and other MCPs with ssh functionality , screen will need to support read-only sessions before it can be integrated
Will you be adding zellij support?
In the future, possibly. zellij-org/zellij#4348 needs to be implemented first, to ensure zellij has read-only functionality, just like tmux
- tmux (for terminal session management)
- (Optional) Go 1.21 or later (only needed for building from source)
brew tap conallob/tap
brew install mcp-ssh-wingmanDownload pre-built binaries from the releases page.
Available for:
- macOS (arm64/amd64)
- Linux (arm64/amd64)
- FreeBSD (arm64/amd64)
See DEVELOPMENT.md for build instructions.
# Start with default tmux session name (mcp-wingman)
mcp-ssh-wingman
# Use a custom tmux session name
mcp-ssh-wingman --session my-session
# Show version
mcp-ssh-wingman --versionAdd the server to your Claude Desktop configuration file:
macOS: ~/Library/Application Support/Claude/claude_desktop_config.json
Linux: ~/.config/Claude/claude_desktop_config.json
{
"mcpServers": {
"ssh-wingman": {
"command": "/usr/local/bin/mcp-ssh-wingman",
"args": ["--session", "mcp-wingman"]
}
}
}Restart Claude Desktop after updating the configuration.
Add this section to your Gemini config file (~/.gemini/settings.json):
{
"mcpServers": {
"ssh-wingman": {
"command": "/usr/local/bin/mcp-ssh-wingman",
"args": ["--session", "mcp-wingman"]
}
}
}Run the gemini CLI and make sure it can see the MCP server:
> /mcp list
Configured MCP servers:
๐ข ssh-wingman - Ready (3 tools)
Tools:
- get_terminal_info
- read_scrollback
- read_terminalTest with a prompt:
> using ssh-wingman MCP Server, what do you see in my session?
โญโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโฎ
โ ? read_terminal (ssh-wingman MCP Server) {} โ โ
โ โ
โ MCP Server: ssh-wingman โ
โ Tool: read_terminal โ
โ โ
โ Allow execution of MCP tool "read_terminal" from server "ssh-wingmaโฆ โ
โ โ
โ โ 1. Yes, allow once โ
โ 2. Yes, always allow tool "read_terminal" from server "ssh-wingmaโฆ โ
โ 3. Yes, always allow all tools from server "ssh-wingman" โ
โ 4. No, suggest changes (esc) โ
โ โ
โฐโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโฏ
โ Waiting for user confirmation...You might as well select option 3 there.
The server exposes the following MCP tools:
Read the current terminal content from the tmux session.
Example:
{
"name": "read_terminal"
}Read scrollback history from the tmux session.
Parameters:
lines(number): Number of lines to retrieve from scrollback buffer
Example:
{
"name": "read_scrollback",
"arguments": {
"lines": 100
}
}Get information about the terminal (dimensions, current path, etc.).
Example:
{
"name": "get_terminal_info"
}Current terminal content as a text resource.
Terminal metadata and information.
The server creates or attaches to a tmux session and uses tmux's built-in commands to safely read terminal content:
- Session Management: Creates/attaches to a detached tmux session
- Content Capture: Uses
tmux capture-paneto read visible content - Read-Only: Never sends keystrokes or commands to the session
- MCP Protocol: Exposes terminal content via standard MCP tools and resources
This approach ensures that the AI assistant can observe terminal activity without any risk of accidentally executing commands or modifying the terminal state.
- Monitor long-running processes and build outputs
- Observe terminal-based application behavior
- Debug issues by reviewing terminal history
- Provide context-aware assistance based on current terminal state
MCP SSH Wingman is designed with security in mind:
- Read-only: The server never sends input to the terminal
- Local access: Operates on local tmux sessions only
- No command execution: Cannot execute shell commands
- Isolated sessions: Each session is independent and sandboxed by tmux
- Ensure tmux is installed:
tmux -V - Check that the binary has execute permissions:
chmod +x /usr/local/bin/mcp-ssh-wingman
- Verify the path to the binary in your configuration file
- Check Claude Desktop logs for error messages
- Ensure the binary runs successfully from command line first
- Verify the tmux session exists:
tmux list-sessions - Ensure the session name matches the one specified in configuration
- Check that the tmux session has active panes
Contributions are welcome! Please feel free to submit issues or pull requests.
For development guidelines, see DEVELOPMENT.md.