loading…
Browse all
Devtools
FreeProduction-grade MCP server that gives AI agents safe access to your local dev environment: filesystem, databases, processes, and OpenAPI specs.
About
Production-grade MCP server that gives AI agents safe access to your local dev environment: filesystem, databases, processes, and OpenAPI specs.
README
npm version CI License: MIT Node.js
AI-native developer tools via Model Context Protocol. A production-grade MCP server that gives AI agents (Claude, Cursor, Copilot, Continue, ...) safe, scoped access to your local development environment.
Why
The MCP ecosystem is full of single-purpose tutorials and vendor-locked adapters. There is no well-maintained, multi-tool, framework-agnostic, production-quality MCP package for everyday developer tooling.
mcp-devtools fills that gap with 14 tools, 3 MCP Resources,
4 MCP Prompts, a Plugin API, two transport modes (stdio + HTTP
with auth), and an audit log — built on patterns refined in production
at DailyBot.
Quick start
stdio (default)
npx @oscarmarin/mcp-devtools
Add it to Claude Desktop (~/Library/Application Support/Claude/claude_desktop_config.json):
{
"mcpServers": {
"devtools": {
"command": "npx",
"args": ["-y", "@oscarmarin/mcp-devtools"]
}
}
}
Or Cursor (~/.cursor/mcp.json): same block.
HTTP transport
Create a mcp-devtools.json in your project root:
{
"transport": "http",
"port": 3333,
"auth": {
"token": "env:MCP_AUTH_TOKEN"
}
}
Then start the server:
npx @oscarmarin/mcp-devtools
The MCP endpoint will be available at http://localhost:3333.
Tools
| Group | Tools |
|---|---|
| Filesystem | read_file, write_file, list_directory, search_files, get_file_info |
| Database | query_db, list_tables, describe_table |
| Process | run_command, read_logs, get_env, list_processes |
| OpenAPI | parse_openapi, call_api |
Per-tool reference: docs/tools/.
MCP Resources
The server exposes read-only data via MCP Resources:
| URI | Description |
|---|---|
devtools://tools |
Catalog of all registered tools with schemas |
devtools://server-info |
Server version, transport, scope, tool count |
MCP Prompts
Curated prompt templates for common development workflows:
| Prompt | Description |
|---|---|
debug_error |
Systematically debug an error using mcp-devtools tools |
code_review |
Review a file for bugs, security issues, and code quality |
explore_codebase |
Explore and understand a project's structure and conventions |
refactor_function |
Refactor a function for readability, performance, or testability |
Plugin API
Extend mcp-devtools with custom tools — no fork required.
Config-based (load at startup):
{
"plugins": ["./my-tools.js", "@scope/mcp-plugin-foo"]
}
Each plugin module default-exports an array of tool definitions:
import { defineTool } from "@oscarmarin/mcp-devtools";
import { z } from "zod";
export default [
defineTool({
name: "my_tool",
description: "Does something useful",
inputSchema: z.object({ input: z.string() }),
handler: async (args, config) => ({
ok: true,
data: { result: args.input.toUpperCase() },
}),
}),
];
Configuration
Configuration is loaded by cosmiconfig
from mcp-devtools.json, .mcp-devtoolsrc, or the mcpDevtools key in
package.json. See mcp-devtools.example.json
and docs/configuration.md for the full schema.
Zero-config is supported: running npx @oscarmarin/mcp-devtools with no config uses
schema defaults (RNF-05).
Security
Four non-bypassable controls:
- Filesystem scope boundary. Every path is resolved to an absolute and
compared against
config.scope. Symlinks that escape scope throwSCOPE_VIOLATION. - Command allowlist.
run_commandonly executes binaries whose basename is inallowedCommands. Invocation usesspawn(file, args)(no shell), so shell-injection via the command argument is structurally impossible. - Database read-only mode. When
readOnly: true, all SQL is parsed andINSERT/UPDATE/DELETE/DROP/CREATE/GRANTare rejected. Queries run inBEGIN READ ONLY ... ROLLBACKon PostgreSQL. - HTTP Bearer auth. When
auth.tokenis configured, every HTTP request must includeAuthorization: Bearer <token>. Comparison usescrypto.timingSafeEqualto prevent timing attacks.
Additional safety measures:
- Audit log. Opt-in NDJSON log of every tool invocation with timing, sanitized inputs, and result status.
- Secret masking.
get_envautomatically masks values matching common secret patterns (SECRET,TOKEN,PASSWORD,KEY, etc.). - OpenAPI host restriction.
call_apionly sends requests to hosts listed in the spec'sserversarray. - Output capping. All tools cap their output to prevent context flooding (100KB for commands, 1MB for files, 200 rows for queries).
Contributing
git clone https://github.com/marin1321/mcp-devtools.git
cd mcp-devtools
npm install
npm run dev # tsup --watch
npm run test # vitest
npm run typecheck # tsc --noEmit
npm run lint # eslint .
See CONTRIBUTING.md for the full workflow and CODE_OF_CONDUCT.md for community guidelines.
License
MIT © Oscar Humberto Marin Molina — oscarmarindev.com
How to install
Add this to claude_desktop_config.json and restart Claude Desktop.
{
"mcpServers": {
"mcp-devtools": {
"command": "npx",
"args": []
}
}
}
