vba-mcp-server
by AlexisTrouve
Overview
Serves as a Model Context Protocol (MCP) server for Claude, enabling extraction, analysis, injection, and automation of VBA code within Microsoft Office files (Excel, Word, Access).
Installation
python -m vba_mcp_pro.serverEnvironment Variables
- PYTHONPATH
Security Notes
The server fundamentally requires the user to enable 'Trust access to the VBA project object model' in Microsoft Office settings, which is a major security bypass, allowing external programs to programmatically access and modify VBA projects. This inherently makes the system highly vulnerable to malicious VBA code injection or execution. While the Pro version implements pre/post-validation (for ASCII and basic syntax) and automatic rollback, these do not mitigate the risk of executing intentionally malicious but syntactically valid VBA code. The HTTP/SSE transport, if used, creates an unauthenticated network endpoint, further increasing risk if exposed beyond a trusted local network. It is designed to perform privileged operations, and security largely depends on the user's discretion and the source of the VBA code.
Similar Servers
mcp-server-code-execution-mode
This server enables LLM agents to execute Python code in a highly secure, isolated container environment, facilitating complex multi-tool orchestration and data analysis with minimal LLM context token usage.
spreadsheet-mcp
Analyze and edit spreadsheet files programmatically, designed for token-efficient interaction by LLM agents, focusing on structured data access, modification, formula analysis, and optional VBA inspection.
cov-loupe
Provides an MCP server, CLI, and Ruby library for analyzing SimpleCov test coverage data, primarily to enable AI assistants to query and report on codebase coverage.
ultrascript-tools-mcp
An expert developer tool for comprehensive code analysis, semantic search, refactoring, code modification, and automated documentation. It leverages AI and specialized runtime environments (Node.js/Bun) for high performance, featuring deep Git integration for branch-aware indexing and merge conflict resolution across multiple programming languages.