insta-mcp
Verified Safeby arjun1194
Overview
An MCP server enabling LLMs to interact with Instagram for account management, social graph analysis, content creation, discovery, and direct messaging.
Installation
node dist/index.jsEnvironment Variables
- INSTAGRAM_USERNAME
- INSTAGRAM_PASSWORD
- INSTA_DATA_DIR
Security Notes
This project utilizes the `instagram-private-api`, which is an unofficial API client. Use of this client carries inherent risks, including potential violations of Instagram's Terms of Service and the risk of account suspensions or permanent bans. The server attempts to mitigate some risks with built-in rate limiting and robust error handling for Instagram's security challenges (e.g., checkpoints, 2FA, spam blocks). Credentials can be stored in `data/credentials.json`, which is less secure than environment variables if the file is not properly protected. The `uploadAlbum` tool fetches image/video URLs from external sources, which could lead to SSRF or fetching malicious content if LLM input is not carefully constrained. Media upload tools (`upload_photo`, `upload_video`, `upload_reel`) require absolute file paths, posing a risk if an attacker can control these paths to access arbitrary files on the server's filesystem.
Similar Servers
github-mcp-server
The GitHub MCP Server enables AI agents, assistants, and chatbots to interact with GitHub's platform for repository management, issue/PR automation, CI/CD intelligence, code analysis, and team collaboration through natural language.
linkedin-mcp-server
Enables AI assistants to connect to LinkedIn for accessing profiles, companies, job searches, and job details via web scraping.
ig-mcp
Integrate AI applications with Instagram Business accounts to manage profiles, media, insights, and direct messages.
2ly
Skilder is an infrastructure layer for AI agent tooling, providing a private tool registry and embedded runtimes for integrating with various agent frameworks and custom tools.