paymo-mcp
Verified Safeby feamster
Overview
Integrate Paymo time tracking, invoicing, and project management with Claude Desktop via Model Context Protocol.
Installation
python3 paymo_timesheet.py mcpSecurity Notes
The code follows good security practices by storing the API key in a separate, sensitive configuration file (`~/.mcp-auth/paymo/auth.json`) rather than hardcoding it or relying solely on a main config. It uses `yaml.safe_load` for parsing YAML input, mitigating YAML injection risks. API requests are made over HTTPS, and basic rate limiting handling with retries is implemented. Descriptions for CSV exports are cleaned of HTML tags and entities. No 'eval' or other obviously dangerous functions are used without strong justification. File system interactions are limited to config files, temporary files for YAML processing, and user-specified output directories for CSV exports, or an optional file_path for expense uploads, all within reasonable bounds for the application's functionality.
Similar Servers
tempo-mcp-server
Manages Tempo worklogs in Jira via a Model Context Protocol (MCP) server, allowing time tracking and worklog operations through MCP-compatible clients.
datadog-mcp
Provides Datadog monitoring and management capabilities as a Model Context Protocol (MCP) server for Claude Desktop and other MCP clients.
harvest-mcp-server
Provides a Model Context Protocol (MCP) server for seamless integration with the Harvest time tracking API, enabling AI clients to manage time entries, projects, clients, users, expenses, invoices, estimates, and reports.
unified-thinking
A Model Context Protocol (MCP) server that consolidates multiple cognitive thinking patterns into a single Go-based implementation with 85 specialized reasoning tools for enhanced problem-solving and AI integration.