attio-mcp-server
Verified Safeby kesslerio
Overview
Edge-compatible core library and server for integrating with the Attio CRM API, providing a standardized interface for tool definitions, HTTP client, and data manipulation across various runtime environments. It simplifies CRM interactions for AI agents and other applications.
Installation
node dist/cli.jsEnvironment Variables
- ATTIO_API_KEY
- ATTIO_ACCESS_TOKEN
- ATTIO_API_BASE_URL
- NODE_ENV
- E2E_MODE
- USE_MOCK_DATA
- OFFLINE_MODE
- VERBOSE_TESTS
- PERFORMANCE_TRACKING
- PERF_MAX_METRICS
- PERF_BUDGET_NOT_FOUND
- PERF_BUDGET_SEARCH
- PERF_BUDGET_CREATE
- PERF_BUDGET_UPDATE
- PERF_BUDGET_DELETE
- PERF_BUDGET_BATCH_SMALL
- PERF_BUDGET_BATCH_LARGE
- PERF_BUDGET_DEFAULT
- SEARCH_CACHE_TTL_MS
- SEARCH_CACHE_MAX
- SEARCH_FETCH_MULTIPLIER
- SEARCH_FETCH_MIN
- SEARCH_FAST_PATH_LIMIT
- SEARCH_DEFAULT_LIMIT
- DEFAULT_PHONE_COUNTRY
- MCP_LOG_LEVEL
- ATTIO_MCP_TOOL_MODE
- DISABLE_UNIVERSAL_TOOLS
- WORKSPACE_API_UUID
- TEST_LIST_ID
- TEST_COMPANY_ID
- TEST_PERSON_ID
- ATTIO_VALID_DEAL_STAGES
- ATTIO_DEAL_PIPELINE_STAGES
- EMAIL_VALIDATION_MODE
Security Notes
The codebase demonstrates a strong focus on security. It uses environment variables for sensitive API keys (`ATTIO_API_KEY`, `ATTIO_ACCESS_TOKEN`), implements comprehensive input validation (JSON schema, UUID, email, phone number formats) across various entry points, and sanitizes error messages and log payloads to prevent PII/sensitive data leakage. It leverages `fast-safe-stringify` to mitigate circular reference issues in JSON processing, and includes safeguards like batch size and payload validation to protect against Denial-of-Service (DoS) attacks. Custom error handling enhances robustness. No direct `eval` calls or obfuscation were observed. A full supply chain audit of all dependencies would be required for a perfect score, but within the provided source, practices are excellent.
Similar Servers
lunar
A programmable API gateway/proxy designed to intercept, analyze, and manage HTTP traffic. It enforces policies such as rate limiting, caching, retries, authentication, and dynamic routing based on configurable 'flows'. It also provides observability features like HAR collection, custom metrics, and AI token counting, operating within a distributed environment and communicating with a central 'Lunar Hub'.
mockloop-mcp
Provides a comprehensive platform for generating and managing mock API servers with AI-driven test generation, scenario management, proxy capabilities, and robust monitoring and auditing features.
AI-Productivity-Series-Requirement-Engineering-Vibes
CoTREx is an Agentic Requirements Engineering (ARE) system that leverages AI to automate and enhance various aspects of software development, including requirements analysis, test case generation, bug analysis, and documentation research within Azure DevOps.
method-crm-mcp
Enables LLMs to interact with Method CRM data for comprehensive management of tables, files, user information, event-driven automations, and API keys.