crm_mcp_server
Verified Safeby lokv010
Overview
Automates customer relationship management, appointment scheduling, and email notifications by integrating Google Sheets, Calendly, and SendGrid via the Model Context Protocol (MCP).
Installation
npm run start:mcpEnvironment Variables
- GOOGLE_SHEETS_CREDENTIALS_PATH
- GOOGLE_SHEETS_SPREADSHEET_ID
- CALENDLY_API_TOKEN
- CALENDLY_ORGANIZATION_URI
- SENDGRID_API_KEY
- SENDGRID_FROM_EMAIL
- SENDGRID_FROM_NAME
- REST_API_PORT
- REST_API_KEY
- MCP_PORT
- MCP_SERVER_TYPE
Security Notes
The server correctly uses environment variables for sensitive credentials and includes security headers (helmet) and rate limiting for the REST API. It implements origin validation for the MCP endpoint to mitigate DNS rebinding, which is good. However, the `cors()` middleware used for the REST API endpoints has a broad `origin: '*'`, which is a security risk in production for these endpoints and should be restricted to known client origins. Additionally, the Google Service Account is advised to have an 'Editor' role which is broad; a more granular custom role limited to Sheets API permissions would enhance security.
Similar Servers
google-calendar-streamable-mcp-server
Manages Google Calendar events, checks availability, and schedules meetings via the Model Context Protocol (MCP) using OAuth 2.1.
mcp-gsheets
A Model Context Protocol (MCP) server for Google Sheets API integration, enabling reading, writing, and managing Google Sheets documents directly from MCP clients like Claude Code, Claude Desktop, or Cursor.
mcp-server-apple-events
Integrate Apple Reminders and Calendar with MCP clients for comprehensive management and automation on macOS.
gcal-mcp-server
Provides intelligent Google Calendar integration, event management, and scheduling capabilities through a standardized Model Context Protocol (MCP) interface for AI assistants.