mcp
by mondaycom
Overview
Enables AI agents to interact with the monday.com platform by providing access to its API through a Model Context Protocol (MCP) server, supporting various operations from item management to dynamic GraphQL queries and code execution.
Installation
npx @mondaydotcomorg/monday-api-mcp@latest -t abcd123Environment Variables
- monday_token
Security Notes
The server exposes highly privileged tools to AI agents. Specifically, the 'execute_code' tool in ATP (Agent Tool Protocol) mode allows AI agents to execute arbitrary JavaScript code dynamically. This constitutes a remote code execution (RCE) vulnerability if the AI agent or the code generated by it is not fully trusted or the server environment is not adequately sandboxed and isolated. Additionally, the 'all_monday_api' tool (Dynamic API Tools) allows construction and execution of arbitrary GraphQL queries and mutations against the monday.com API, granting extensive read/write access. The server relies on a monday.com API token, which, if compromised, could lead to unauthorized access and manipulation of the user's monday.com account. Users must exercise extreme caution when deploying this server, especially when enabling ATP or Dynamic API tools.
Similar Servers
apify-mcp-server
Facilitates AI agents to discover, interact with, and extract data from the web using Apify Actors and platform services.
mcp
A collection of Model Context Protocol (MCP) servers designed to connect IBM products and other services to AI agents for enhanced capabilities across automation, data, development, infrastructure, observability, networking, research, and security.
mcp-reference-server
The Commerce Operations Foundation MCP Server standardizes the interface between AI agents (like Claude) and fulfillment systems, enabling AI to manage e-commerce operations like order capture, inventory, and fulfillment via plug-and-play adapters.
azure-devops-mcp-server
Exposes Azure DevOps operations as tools for AI assistants, enabling AI agents to automate tasks like creating work items, managing pull requests, and queuing builds.