asaas-mcp-server
Verified Safeby pcontezini
Overview
This server acts as an MCP (Model Context Protocol) intermediary, dynamically generating tools from the Asaas OpenAPI specification to enable LLMs to interact with the Asaas financial API via STDIO/JSON-RPC.
Installation
npm run devEnvironment Variables
- ASAAS_API_KEY
- SANDBOX_API_KEY
- ASAAS_ENV
- ASAAS_BASE_URL
- ASAAS_TIMEOUT_MS
- ASAAS_RETRY_ATTEMPTS
- ASAAS_RETRY_BACKOFF_MS
- ASAAS_RETRY_MAX_BACKOFF_MS
- ASAAS_SPEC_PATH
- ASAAS_SPEC_CACHE_ONLY
- ASAAS_LOG
- ASAAS_LOG_FILE
- ASAAS_TOOL_LIMIT
- ASAAS_TOOL_FILTER
- ASAAS_SCHEMA_MINIMAL
- ASAAS_LSP_FRAMING
- API_KEY
- DEBUG
Security Notes
The server primarily relies on environment variables for sensitive data like API keys, which is a good practice. It explicitly checks for the presence of an API key. HTTP requests are made over HTTPS, and basic retry logic for rate limits/network errors is included. Path parameters are URL-encoded, preventing path traversal. Logging can be directed to a file but is carefully handled to prevent crashes. There are no obvious signs of eval() usage or code obfuscation. The server acts as a proxy, so its security profile is largely dependent on the underlying Asaas API's security. Input schemas for tools are derived from the OpenAPI spec, providing a level of input validation.
Similar Servers
mcp-openapi-server
A Model Context Protocol (MCP) server that exposes OpenAPI endpoints as MCP tools, along with optional support for MCP prompts and resources, enabling Large Language Models to interact with REST APIs.
mcp-server-nodejs-api-docs
Provides up-to-date Node.js API documentation and release schedule information as a service via the Model Context Protocol.
openapi-mcp-server
Converts OpenAPI specifications into Model Context Protocol (MCP) tools, enabling AI assistants to interact with APIs.
MCP-Council
Automates the conversion of REST APIs into AI-powered MCP (Model Context Protocol) servers, enabling seamless integration of APIs with AI assistants.