mcp
Verified Safeby salesforcecli
Overview
Facilitating LLM interaction with Salesforce orgs to read, manage, and operate Salesforce resources, including specialized tasks like detecting and fixing Apex performance antipatterns, managing DevOps workflows, and performing code analysis.
Installation
npx -y @salesforce/mcp --orgs DEFAULT_TARGET_ORG --toolsets orgs,metadata,data,users --tools run_apex_test --allow-non-ga-toolsEnvironment Variables
- SF_USE_GENERIC_UNIX_KEYCHAIN
- SF_MCP_SERVER_BIN
- MCP_SERVER_REQUEST_TIMEOUT
- DEFAULT_TARGET_ORG
- DEFAULT_TARGET_DEV_HUB
Security Notes
The server employs extensive input validation using Zod schemas and robust path sanitization to prevent directory traversal attacks. Salesforce authentication is handled securely via the `@salesforce/core` library. Git commands are executed using `execSync` but with controlled arguments and specified working directories, mitigating some, though not all, inherent risks of `execSync`. Telemetry is disabled by default for test runs, enhancing privacy. No hardcoded secrets were identified.
Similar Servers
mcp
Facilitates interaction and management of Oracle Cloud Infrastructure (OCI) and MySQL resources through a suite of Model Context Protocol (MCP) servers, including pricing, database operations, AI/ML features, logging, networking, compute, identity, and object storage.
mcp-k8s
A Kubernetes MCP (Model Control Protocol) server that enables natural language interaction with Kubernetes clusters and Helm for resource and release management.
mcp-servers
An MCP server for fetching, cleaning, and intelligently extracting content from web pages, designed for agent-building frameworks.
1xn-vmcp
An open-source platform for composing, customizing, and extending multiple Model Context Protocol (MCP) servers into a single logical, virtual MCP server, enabling fine-grained context engineering for AI workflows and agents.