mcp

Provides an MCP (Model Context Protocol) server implementation for Frappe (Werkzeug/WSGI) apps, exposing registered Python functions as MCP tools over Streamable HTTP via a Frappe REST endpoint.

Evaluated Mar 30, 2026 (22d ago)

Repo ↗ Ai Ml mcp frappe-framework python wsgi tooling llm werkzeug json-rpc

⚙ Agent Friendliness

/ 100

Can an agent use this?

🔒 Security

/ 100

Is it safe for agents?

⚡ Reliability

/ 100

Does it work consistently?

Score Breakdown

⚙ Agent Friendliness

MCP Quality

Documentation

Error Messages

Auth Simplicity

Rate Limits

🔒 Security

TLS Enforcement

Auth Strength

Scope Granularity

Dep. Hygiene

Secret Handling

TLS enforcement is not explicitly stated in the README; security depends on the surrounding Frappe deployment configuration. Auth guidance references OAuth2 integration with MCP Inspector and includes an allow_guests bypass (warned against). No details are provided about least-privilege scopes, secret storage, or structured error handling behavior. Project uses Werkzeug/WSGI and includes security-related option xss_safe for response sanitization.

⚡ Reliability

Uptime/SLA

Version Stability

Breaking Changes

Error Recovery

Best When

You have a Frappe Framework app and want to serve MCP tools over Streamable HTTP without migrating to an async/ASGI server.

Avoid When

You need tool streaming (SSE), resources/prompts support, or you cannot support/validate the experimental and potentially breaking behavior risk.

Use Cases

• Expose Frappe app capabilities (backend business logic) as MCP tools to LLM agents
• Build an MCP endpoint for tool execution against Frappe data/services
• Rapidly register typed, schema-driven tool functions via decorators and docstring/type inference

Not For

• Production use without validating stability and security for your specific setup (project is described as highly experimental)
• Use cases needing MCP resources/prompts/streaming/SSE or non-tool MCP features (currently tools-only)
• Integrations that require an ASGI-first stack without adapting to Werkzeug/WSGI

Interface

REST API

Yes

GraphQL

gRPC

MCP Server

Yes ↗

SDK

Webhooks

Authentication

Methods: OAuth2 (via Frappe OAuth2 updates) OAuth Client registration on Frappe instance for MCP client

OAuth: Yes Scopes: No

Auth is described at a high level (Frappe OAuth2 support + MCP Inspector quick OAuth). A guest-bypass flag exists, but it is explicitly warned against for production.

Pricing

Free tier: No

Requires CC: No

Open-source library; no pricing model described.

Agent Metadata

Pagination

none

Idempotent

False

Retry Guidance

Not documented

Known Gotchas

⚠ Project is explicitly 'highly experimental' with likely bugs and breaking changes without notice
⚠ Tools-only support: resources/prompts/streaming not currently implemented
⚠ If @mcp.register() handler does not import tool modules, tools will not be loaded
⚠ Setting allow_guests=True bypasses auth (dangerous for production)
⚠ Authentication setup depends on Frappe version having OAuth2 updates; otherwise additional OAuth client registration is required

Alternatives

Official Python MCP SDK (ASGI-oriented) Run MCP server as a separate standalone service (FastAPI/ASGI or other framework) and integrate with Frappe via internal RPC/HTTP Build MCP capability using a generic Werkzeug-based JSON-RPC/HTTP adapter if you can map tool schemas yourself

Full Evaluation Report

Comprehensive deep-dive: security analysis, reliability audit, agent experience review, cost modeling, competitive positioning, and improvement roadmap for mcp.

AI-powered analysis · PDF + markdown · Delivered within 30 minutes

$99

Package Brief

Quick verdict, integration guide, cost projections, gotchas with workarounds, and alternatives comparison.

Delivered within 10 minutes

Score Monitoring

Get alerted when this package's AF, security, or reliability scores change significantly. Stay ahead of regressions.

Continuous monitoring

$3/mo

API endpoint ↗ Agent guide ↗ Report inaccuracy

Scores are editorial opinions as of 2026-03-30.