Harvest

Combined time tracking and invoicing REST API for logging time entries, managing projects/clients/tasks, generating invoices from time data, and processing payments.

Evaluated Mar 06, 2026 (0d ago) vcurrent
Homepage ↗ Repo ↗ Productivity harvest time-tracking invoicing billing freelancer rest-api oauth
⚙ Agent Friendliness
72
/ 100
Can an agent use this?
🔒 Security
83
/ 100
Is it safe for agents?
⚡ Reliability
85
/ 100
Does it work consistently?

Score Breakdown

⚙ Agent Friendliness

MCP Quality
--
Documentation
88
Error Messages
82
Auth Simplicity
80
Rate Limits
78

🔒 Security

TLS Enforcement
100
Auth Strength
80
Scope Granularity
75
Dep. Hygiene
80
Secret Handling
78

OAuth2 and Personal Access Tokens. SOC2 Type II. Time and billing data — sensitive for many businesses. Token-based auth with account-level scope. Webhook HMAC validation.

⚡ Reliability

Uptime/SLA
88
Version Stability
85
Breaking Changes
85
Error Recovery
82
AF Security Reliability

Best When

You need combined time tracking AND invoicing in a single API, particularly for freelancers or agencies that bill clients based on tracked hours.

Avoid When

You only need time tracking without invoicing — Toggl is simpler and cheaper for that use case.

Use Cases

  • Automating invoice generation by pulling time entries and creating invoices via API
  • Logging time entries from agent task completions into project billing records
  • Retrieving project budget and time-to-completion data for agent reporting
  • Syncing time data to accounting systems (QuickBooks, Xero) via Harvest's data
  • Building custom dashboards over Harvest time and budget data

Not For

  • Simple time tracking without invoicing (Toggl is cheaper and simpler)
  • Enterprise resource planning or complex project management
  • High-volume time entry imports (rate limits apply)
  • Applications requiring real-time time tracking push notifications

Interface

REST API
Yes
GraphQL
No
gRPC
No
MCP Server
No
SDK
Yes
Webhooks
No
OpenAPI Spec ↗

Authentication

Methods: personal_access_token oauth2
OAuth: Yes Scopes: No

Personal Access Token for own account automation. OAuth2 for third-party integrations to access user accounts. Harvest-Account-Id header required alongside auth token for multi-account setups.

Pricing

Model: subscription
Free tier: Yes
Requires CC: No

Simple, flat per-user pricing. Free tier is too limited for real use. Pro at $12/user/month includes everything. Good value for agencies that need time + invoicing in one tool.

Agent Metadata

Pagination
page
Idempotent
Partial
Retry Guidance
Documented

Known Gotchas

  • Harvest-Account-Id header required for all requests — easy to forget if building multi-account integration
  • Rate limit (100 req/15s) is generous for most use cases but can be hit in batch operations
  • Time entries require both project_id and task_id — must look up both before creating entry
  • Invoice creation from time entries is a multi-step process: select entries → create invoice → finalize
  • OAuth tokens expire and require refresh — implement token refresh before building OAuth integrations
  • No webhooks — agents must poll for new time entries or invoice status changes
  • Pagination uses page-based approach with per_page limit (up to 100) — must handle multiple pages for large datasets

Alternatives

toggl-api

Full Evaluation Report

Detailed scoring breakdown, competitive positioning, security analysis, and improvement recommendations for Harvest.

$99
API endpoint ↗ Agent guide ↗ Report inaccuracy

Scores are editorial opinions as of 2026-03-06.

5202
Packages Evaluated
26151
Need Evaluation
173
Need Re-evaluation
Community Powered