MCP-Nest

NestJS module for building MCP servers that expose AI tools, resources, and prompts. Provides decorator-based API (@Tool, @Resource, @Prompt) with full NestJS dependency injection, multiple transport support (HTTP+SSE, Streamable HTTP, STDIO), Zod schema validation, per-tool authorization, and an optional built-in OAuth authorization server.

Evaluated Mar 08, 2026 (0d ago) vcurrent
Homepage ↗ Repo ↗ Developer Tools mcp nestjs typescript model-context-protocol framework tools resources prompts oauth zod
⚙ Agent Friendliness
72
/ 100
Can an agent use this?
🔒 Security
78
/ 100
Is it safe for agents?
⚡ Reliability
62
/ 100
Does it work consistently?

Score Breakdown

⚙ Agent Friendliness

MCP Quality
82
Documentation
80
Error Messages
70
Auth Simplicity
65
Rate Limits
55

🔒 Security

TLS Enforcement
75
Auth Strength
80
Scope Granularity
82
Dep. Hygiene
78
Secret Handling
75

Enterprise-grade auth with OAuth, per-tool authorization, and external IDP integration. Built-in auth server is beta. Zod validation prevents injection. NestJS security patterns apply.

⚡ Reliability

Uptime/SLA
55
Version Stability
70
Breaking Changes
60
Error Recovery
65
AF Security Reliability

Best When

You already use NestJS and want to expose your services as MCP tools with enterprise-grade auth, validation, and dependency injection.

Avoid When

You don't use NestJS, need a lightweight MCP server, or work in Python/Go ecosystems.

Use Cases

  • Building MCP servers within existing NestJS applications using familiar decorators and DI
  • Exposing enterprise services as AI-callable tools with per-tool authorization and OAuth
  • Creating MCP-compatible resources and prompt templates for LLM consumption
  • Integrating MCP protocol into TypeScript/NestJS microservice architectures

Not For

  • Non-NestJS/non-TypeScript projects
  • Simple single-tool MCP servers where NestJS overhead is unnecessary
  • Python or Go MCP server implementations

Interface

REST API
No
GraphQL
No
gRPC
No
MCP Server
Yes
SDK
Yes
Webhooks
No

Authentication

Methods: oauth2 api_key
OAuth: Yes Scopes: Yes

Guard-based authentication with OAuth support. Built-in authorization server (beta) using TypeORM. External authorization server integration compatible with Keycloak and Auth0. Per-tool authorization granularity.

Pricing

Model: free
Free tier: Yes
Requires CC: No

Free open-source NestJS module.

Agent Metadata

Idempotent
Unknown
Retry Guidance
Not documented

Known Gotchas

  • Requires NestJS ecosystem — not usable outside TypeScript/NestJS applications
  • Built-in authorization server is in beta — not production-ready
  • Zod v4 required — may conflict with projects using Zod v3
  • Multiple transport modes (SSE, Streamable HTTP, STDIO) need explicit configuration
  • Interactive elicitation feature may not work with all MCP clients
  • TypeORM optional dependency adds complexity if using built-in auth server

Alternatives

fastmcp modelcontextprotocol-sdk mcp-python-sdk

Full Evaluation Report

Comprehensive deep-dive: security analysis, reliability audit, agent experience review, cost modeling, competitive positioning, and improvement roadmap for MCP-Nest.

AI-powered analysis · PDF + markdown · Delivered within 30 minutes

$99

Package Brief

Quick verdict, integration guide, cost projections, gotchas with workarounds, and alternatives comparison.

Delivered within 10 minutes

$3

Score Monitoring

Get alerted when this package's AF, security, or reliability scores change significantly. Stay ahead of regressions.

Continuous monitoring

$3/mo
API endpoint ↗ Agent guide ↗ Report inaccuracy

Scores are editorial opinions as of 2026-03-08.

6961
Packages Evaluated
25669
Need Evaluation
173
Need Re-evaluation
Community Powered