cli
mcpgod (MCPGod) is an oclif-based Node/TypeScript CLI for managing Model Context Protocol (MCP) servers. It helps add/remove/list MCP servers per client, discover tools exposed by MCP servers, run MCP servers, and call specific tools from the command line. It also supports per-client tool allow/block permissions and logs server runs to a local logs directory.
Score Breakdown
⚙ Agent Friendliness
🔒 Security
Security posture is mostly about local execution: mcpgod is a CLI that runs/inspects MCP servers and writes logs to a local directory. No TLS/network transport is described (likely not applicable for a CLI). No runtime auth model is documented; permissions are described at the tool level per client but implementation details and enforcement guarantees are not provided. Dependency hygiene is unknown; dependencies listed include common libraries (sdk, oclif, winston, zod), but no vulnerability/CVE or pinning details are provided.
⚡ Reliability
Best When
You want a local developer/operator tool to orchestrate MCP servers and tool calls from your terminal across Windows/macOS/Linux.
Avoid When
You need a documented, network-facing API (REST/GraphQL/gRPC) or managed authentication/authorization handled by a remote service.
Use Cases
- • Configure and manage MCP servers for different downstream clients (e.g., Claude)
- • Enumerate tools exposed by MCP servers for integration/testing
- • Run MCP servers locally and inspect outputs for debugging
- • Invoke MCP tool calls directly from the terminal with key=value parameters
- • Apply tool-level permissions per client to limit what tools are available
Not For
- • Production SaaS/API use where a long-lived network service with REST endpoints is expected
- • Centralized enterprise governance with audited authn/authz and server-side enforcement (this appears primarily local CLI config)
- • Use cases requiring OAuth/SSO, managed cloud storage, or multi-tenant APIs
Interface
Authentication
No authentication mechanism for mcpgod itself is described. Authentication is implicitly about npm install/publishing only (NPM_TOKEN, GH secrets), not runtime access for a service.
Pricing
Open-source CLI distributed via npm; no pricing details for usage are provided.
Agent Metadata
Known Gotchas
- ⚠ CLI-oriented interface: an agent must shell out to commands and parse stdout/stderr; structured machine-readable output format is not described.
- ⚠ No explicit retry/idempotency guarantees are documented for add/remove/run/tool operations.
- ⚠ Tool invocation uses positional/kv parameters; agents must format parameters correctly to avoid malformed calls.
- ⚠ Logging path is described, but log format and rotation/size limits are not documented.
Alternatives
Full Evaluation Report
Comprehensive deep-dive: security analysis, reliability audit, agent experience review, cost modeling, competitive positioning, and improvement roadmap for cli.
AI-powered analysis · PDF + markdown · Delivered within 30 minutes
Package Brief
Quick verdict, integration guide, cost projections, gotchas with workarounds, and alternatives comparison.
Delivered within 10 minutes
Score Monitoring
Get alerted when this package's AF, security, or reliability scores change significantly. Stay ahead of regressions.
Continuous monitoring
Scores are editorial opinions as of 2026-03-30.