{"id":"aqualia-alph","name":"Alph","homepage":"https://askhuman.net","repo_url":"https://github.com/Aqualia/Alph","category":"devtools","subcategories":[],"tags":["mcp","cli","configuration","agent-tools","automation","typescript","atomic-writes","rollback"],"what_it_does":"Alph (@aqualia/alph-cli) is a local-first CLI that configures Model Context Protocol (MCP) servers for multiple AI coding agents by detecting agents, validating configuration, performing atomic file writes with timestamped backups, and supporting rollback. It supports MCP transports (HTTP, SSE, and local STDIO) and can run in interactive or non-interactive modes, with a dry-run option to preview changes.","use_cases":["Configure multiple AI agents (Cursor, Gemini CLI, Claude Code, Windsurf, Codex CLI, Kiro) to connect to the same MCP server","Avoid manual editing of agent-specific MCP config files with backups and atomic writes","Roll back configuration changes automatically when validation fails","Use HTTP/SSE/STDIO MCP transports with per-agent configuration","Rapid local setup for teams or dev environments"],"not_for":["Managing enterprise/centralized configuration at scale across fleets (it is local-first CLI tooling)","Providing a network API for programmatic integrations as a service (it primarily modifies local config files)","Strong assurance of safety for untrusted MCP servers (it configures endpoints; it does not inherently sandbox the server)","Use cases requiring documented, fine-grained policy controls for each agent beyond what the CLI supports"],"best_when":"You want to quickly and safely wire one or more MCP server endpoints (local or remote) into several developer tools without hand-editing fragile JSON/config files.","avoid_when":"You need a stable, documented REST/GraphQL API with guaranteed idempotent semantics for every operation; you primarily need a hosted service rather than local CLI configuration.","alternatives":["Manual configuration of each agent’s MCP settings files","Agent-specific MCP setup wizards/tools (if available for each agent)","Generic configuration management approaches (e.g., templating + filesystem atomic writes) tailored per agent"],"af_score":56.8,"security_score":54.2,"reliability_score":41.2,"package_type":"mcp_server","discovery_source":["github"],"priority":"high","status":"evaluated","version_evaluated":null,"last_evaluated":"2026-03-30T15:18:11.940865+00:00","interface":{"has_rest_api":false,"has_graphql":false,"has_grpc":false,"has_mcp_server":false,"mcp_server_url":null,"has_sdk":false,"sdk_languages":[],"openapi_spec_url":null,"webhooks":false},"auth":{"methods":["Bearer token via --bearer (used to set Authorization header / headers for HTTP/SSE transports)"],"oauth":false,"scopes":false,"notes":"Authentication is supplied as a bearer token/headers at configuration time; the README does not describe any fine-grained authorization model or scope selection beyond passing a token."},"pricing":{"model":null,"free_tier_exists":false,"free_tier_limits":null,"paid_tiers":[],"requires_credit_card":false,"estimated_workload_costs":null,"notes":"No pricing info in provided content; appears to be an open-source CLI distributed via npm."},"requirements":{"requires_signup":false,"requires_credit_card":false,"domain_verification":false,"data_residency":[],"compliance":[],"min_contract":null},"agent_readiness":{"af_score":56.8,"security_score":54.2,"reliability_score":41.2,"mcp_server_quality":60.0,"documentation_accuracy":70.0,"error_message_quality":0.0,"error_message_notes":null,"auth_complexity":85.0,"rate_limit_clarity":0.0,"tls_enforcement":75.0,"auth_strength":60.0,"scope_granularity":10.0,"dependency_hygiene":55.0,"secret_handling":70.0,"security_notes":"README claims secrets are redacted in output and that the tool is local-first with no network traffic during configure/remove. The CLI takes bearer tokens to populate headers for HTTP/SSE transports, but provided content does not document whether tokens are persisted on disk, how files are permissioned, or whether stdout/stderr redaction is comprehensive. Dependency-level security cannot be verified from provided manifest alone.","uptime_documented":0.0,"version_stability":40.0,"breaking_changes_history":40.0,"error_recovery":85.0,"idempotency_support":"true","idempotency_notes":"The README describes atomic writes, validation, timestamped backups, and rollback; however, it does not explicitly claim idempotency per operation. It likely behaves deterministically for the same inputs/config state.","pagination_style":"none","retry_guidance_documented":false,"known_agent_gotchas":["Codex CLI on Windows is not supported (process spawning/env var handling upstream issue).","If agents are not detected, configuration may need to be placed in the expected default locations."]}}