{"id":"fbeawels-excel-mcp-server","name":"excel-mcp-server","homepage":null,"repo_url":"https://github.com/fbeawels/excel-mcp-server","category":"ai-ml","subcategories":[],"tags":["mcp","excel","spreadsheet","file-io","stdio-transport","sse","windows","nodejs"],"what_it_does":"Provides an MCP server (stdio by default; optional SSE HTTP transport) for reading and writing Microsoft Excel spreadsheets (xlsx/xlsm/xltx/xltm), including reading/writing cell text and formulas, and (on Windows) capturing sheet ranges as images.","use_cases":["Extracting and paging through data from Excel worksheets via an agent","Programmatically updating specific ranges in an Excel workbook (values and formulas)","Reading formulas from Excel for downstream analysis or transformation","Capturing worksheet images on Windows for visual QA/workflows"],"not_for":["Running with untrusted files from unknown sources in a high-security environment (Excel parsing/writing can be risky)","Complex spreadsheet operations beyond simple range reads/writes (e.g., full recalculation/sophisticated Excel semantics)","Use as a multi-tenant hosted API requiring built-in authentication/authorization"],"best_when":"You need local/agent-driven Excel range I/O through MCP tools and can supply absolute file paths accessible to the server process.","avoid_when":"You cannot control or sandbox file access, or you require fine-grained auth, auditing, and tenant isolation.","alternatives":["Using Microsoft Graph / Excel APIs (hosted, with auth and auditing)","Using document-processing libraries in-process (e.g., Excel parsing libraries) without MCP","Building a REST service around an Excel processing library with explicit auth/rate limits"],"af_score":66.8,"security_score":27.0,"reliability_score":27.5,"package_type":"mcp_server","discovery_source":["github"],"priority":"low","status":"evaluated","version_evaluated":null,"last_evaluated":"2026-04-04T19:45:32.510264+00:00","interface":{"has_rest_api":true,"has_graphql":false,"has_grpc":false,"has_mcp_server":true,"mcp_server_url":null,"has_sdk":false,"sdk_languages":[],"openapi_spec_url":null,"webhooks":false},"auth":{"methods":["None described (local MCP tool process)."],"oauth":false,"scopes":false,"notes":"No authentication mechanism is described for MCP tool usage. For SSE transport, the server exposes HTTP endpoints (e.g., /command, /status, /sse) but no auth is documented."},"pricing":{"model":"n/a (open-source package; NPM distribution referen","free_tier_exists":false,"free_tier_limits":null,"paid_tiers":[],"requires_credit_card":false,"estimated_workload_costs":null,"notes":"No pricing information for a hosted service; appears to be a self-run tool distributed via NPM."},"requirements":{"requires_signup":false,"requires_credit_card":false,"domain_verification":false,"data_residency":[],"compliance":[],"min_contract":null},"agent_readiness":{"af_score":66.8,"security_score":27.0,"reliability_score":27.5,"mcp_server_quality":78.0,"documentation_accuracy":85.0,"error_message_quality":0.0,"error_message_notes":null,"auth_complexity":95.0,"rate_limit_clarity":20.0,"tls_enforcement":30.0,"auth_strength":20.0,"scope_granularity":0.0,"dependency_hygiene":40.0,"secret_handling":50.0,"security_notes":"TLS/auth are not documented for the SSE endpoints; if exposed, it may be vulnerable to unauthorized access. Tooling accepts absolute file paths, so the primary risk is over-permission to the filesystem. No secret-handling details are provided; since configuration uses environment variables for server behavior, avoid logging those env vars.","uptime_documented":0.0,"version_stability":35.0,"breaking_changes_history":40.0,"error_recovery":35.0,"idempotency_support":"false","idempotency_notes":"Write operations are described but idempotency (e.g., no-op detection, deterministic retries) is not documented.","pagination_style":"range-based pagination via read tools (range + knownPagingRanges)","retry_guidance_documented":false,"known_agent_gotchas":["Server requires absolute file paths accessible to the process environment.","SSE transport opens HTTP endpoints; ensure network exposure is controlled if used.","Windows-only image capture may fail on non-Windows hosts.","Write operations may overwrite cell ranges; agents should carefully choose ranges to avoid unintended changes."]}}