{"id":"gophersecurity-gopher-mcp","name":"gopher-mcp","homepage":"https://gopher.security","repo_url":"https://github.com/GopherSecurity/gopher-mcp","category":"ai-ml","subcategories":[],"tags":["ai-ml","api","mcp","model-context-protocol","json-rpc","c++","sdk","ffi","tool-calling","server-client"],"what_it_does":"gopher-mcp is a C++ SDK implementing the Model Context Protocol (MCP) including JSON-RPC 2.0 request/response/notification handling plus server/client helpers and a filter-chain architecture. It supports multiple transports (stdio, HTTP/SSE, HTTPS/SSE, WebSocket, TCP) and exposes a stable C API (libgopher_mcp_c) to build MCP integrations from other languages via FFI/bindings.","use_cases":["Build MCP servers in C++ for tools/resources/prompts exposed to AI assistants","Build MCP clients to connect to existing MCP servers from C++/C and other languages via the C API","Integrate enterprise systems with AI tool-calling using MCP over multiple transports","Low-latency/native applications needing MCP without Python/Node overhead"],"not_for":["Fully managed SaaS usage (it appears to be a library/SDK rather than a hosted service)","Teams needing a strict REST-only API for generic web apps (MCP is JSON-RPC/transport-based)","Environments requiring no native build toolchains (C++ + optional OpenSSL/libevent implies native dependencies)"],"best_when":"You need a performant, embeddable MCP implementation in C++ with cross-language integration via a C ABI.","avoid_when":"You require a simple hosted endpoint with turnkey authentication/observability; or you cannot ship/compile native libraries.","alternatives":["Official MCP SDKs in other languages (TypeScript/Python)","Other MCP client/server libraries for your target runtime","Implement MCP JSON-RPC over HTTP/WebSocket directly (DIY)"],"af_score":57.5,"security_score":46.5,"reliability_score":28.8,"package_type":"mcp_server","discovery_source":["github"],"priority":"high","status":"evaluated","version_evaluated":null,"last_evaluated":"2026-03-30T13:48:01.203597+00:00","interface":{"has_rest_api":false,"has_graphql":false,"has_grpc":false,"has_mcp_server":true,"mcp_server_url":null,"has_sdk":true,"sdk_languages":["C++","C API (FFI)","Python (ctypes/cffi)","TypeScript/Node.js (N-API)","Go (CGO)","Rust (FFI)","Java (JNI)","C#/.NET (P/Invoke)","Ruby (native extension)"],"openapi_spec_url":null,"webhooks":false},"auth":{"methods":["Authentication middleware (described conceptually in filter chain/security features)"],"oauth":false,"scopes":false,"notes":"README mentions an authentication middleware and TLS support, but does not document concrete auth mechanisms (API key header, OAuth, mTLS, etc.) or scope/role model."},"pricing":{"model":null,"free_tier_exists":false,"free_tier_limits":null,"paid_tiers":[],"requires_credit_card":false,"estimated_workload_costs":null,"notes":"No pricing/hosted offering described; appears to be open-source library (Apache-2.0)."},"requirements":{"requires_signup":false,"requires_credit_card":false,"domain_verification":false,"data_residency":[],"compliance":[],"min_contract":null},"agent_readiness":{"af_score":57.5,"security_score":46.5,"reliability_score":28.8,"mcp_server_quality":85.0,"documentation_accuracy":70.0,"error_message_quality":0.0,"error_message_notes":null,"auth_complexity":45.0,"rate_limit_clarity":40.0,"tls_enforcement":70.0,"auth_strength":50.0,"scope_granularity":20.0,"dependency_hygiene":40.0,"secret_handling":50.0,"security_notes":"README indicates TLS/SSL support and an authentication middleware in the filter chain, plus request validation. However, concrete auth scheme details, scope/authorization granularity, and operational security guidance (secret handling patterns, audit logging, safe defaults) are not evidenced in the provided README excerpt. As a native SDK, security also depends on the correctness of transports/FFI and dependency CVE hygiene, which is not verifiable from the supplied content.","uptime_documented":0.0,"version_stability":40.0,"breaking_changes_history":20.0,"error_recovery":55.0,"idempotency_support":"false","idempotency_notes":null,"pagination_style":"none","retry_guidance_documented":false,"known_agent_gotchas":["MCP tool/resource invocation semantics are JSON-RPC/transport-dependent; ensure your agent understands which transport is used (stdio vs HTTP/SSE vs WebSocket)","FFI/C API use may require careful lifecycle management of opaque handles/RAII wrappers; mismanagement can cause leaks or crashes","Authentication behavior is not concretely specified in the provided README—agents should verify auth wiring in examples/tests before relying on it"]}}