{"id":"ngs-dropbox-mcp-server","name":"dropbox-mcp-server","homepage":"https://go.ngs.io/dropbox-mcp/","repo_url":"https://github.com/ngs/dropbox-mcp-server","category":"infrastructure","subcategories":[],"tags":["dropbox","mcp","oauth2","file-management","sharing","versioning","go","claude-desktop","chunked-upload"],"what_it_does":"Dropbox MCP server (Go) that exposes Dropbox functionality (auth, file/folder operations, sharing, and revision history/restore) to AI assistants via the Model Context Protocol. Supports OAuth2 and large-file chunked uploads (per README).","use_cases":["Enable an AI assistant to browse and manipulate a user's Dropbox files and folders","Automate routine file workflows (search, download, upload, move/copy/delete) through MCP tool calls","Create/manage/revoke Dropbox shared links via an AI assistant","Assist with document recovery by fetching revision history and restoring prior versions","Upload large files to Dropbox via chunked uploads"],"not_for":["Scenarios requiring server-to-server automated uploads without interactive OAuth/user consent","Workloads that need a web API/SDK for direct programmatic HTTP access (this is primarily an MCP server)","Use cases requiring strict enterprise compliance evidence beyond README-level security guidance","Bulk/high-frequency operations that need clearly documented rate-limit strategy"],"best_when":"Used with a compatible MCP host (e.g., Claude Desktop) where OAuth and local configuration are acceptable.","avoid_when":"Avoid if you cannot control where client secrets/tokens are stored (local config) or if you need documented, fine-grained operational guarantees (rate limits, error codes, idempotency).","alternatives":["Dropbox API directly (official SDKs/REST)","Other MCP servers for cloud storage/file management","Custom wrapper around Dropbox API with your own OAuth handling and API error normalization"],"af_score":58.2,"security_score":77.2,"reliability_score":17.5,"package_type":"mcp_server","discovery_source":["github"],"priority":"low","status":"evaluated","version_evaluated":null,"last_evaluated":"2026-04-04T19:42:07.744411+00:00","interface":{"has_rest_api":false,"has_graphql":false,"has_grpc":false,"has_mcp_server":true,"mcp_server_url":null,"has_sdk":false,"sdk_languages":[],"openapi_spec_url":null,"webhooks":false},"auth":{"methods":["OAuth 2.0 browser-based flow (Dropbox OAuth)","MCP tool-based authentication via dropbox_auth and dropbox_check_auth"],"oauth":true,"scopes":true,"notes":"README indicates Dropbox OAuth2 with client ID/secret, redirect URI http://localhost:8080/callback, and tool-driven auth. Tokens are saved locally to ~/.dropbox-mcp-server/config.json and refreshed when expired."},"pricing":{"model":null,"free_tier_exists":false,"free_tier_limits":null,"paid_tiers":[],"requires_credit_card":false,"estimated_workload_costs":null,"notes":"No pricing information provided for the server itself; Dropbox API access may have its own account/plan requirements."},"requirements":{"requires_signup":false,"requires_credit_card":false,"domain_verification":false,"data_residency":[],"compliance":[],"min_contract":null},"agent_readiness":{"af_score":58.2,"security_score":77.2,"reliability_score":17.5,"mcp_server_quality":82.0,"documentation_accuracy":75.0,"error_message_quality":0.0,"error_message_notes":null,"auth_complexity":60.0,"rate_limit_clarity":10.0,"tls_enforcement":95.0,"auth_strength":85.0,"scope_granularity":80.0,"dependency_hygiene":40.0,"secret_handling":75.0,"security_notes":"README advises not to share/embed CLIENT_SECRET and indicates OAuth2 with state parameter for CSRF protection and HTTPS for API calls. Tokens are stored in a local config file with 0600 permissions; credentials can be provided via environment variables. However, dependency hygiene and detailed security implementation details (e.g., where client secrets/token logs are handled, whether secrets are redacted, CVE status) are not evidenced in the provided content.","uptime_documented":0.0,"version_stability":40.0,"breaking_changes_history":0.0,"error_recovery":30.0,"idempotency_support":"false","idempotency_notes":"No README mention of idempotency keys or safe retry semantics for mutating operations (upload/move/copy/delete/create folder/share/revoke).","pagination_style":"none","retry_guidance_documented":false,"known_agent_gotchas":["Mutating operations (upload/move/copy/delete/share creation/revocation) may not be idempotent; retries could cause duplicates or unintended changes.","Large-file upload behavior is described at a high level, but chunking parameters/retry behavior are not documented.","Auth uses a localhost redirect URI; hosting environments where localhost callbacks are blocked may require manual configuration changes.","Configuration uses local file storage for tokens; agents/hosts that run in ephemeral containers may need re-auth each session."]}}