{"id":"paolobietolini-gtm-mcp-server","name":"gtm-mcp-server","homepage":"https://mcp.gtmeditor.com","repo_url":"https://github.com/paolobietolini/gtm-mcp-server","category":"devtools","subcategories":[],"tags":["ai","mcp","google-tag-manager","oauth2","google-api","devtools","automation","tracking","ga4","server-side-gtm"],"what_it_does":"Provides an MCP (Model Context Protocol) server that lets an LLM manage Google Tag Manager (GTM) accounts/containers/workspaces: read GTM entities, create/update/delete tags, triggers, variables, templates, and server-side GTM components, and version/publish changes via guided actions with safety confirmations.","use_cases":["Generate and maintain GA4/ecommerce tracking setups in GTM via natural language","Audit GTM containers for issues (duplicates, naming inconsistencies, orphaned items, best-practice/security concerns)","Create triggers, variables, and templates for common measurement patterns","Implement consent-aware tracking logic (e.g., fire tags only when analytics consent is granted)","Bulk update/rename/organize GTM items across large containers","Agencies standardizing multiple client GTM implementations and publishing via versioning","Server-side GTM setup for clients and event transformations"],"not_for":["Replacing Google Tag Manager UI for teams that need full UI workflows and fine-grained manual control","Use cases requiring tight SLAs where failures or partial changes cannot be tolerated","Highly regulated environments without assurance of logging, auditability, and data handling practices beyond what’s documented"],"best_when":"You want an LLM-driven, tool-based workflow (with MCP + OAuth) to read and make structured GTM changes, including safe versioning and optional confirmations before destructive actions.","avoid_when":"You cannot authenticate/authorize via the described OAuth flow, or you need guarantees about rate limits, reliability, and error recovery behaviors beyond what’s documented.","alternatives":["Direct GTM API usage (Google Tag Manager API) with your own tooling","Manual GTM UI workflows","Third-party GTM management tools/CLIs (if available)","Build an MCP server wrapper around GTM API in-house with stricter governance and monitoring","Use automation platforms that integrate with GTM API (custom scripts/workflows)"],"af_score":57.2,"security_score":66.8,"reliability_score":27.5,"package_type":"mcp_server","discovery_source":["github"],"priority":"high","status":"evaluated","version_evaluated":null,"last_evaluated":"2026-03-30T15:24:02.549223+00:00","interface":{"has_rest_api":false,"has_graphql":false,"has_grpc":false,"has_mcp_server":true,"mcp_server_url":"https://mcp.gtmeditor.com","has_sdk":false,"sdk_languages":[],"openapi_spec_url":null,"webhooks":false},"auth":{"methods":["OAuth 2.1 with PKCE"],"oauth":true,"scopes":false,"notes":"README describes OAuth 2.1 + PKCE and token-based auth that can be revoked; it does not specify exact scopes/granularity in the provided text."},"pricing":{"model":null,"free_tier_exists":false,"free_tier_limits":null,"paid_tiers":[],"requires_credit_card":false,"estimated_workload_costs":null,"notes":"No pricing information provided; likely self-hostable only (per Docker instructions) and/or an externally hosted MCP URL."},"requirements":{"requires_signup":false,"requires_credit_card":false,"domain_verification":false,"data_residency":[],"compliance":[],"min_contract":null},"agent_readiness":{"af_score":57.2,"security_score":66.8,"reliability_score":27.5,"mcp_server_quality":85.0,"documentation_accuracy":70.0,"error_message_quality":0.0,"error_message_notes":null,"auth_complexity":70.0,"rate_limit_clarity":0.0,"tls_enforcement":80.0,"auth_strength":85.0,"scope_granularity":40.0,"dependency_hygiene":50.0,"secret_handling":70.0,"security_notes":"Uses OAuth 2.1 with PKCE and claims token-based authentication with revocation. README includes safety confirmations for deletions/publishing and workspace-only changes until publish. However, provided content does not detail scope granularity, TLS requirements explicitly, or operational security controls (logging/redaction, audit retention), so scores reflect partial documentation.","uptime_documented":0.0,"version_stability":35.0,"breaking_changes_history":30.0,"error_recovery":45.0,"idempotency_support":"false","idempotency_notes":"No explicit idempotency guarantees documented for create/update operations or publish/versioning.","pagination_style":"none","retry_guidance_documented":false,"known_agent_gotchas":["Google Tag Manager API may silently drop certain trigger condition fields (e.g., `autoEventFilter`) when creating/updating certain trigger types.","Without explicit idempotency guarantees, agents should avoid blindly retrying write operations; prefer pre-checks (e.g., list/get then update) and confirmation steps before deletes/publish."]}}