{"id":"pserver-nginx","name":"nginx","homepage":"https://hub.docker.com/r/pserver/nginx","repo_url":"https://hub.docker.com/r/pserver/nginx","category":"infrastructure","subcategories":[],"tags":["infrastructure","web-server","reverse-proxy","tls","load-balancing","http-routing"],"what_it_does":"nginx is a high-performance web server and reverse proxy used to serve static content, terminate TLS, load-balance upstream services, and route HTTP/S traffic using configurable rules (e.g., URI/path-based routing, headers, rewrites).","use_cases":["Reverse proxy for web applications and APIs","TLS termination and HTTPS configuration","Load balancing across multiple upstream instances","Serving static assets at scale","Request routing and rewriting (e.g., to microservices)","Caching and performance optimizations for HTTP traffic"],"not_for":["Direct database or application-layer business logic","Use as a replacement for full API gateways when advanced policies (mTLS, complex auth, API management) are required","Situations needing built-in authentication/authorization as a primary identity provider (typically handled by upstream/apps or dedicated auth components)"],"best_when":"You need a proven, performant edge proxy/reverse-proxy layer with strong control over HTTP behavior and integration with upstream services.","avoid_when":"You need a SaaS-style managed API with vendor auth, rate-limit semantics, and documented REST endpoints; nginx is infrastructure software configured by operators rather than an agent-consumable API.","alternatives":["Apache HTTP Server","Caddy","Traefik","HAProxy","Envoy","Cloud provider load balancers/API gateways (e.g., AWS ALB, NGINX Plus, Kong in gateway mode)"],"af_score":35.8,"security_score":54.8,"reliability_score":66.2,"package_type":"mcp_server","discovery_source":["docker_mcp"],"priority":"low","status":"evaluated","version_evaluated":null,"last_evaluated":"2026-04-04T21:31:18.194834+00:00","interface":{"has_rest_api":false,"has_graphql":false,"has_grpc":false,"has_mcp_server":false,"mcp_server_url":null,"has_sdk":false,"sdk_languages":[],"openapi_spec_url":null,"webhooks":false},"auth":{"methods":["mTLS (optional via TLS client certificate verification)","IP allow/deny (access control)","HTTP basic auth (via modules/config)"],"oauth":false,"scopes":false,"notes":"nginx itself is configuration-driven; authentication and authorization (if used) is typically implemented via nginx directives/modules or delegated to upstream services."},"pricing":{"model":null,"free_tier_exists":false,"free_tier_limits":null,"paid_tiers":[],"requires_credit_card":false,"estimated_workload_costs":null,"notes":"Open-source nginx is commonly used without licensing fees; commercial offerings (e.g., NGINX Plus) may be paid, but this evaluation is for the nginx package/software."},"requirements":{"requires_signup":false,"requires_credit_card":false,"domain_verification":false,"data_residency":[],"compliance":[],"min_contract":null},"agent_readiness":{"af_score":35.8,"security_score":54.8,"reliability_score":66.2,"mcp_server_quality":0.0,"documentation_accuracy":55.0,"error_message_quality":0.0,"error_message_notes":null,"auth_complexity":70.0,"rate_limit_clarity":20.0,"tls_enforcement":80.0,"auth_strength":50.0,"scope_granularity":30.0,"dependency_hygiene":55.0,"secret_handling":60.0,"security_notes":"Security depends on correct TLS configuration and safe handling of credentials in nginx config/secrets management. nginx supports TLS termination and optional client-certificate verification, but strong authz controls and scope granularity are not intrinsic unless configured via modules and upstream enforcement. Keep nginx and modules updated to mitigate CVEs.","uptime_documented":60.0,"version_stability":80.0,"breaking_changes_history":70.0,"error_recovery":55.0,"idempotency_support":"false","idempotency_notes":null,"pagination_style":"none","retry_guidance_documented":false,"known_agent_gotchas":["nginx is typically managed via config files and service reloads, not via a programmatic HTTP API; agent integration requires custom ops tooling (e.g., config templating, SSH/CM).","Behavior depends heavily on configuration correctness; misconfiguration can cause outages (syntax errors, wrong upstreams, TLS/redirect loops).","Statefulness exists at the configuration and runtime layers (reload semantics, worker processes), so 'apply changes' workflows should be carefully ordered and tested."]}}