{"id":"qlik-sense-mcp-server","name":"qlik-sense-mcp-server","homepage":"https://pypi.org/project/qlik-sense-mcp-server/","repo_url":"https://github.com/bintocher/qlik-sense-mcp","category":"ai-ml","subcategories":[],"tags":["mcp","qlik","model-context-protocol","python","analytics","enterprise-integration","repository-api","engine-api","cert-auth"],"what_it_does":"An MCP server that exposes a unified set of tools for interacting with Qlik Sense Enterprise Repository and Engine APIs, including application discovery, metadata inspection, script extraction, field/variable retrieval with pagination/search, and an operation to create a hypercube for analytics.","use_cases":["Discover and enumerate Qlik Sense applications and streams","Inspect application metadata (fields, tables, objects, sheets) and extract app scripts","Retrieve field values and variable values with pagination and wildcard search","Get field statistics for analytics/QA workflows","Create hypercubes for downstream analysis workflows using Qlik’s Engine capabilities"],"not_for":["General-purpose Qlik administration beyond the listed MCP tools","Use where TLS verification must never be disabled (the configuration explicitly allows turning it off)","Production use without validating Qlik certificate material and least-privilege credentials"],"best_when":"You need a structured MCP interface for Qlik Sense metadata and limited analytics primitives, and you can provide client certificates and connectivity to Qlik Sense Repository/Engine ports.","avoid_when":"You cannot establish mutual TLS/certificate-based connectivity to Qlik Sense or you require documented fine-grained rate-limit and error-retry semantics for safe automated agents.","alternatives":["Call Qlik Sense Repository/Engine APIs directly (REST/websocket as applicable)","Use Qlik-provided tooling/SDKs (if available in your environment)","Wrap Qlik APIs with your own MCP/HTTP service to tailor authentication, retries, and response shaping"],"af_score":57.2,"security_score":64.0,"reliability_score":30.0,"package_type":"mcp_server","discovery_source":["pypi"],"priority":"low","status":"evaluated","version_evaluated":null,"last_evaluated":"2026-04-04T21:47:04.242391+00:00","interface":{"has_rest_api":false,"has_graphql":false,"has_grpc":false,"has_mcp_server":true,"mcp_server_url":null,"has_sdk":false,"sdk_languages":[],"openapi_spec_url":null,"webhooks":false},"auth":{"methods":["Certificate-based authentication using client certificate/key and CA certificate for Qlik Sense"],"oauth":false,"scopes":false,"notes":"The README describes certificate-based authentication via env vars (QLIK_CLIENT_CERT_PATH, QLIK_CLIENT_KEY_PATH, QLIK_CA_CERT_PATH). It also includes an option to disable SSL verification via QLIK_VERIFY_SSL=false, which weakens transport security if used."},"pricing":{"model":null,"free_tier_exists":false,"free_tier_limits":null,"paid_tiers":[],"requires_credit_card":false,"estimated_workload_costs":null,"notes":"No pricing information provided; repository metadata indicates MIT-licensed open-source package."},"requirements":{"requires_signup":false,"requires_credit_card":false,"domain_verification":false,"data_residency":[],"compliance":[],"min_contract":null},"agent_readiness":{"af_score":57.2,"security_score":64.0,"reliability_score":30.0,"mcp_server_quality":78.0,"documentation_accuracy":75.0,"error_message_quality":0.0,"error_message_notes":null,"auth_complexity":70.0,"rate_limit_clarity":5.0,"tls_enforcement":70.0,"auth_strength":85.0,"scope_granularity":30.0,"dependency_hygiene":45.0,"secret_handling":80.0,"security_notes":"Security posture is largely dependent on TLS verification and the private key handling by the deployment. TLS is supported via HTTPS and certificate-based auth, but the config explicitly allows disabling SSL verification (QLIK_VERIFY_SSL=false). No documentation was provided about authorization scoping per tool or least-privilege strategies beyond using Qlik credentials. Secrets appear configured via env vars and cert paths (not described as logged), which is a positive sign; however, no explicit guidance on logging redaction is included.","uptime_documented":0.0,"version_stability":45.0,"breaking_changes_history":40.0,"error_recovery":35.0,"idempotency_support":"false","idempotency_notes":"No explicit idempotency guarantees documented for tool operations. Some read-style operations likely behave safely, but engine_create_hypercube may be non-idempotent depending on Qlik behavior; not stated.","pagination_style":"offset/limit with returned/total_found/next_offset style metadata (for get_apps, get_app_field, get_app_variables).","retry_guidance_documented":false,"known_agent_gotchas":["QLIK_VERIFY_SSL=false is documented; agents should default to true and ensure CA verification is set correctly.","Large JSON responses are cautioned against (the README suggests small limits during testing), implying payload size can be an issue for agents/clients.","Some MCP tools bridge Qlik Engine WebSocket calls (timeouts/retries are configurable), so transient WS issues may require tuning (QLIK_WS_TIMEOUT/QLIK_WS_RETRIES).","engine_create_hypercube is an action-like operation; lack of documented idempotency means agents should avoid blind retries without safeguards."]}}