{"id":"rekklesna-proxmoxmcp-plus","name":"ProxmoxMCP-Plus","homepage":null,"repo_url":"https://github.com/RekklesNA/ProxmoxMCP-Plus","category":"infrastructure","subcategories":[],"tags":["mcp","proxmox","virtualization","lxc","kvm","openapi","automation","python","devtools"],"what_it_does":"ProxmoxMCP-Plus is a Python-based Model Context Protocol (MCP) server that exposes Proxmox virtualization operations (VM and LXC container lifecycle, power management, snapshots, backups, ISO/templates, and monitoring) via MCP tools, with an additional “OpenAPI integration” layer intended for REST-style access.","use_cases":["MCP-driven conversational or agent workflows to manage Proxmox VMs and LXC containers (create/start/stop/restart/delete).","Automating VM/container snapshot and rollback workflows.","Managing backups/restore operations for Proxmox resources.","Providing an OpenAPI/HTTP surface for integrating Proxmox management into web UIs (e.g., Open WebUI) or other external tools."],"not_for":["Unattended production automation without reviewing least-privilege Proxmox permissions (it performs destructive actions like delete/rollback).","Environments that disallow token-based management access or require strong human-in-the-loop controls for virtualization operations.","Use as a general-purpose Proxmox API replacement without validating exact API contract, error semantics, and security controls in the implementation."],"best_when":"You want an agent-accessible interface (MCP or OpenAPI) for Proxmox administration, and you can safely provision Proxmox API tokens and network access for the server.","avoid_when":"You cannot ensure strict credential handling and least-privilege Proxmox token permissions, or you require highly constrained operations (read-only).","alternatives":["Other Proxmox automation approaches such as direct Proxmox REST API calls with Proxmoxer/SDKs","Existing MCP servers/wrappers for Proxmox (e.g., canvrno/ProxmoxMCP)","OpenAPI gateway/proxy patterns that front a smaller, audited subset of Proxmox operations"],"af_score":56.2,"security_score":52.8,"reliability_score":35.0,"package_type":"mcp_server","discovery_source":["github"],"priority":"high","status":"evaluated","version_evaluated":null,"last_evaluated":"2026-03-30T13:46:30.968779+00:00","interface":{"has_rest_api":true,"has_graphql":false,"has_grpc":false,"has_mcp_server":true,"mcp_server_url":null,"has_sdk":false,"sdk_languages":[],"openapi_spec_url":null,"webhooks":false},"auth":{"methods":["Proxmox API token (token_id/token_value via config or env)"],"oauth":false,"scopes":false,"notes":"Uses Proxmox API tokens configured in the README example; README mentions an optional “Privilege Separation” setting when creating the token, but does not document fine-grained MCP/OpenAPI scopes on the server side."},"pricing":{"model":null,"free_tier_exists":false,"free_tier_limits":null,"paid_tiers":[],"requires_credit_card":false,"estimated_workload_costs":null,"notes":"No pricing information provided (appears to be open-source/community software)."},"requirements":{"requires_signup":false,"requires_credit_card":false,"domain_verification":false,"data_residency":[],"compliance":[],"min_contract":null},"agent_readiness":{"af_score":56.2,"security_score":52.8,"reliability_score":35.0,"mcp_server_quality":78.0,"documentation_accuracy":70.0,"error_message_quality":0.0,"error_message_notes":null,"auth_complexity":70.0,"rate_limit_clarity":5.0,"tls_enforcement":60.0,"auth_strength":70.0,"scope_granularity":20.0,"dependency_hygiene":55.0,"secret_handling":55.0,"security_notes":"Uses Proxmox API tokens (stronger than no auth) but does not describe server-side request authentication/authorization boundaries beyond configuration. README includes a verify_ssl=false option (risk of MITM on connections to Proxmox). It also provides guidance to inject/replace SSH authorized_keys for containers, which increases blast radius if credentials or keys are mishandled. No details are provided on logging redaction of secrets, RBAC/scopes for individual tools, or rate limiting. Transport modes include MCP over stdio/SSE/streamable; the README does not document TLS settings for these endpoints.","uptime_documented":0.0,"version_stability":40.0,"breaking_changes_history":50.0,"error_recovery":50.0,"idempotency_support":"false","idempotency_notes":"The README describes many non-idempotent actions (create/delete/power operations, execute commands). No explicit idempotency guarantees or safe-retry guidance is documented.","pagination_style":"none","retry_guidance_documented":false,"known_agent_gotchas":["Destructive operations (delete VM/container, delete snapshots, rollback snapshots) are exposed; agents should add explicit confirmations/guardrails.","Some container command execution relies on SSH/pct exec and may require additional setup and permissions; failures may be nuanced (network/SSH/key issues).","OpenAPI layer is described at a high level; proxying via mcpo suggests an extra component that may affect auth/error behavior and operational semantics."]}}