{"id":"spandigital-mcp-server-dump","name":"mcp-server-dump","homepage":null,"repo_url":"https://github.com/SPANDigital/mcp-server-dump","category":"devtools","subcategories":[],"tags":["mcp","cli","documentation","introspection","oauth","go","hugo"],"what_it_does":"CLI tool that connects to MCP servers via supported transports (command/stdio, streamable HTTP, and deprecated SSE), extracts server capabilities/tools/resources/prompts (optionally calling tools to include results), and outputs documentation in multiple formats (Markdown/JSON/HTML/PDF/Hugo) with customization via config files and templates.","use_cases":["Generate documentation for MCP servers (capabilities, tools, resources, prompts).","Regression/test-style verification by calling MCP tools during documentation generation.","Create static-site friendly outputs (Markdown with frontmatter, Hugo site structure).","Introspect remote MCP servers over HTTP transports including optional OAuth-protected endpoints."],"not_for":["Running as a long-lived service/API gateway.","Security-sensitive token custody in multi-tenant environments (because it needs local OAuth redirect and writes token cache).","Providing an official production API for MCP clients (it is documentation/introspection focused)."],"best_when":"You need automated, repeatable MCP server capability documentation and optional tool-call results, especially for developer docs or QA.","avoid_when":"You cannot trust the MCP server being queried (since the tool can execute tool calls and may launch subprocesses for command transport).","alternatives":["Custom scripts using the MCP Go SDK directly to enumerate tools/resources/prompts.","Existing MCP server UIs or documentation generators (if available in your ecosystem).","Manual documentation and schema-driven documentation tooling for MCP (where tooling exists)."],"af_score":55.8,"security_score":71.2,"reliability_score":28.8,"package_type":"mcp_server","discovery_source":["github"],"priority":"high","status":"evaluated","version_evaluated":null,"last_evaluated":"2026-03-30T15:37:13.347011+00:00","interface":{"has_rest_api":false,"has_graphql":false,"has_grpc":false,"has_mcp_server":false,"mcp_server_url":null,"has_sdk":true,"sdk_languages":["Go"],"openapi_spec_url":null,"webhooks":false},"auth":{"methods":["Custom HTTP headers (-H) for Bearer and API keys","OAuth 2.1 authorization code flow with PKCE (loopback redirect) for HTTP transports"],"oauth":true,"scopes":true,"notes":"Auth is only needed when connecting to protected MCP servers over HTTP transports (SSE/streamable) or when the user supplies auth headers."},"pricing":{"model":null,"free_tier_exists":false,"free_tier_limits":null,"paid_tiers":[],"requires_credit_card":false,"estimated_workload_costs":null,"notes":"Open-source CLI (MIT) distributed via package managers/releases; no usage-based pricing indicated."},"requirements":{"requires_signup":false,"requires_credit_card":false,"domain_verification":false,"data_residency":[],"compliance":[],"min_contract":null},"agent_readiness":{"af_score":55.8,"security_score":71.2,"reliability_score":28.8,"mcp_server_quality":72.0,"documentation_accuracy":78.0,"error_message_quality":0.0,"error_message_notes":null,"auth_complexity":75.0,"rate_limit_clarity":10.0,"tls_enforcement":85.0,"auth_strength":78.0,"scope_granularity":70.0,"dependency_hygiene":45.0,"secret_handling":70.0,"security_notes":"Supports HTTPS endpoints for OAuth/HTTP transports (implied by typical URL usage) and token caching to a local config directory with chmod 0600 (as stated). Still, it accepts arbitrary authentication headers and can invoke subprocesses (command transport), so treat MCP endpoints and supplied commands as potentially dangerous. Dependency hygiene and CVE status are not verifiable from the provided README.","uptime_documented":0.0,"version_stability":45.0,"breaking_changes_history":40.0,"error_recovery":30.0,"idempotency_support":"false","idempotency_notes":null,"pagination_style":"none","retry_guidance_documented":false,"known_agent_gotchas":["Command transport runs MCP servers as subprocesses; agent automation should consider timeouts and cleanup.","Tool calling can have side effects depending on the MCP server implementation; ensure idempotency on the server side before re-running.","OAuth flow is interactive by default (browser + loopback redirect) unless tokens are provided via headers; automation in headless environments may need pre-obtained tokens.","Rate limiting for MCP servers is not described in the provided README, so repeated tool calls may need backoff heuristics."]}}