{"id":"yyykf-yapi-mcp-server","name":"yapi-mcp-server","homepage":null,"repo_url":"https://github.com/yyykf/yapi-mcp-server","category":"api-gateway","subcategories":[],"tags":["mcp","yapi","api-management","integration","documentation-search","cache"],"what_it_does":"Provides an MCP (Model Context Protocol) server that integrates an AI assistant with a YAPI API management instance. It exposes MCP tools to list YAPI projects/categories/interfaces, search interfaces, fetch interface details, and manage/refresh a local cache (including cache stats and per-project cache clearing).","use_cases":["AI-assisted exploration of YAPI API documentation (projects, categories, interfaces)","Natural-language search for API endpoints by name/keyword/path","Retrieving detailed request/response information for a specific interface","Caching YAPI data locally to reduce repeated YAPI queries"],"not_for":["Public, unauthenticated deployments exposed to the internet","Use cases requiring strict compliance reporting or audited security controls without additional hardening","Workflows needing formal REST/GraphQL/OpenAPI client compatibility (this is primarily an MCP server)"],"best_when":"You have a self-hosted YAPI instance and want an MCP-capable client (e.g., an agent in an IDE) to query and search API info via standardized MCP tools.","avoid_when":"When you cannot secure the server and upstream YAPI credentials (tokens), or when you need strong guarantees about API error semantics/pagination/retry behavior that are not documented here.","alternatives":["Use YAPI’s native UI and/or export APIs (e.g., Swagger/OpenAPI generation) and let the agent query the generated spec","Build a custom MCP server around YAPI’s REST endpoints with OpenAPI-defined contracts","Use a generic OpenAPI/Swagger MCP integration if you can generate an OpenAPI spec from YAPI"],"af_score":48.0,"security_score":39.5,"reliability_score":23.8,"package_type":"mcp_server","discovery_source":["github"],"priority":"low","status":"evaluated","version_evaluated":null,"last_evaluated":"2026-04-04T20:02:39.043261+00:00","interface":{"has_rest_api":false,"has_graphql":false,"has_grpc":false,"has_mcp_server":true,"mcp_server_url":"http://127.0.0.1:8888/sse (as shown in README for Cursor configuration)","has_sdk":false,"sdk_languages":[],"openapi_spec_url":null,"webhooks":false},"auth":{"methods":["Yapi project tokens configured in application-mcp.yml (project-tokens: {projectId: token})"],"oauth":false,"scopes":false,"notes":"Auth mechanism appears to rely on static per-project tokens for the upstream YAPI, configured via YAML. The README does not describe any auth for the MCP server itself (e.g., whether it is protected)."},"pricing":{"model":null,"free_tier_exists":false,"free_tier_limits":null,"paid_tiers":[],"requires_credit_card":false,"estimated_workload_costs":null,"notes":"Open-source style project (MIT) per README; no hosted service pricing described."},"requirements":{"requires_signup":false,"requires_credit_card":false,"domain_verification":false,"data_residency":[],"compliance":[],"min_contract":null},"agent_readiness":{"af_score":48.0,"security_score":39.5,"reliability_score":23.8,"mcp_server_quality":55.0,"documentation_accuracy":60.0,"error_message_quality":0.0,"error_message_notes":null,"auth_complexity":70.0,"rate_limit_clarity":10.0,"tls_enforcement":20.0,"auth_strength":45.0,"scope_granularity":30.0,"dependency_hygiene":55.0,"secret_handling":50.0,"security_notes":"Upstream authentication is via YAPI project tokens stored in application-mcp.yml. TLS/auth requirements for the MCP server itself are not documented in the README, and there is no mention of fine-grained scopes, token rotation, or protection against exposing the SSE endpoint publicly. Cache management implies local storage/retention of YAPI data, which may need explicit consideration.","uptime_documented":10.0,"version_stability":35.0,"breaking_changes_history":30.0,"error_recovery":20.0,"idempotency_support":"false","idempotency_notes":null,"pagination_style":"none","retry_guidance_documented":false,"known_agent_gotchas":["Cache-related tools (refreshCache/clearProjectCache) may have side effects; idempotency and concurrency behavior are not documented.","Auth protection for the MCP server endpoint is not described; ensure MCP server is reachable only in trusted environments."]}}