Big News: Socket raises $60M Series C at a $1B valuation to secure software supply chains for AI-driven development.Announcement
Sign In

@frontmcp/sdk

Package Overview
Dependencies
Maintainers
1
Versions
60
Alerts
File Explorer

Advanced tools

License
Socket logo

Install Socket

Detect and block malicious and high-risk dependencies

Install

@frontmcp/sdk

FrontMCP SDK

latest
Source
npmnpm
Version
1.3.0
Version published
Weekly downloads
6.2K
17.01%
Maintainers
1
Weekly downloads
 
Created
Source

@frontmcp/sdk

The core FrontMCP framework for building MCP servers and clients in TypeScript.

NPM

Install

npm install @frontmcp/sdk

Most users should scaffold with npx frontmcp create my-app instead of installing manually. See Installation.

Features

  • @FrontMcp server — single decorator configures info, apps, HTTP, logging, session, auth (docs)
  • @App — group tools, resources, prompts into isolated domains (docs)
  • @Tool — typed actions with Zod input schemas, class or function style (docs)
  • @Resource — read-only data with static and template URIs (docs)
  • @Prompt — reusable message templates returning GetPromptResult (docs)
  • @Agent — orchestrated multi-step tool chains (docs)
  • Elicitation — request structured user input mid-flow (docs)
  • Skills — HTTP-discoverable tool manifests for agent marketplaces (docs)
  • 5 context classesToolContext, ResourceContext, PromptContext, AgentContext, HookContext
  • Direct clientcreate(), connect(), connectOpenAI(), connectClaude(), connectLangChain(), connectVercelAI() (docs)
  • Authentication — Remote OAuth, Local OAuth, JWKS, DCR, per-app auth surfaces (docs)
  • Sessions — stateful / stateless modes, JWT or UUID transport IDs
  • Hooks — tool, list-tools, HTTP, resource, prompt hook families (docs)
  • Ext-Apps — mount external MCP servers as sub-apps (docs)
  • Providers / DI — scoped injection with GLOBAL and CONTEXT scopes (docs)
  • ConfigPlugin — load frontmcp.yaml / frontmcp.json config files (docs)
  • Transport — Streamable HTTP + SSE (docs)

Quick Example

import 'reflect-metadata';
import { FrontMcp, App, Tool } from '@frontmcp/sdk';
import { z } from 'zod';

@Tool({ name: 'greet', inputSchema: { name: z.string() } })
class GreetTool {
  async execute({ name }: { name: string }) {
    return `Hello, ${name}!`;
  }
}

@App({ id: 'hello', name: 'Hello', tools: [GreetTool] })
class HelloApp {}

@FrontMcp({ info: { name: 'Demo', version: '0.1.0' }, apps: [HelloApp], http: { port: 3000 } })
export default class Server {}

Full walkthrough: Quickstart

Docs

TopicLink
Server configurationThe FrontMCP Server
Apps & isolationApps
Tools, Resources, PromptsTools · Resources · Prompts
AgentsAgents
AuthenticationAuth Overview · Remote OAuth · Local OAuth
Direct clientDirect Client
Hooks & providersHooks · Providers
DeploymentLocal Dev · Production
SDK referenceOverview

Related Packages

License

Apache-2.0 — see LICENSE.

Keywords

mcp
dependency injection
sdk
adapters
plugins
agentfront

FAQs

Package last updated on 27 May 2026

Did you know?

Socket

Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.

Install

Related posts

Mini Shai-Hulud Campaign Hits Red Hat Cloud Services npm Packages

Research

/

Security News

Mini Shai-Hulud Campaign Hits Red Hat Cloud Services npm Packages

A mini Shai-Hulud campaign compromised Red Hat Cloud Services npm packages to steal developer and CI/CD secrets during installation.

By Socket Research Team  -  Jun 01, 2026