@withone/mcp
Advanced tools
Website · Docs · Dashboard · Changelog · X · LinkedIn
Connect your AI agents to 250+ apps through a single MCP server. Search for actions, read documentation, and execute API calls across platforms, without having to manage OAuth tokens or API keys.
npm install -g @withone/cli
one init
That's it. The One CLI will prompt you for your API key (get one from the One dashboard) and configure the MCP server for your environment: Claude Desktop, Cursor, Claude Code, Windsurf, or any MCP-compatible agent.
Execute actions directly:
"Get my last 5 emails from Gmail"
"Send a Slack message to #general: 'Meeting in 10 minutes'"
"Get all products from my Shopify store"
Generate integration code:
"Create a React form component that sends emails using Gmail"
"Build a dashboard that displays Linear users and their assigned projects with filtering"
"Create a paginatable table that fetches and displays QuickBooks invoices with search and sort"
The server exposes four MCP tools:
| Tool | Description |
|---|---|
list_one_integrations | List available platforms and active connections |
search_one_platform_actions | Search for actions on a specific platform |
get_one_action_knowledge | Get detailed documentation for an action |
execute_one_action | Execute an API action on a connected platform |
If you prefer to configure the server manually instead of using one init, install the package directly:
npm install @withone/mcp
Then set the required environment variable:
ONE_SECRET=your-one-secret-key
Scope connections to a specific identity (e.g., a user, team, or organization):
ONE_IDENTITY=user_123
ONE_IDENTITY_TYPE=user
| Variable | Description | Values |
|---|---|---|
ONE_IDENTITY | The identifier for the entity (e.g., user ID, team ID) | Any string |
ONE_IDENTITY_TYPE | The type of identity | user, team, organization, project |
When set, the MCP server will only return connections associated with the specified identity. This is useful for multi-tenant applications where you want to scope integrations to specific users or entities.
Fine-tune what the MCP server can see and do:
ONE_PERMISSIONS=read
ONE_CONNECTION_KEYS=conn_key_1,conn_key_2
ONE_ACTION_IDS=action_id_1,action_id_2
ONE_KNOWLEDGE_AGENT=true
| Variable | Type | Default | Description |
|---|---|---|---|
ONE_PERMISSIONS | read | write | admin | admin | Filter actions by HTTP method. read = GET only, write = GET/POST/PUT/PATCH, admin = all methods |
ONE_CONNECTION_KEYS | * or comma-separated keys | * | Restrict visible connections and platforms to specific connection keys |
ONE_ACTION_IDS | * or comma-separated IDs | * | Restrict visible and executable actions to specific action IDs |
ONE_KNOWLEDGE_AGENT | true | false | false | Remove the execute_one_action tool entirely, forcing knowledge-only mode |
All defaults preserve current behavior. If no access control env vars are set, the server starts with full access and all tools available.
If you used one init, the configuration below is already done for you. These examples are for reference or manual setups.
npx @withone/mcp
Add the following to your MCP config:
~/Library/Application\ Support/Claude/claude_desktop_config.json · Windows: %APPDATA%/Claude/claude_desktop_config.json{
"mcpServers": {
"one": {
"command": "npx",
"args": ["@withone/mcp"],
"env": {
"ONE_SECRET": "your-one-secret-key"
}
}
}
}
The remote MCP server is available at https://mcp.withone.ai.
docker build -t one-mcp-server .
docker run -e ONE_SECRET=your_one_secret_key one-mcp-server
All environment variables listed above can be passed as -e flags.
All requests to third-party platforms are authenticated and proxied through One's API. The MCP server never handles OAuth tokens or platform API keys directly. The ONE_SECRET key is the sole credential required, and it is automatically redacted from all response payloads returned to clients. Sensitive headers are stripped from logged and returned request configurations.
MIT
For support, please contact support@withone.ai or visit https://withone.ai
FAQs
A Model Context Protocol Server for One
We found that @withone/mcp demonstrated a healthy version release cadence and project activity because the last version was released less than a year ago. It has 2 open source maintainers collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
/Security News
Compromised npm package art-template delivered a Coruna-like iOS Safari exploit framework through a watering-hole attack.
Company News
As AI accelerates how code is written and shipped, Socket is scaling to protect the software supply chain from the growing wave of attacks targeting open source dependencies.
Company News
Socket is scaling to defend open source against supply chain attacks as AI accelerates software development.