Model Context Protocol moderate risk

Doordash

Doordash MCP server facilitates interaction with the Doordash API, enabling order management and delivery insights, secured by API key.

Connections & Capabilities

Connects To

GitHubTwitter

Capabilities

readwrite

Quickstart

Install

npm install && npm run build

Config

{
  "mcpServers": {
    "doordash": {
      "command": "node",
      "args": [
        "<thePathToYour>/build/index.js"
      ],
      "env": [
        {
          "DOORDASH_API_KEY": "<REPLACE>"
        }
      ]
    }
  }
}

Exposed MCP Tools (4)

safe

get_order_status

Retrieves the current status of a specific order.

Read-only operation, no side effects.

safe

list_orders

Lists recent orders with basic details.

Read-only operation, no side effects.

moderate

create_delivery

Creates a new delivery request.

Creates new resources; potential for misuse if not controlled.

high

cancel_delivery

Cancels an existing delivery.

Potentially disruptive action if used incorrectly.

Safety Assessment

This MCP server is relatively safe for read operations and controlled write operations. However, the security of the API key is paramount, and misuse of write operations could have consequences. Rate limiting and monitoring should be implemented for production use.

API key authentication limits unauthorized access.
Read and write operations are controlled via API.
No direct shell access or filesystem modifications.
Clear separation of concerns via API boundaries.

Exposure of API key can lead to unauthorized actions.
Potential for data modification if write operations are misused.
Lack of built-in rate limiting could lead to API abuse.
Reliance on Doordash API security posture.