VERIFIED

Circleci

Safety: 55/100

0.0(0)

The CircleCI MCP server enables interaction with CircleCI pipelines and resources using natural language via the Model Context Protocol.

MCP ServersAI & LLMDevelopmentData & DatabasesSearch & WebProductivityUtilitiesCloud & InfrastructureFreemium

Boost this tool

Subscribe to listing upgrades or segmented pushes.

Overview

The CircleCI MCP server enables interaction with CircleCI pipelines and resources using natural language via the Model Context Protocol.

The CircleCI MCP server's safety depends on the security of the CircleCI API token. While it offers some configuration options to limit exposure, the potential for write operations means careful token management is crucial. Using a token with limited scope and monitoring its usage are recommended.

Performance is primarily limited by the CircleCI API's response times and the network latency between the MCP server and the CircleCI API endpoint. Large log retrievals may take longer.

Cost is primarily determined by CircleCI's pricing model, which may be based on usage (e.g., build minutes). Excessive or unnecessary API calls initiated through the MCP server could increase costs.

HybridTypeScript76 starsNOASSERTION

Connections & Capabilities

Connects To

GitHubDockerAWS

Capabilities

ReadWriteExec

Client Compatibility

Claude Desktop

full

Cursor

full

Windsurf

full

VS Code (Copilot)

full

Quickstart

Install

npx -y @smithery/cli install @CircleCI-Public/mcp-server-circleci --client claude

Claude Desktop Config

{
  "mcpServers": {
    "circleci-mcp-server": {
      "command": "npx",
      "args": ["-y", "@circleci/mcp-server-circleci@latest"],
      "env": {
        "CIRCLECI_TOKEN": "your-circleci-token",
        "CIRCLECI_BASE_URL": "https://circleci.com", // Optional - required for on-prem customers only
        "MAX_MCP_OUTPUT_LENGTH": "50000" // Optional - maximum output length for MCP responses (default: 50000)
      }
    }
  }
}

Environment Variables

CIRCLECI_TOKENCIRCLECI_BASE_URL

Tools (5)

safe

get_pipeline_logs

Retrieves logs from a specified CircleCI pipeline.

Read-only operation; retrieves existing logs.

moderate

trigger_pipeline

Triggers a new CircleCI pipeline run.

Initiates a new pipeline execution, potentially consuming resources.

moderate

cancel_pipeline

Cancels a running CircleCI pipeline.

Stops a running pipeline, potentially interrupting workflows.

moderate

approve_workflow

Approves a pending CircleCI workflow.

Approves a workflow, potentially triggering further actions.

safe

list_pipelines

Lists available CircleCI pipelines.

Read-only operation; lists existing pipelines.

Security

Auth Method

API Key

Data Locality

hybrid

Known Risks

!Compromised CircleCI API token leading to unauthorized actions.
!Exposure of the API token in configuration files or environment variables.
!Potential for denial-of-service attacks if the MCP server is overwhelmed with requests.
!Injection vulnerabilities if user inputs are not properly sanitized before being passed to CircleCI API calls.

Safety Score

moderate risk

Positive

+Requires a CircleCI API token for authentication.
+Supports setting a maximum output length to limit response sizes.
+Can be configured to use a self-managed remote server, reducing local exposure.
+Primarily interacts with CircleCI's API, limiting direct system access.

Risks

-API token compromise could lead to unauthorized CircleCI actions.
-Improperly configured remote servers could expose the MCP server to external threats.
-Lack of explicit RBAC within the MCP server means the token's permissions are fully utilized.
-Write operations on CircleCI resources are possible, increasing risk.

Use Cases

CI/CD Management

-Triggering pipeline runs using natural language commands.
-Monitoring pipeline status and retrieving logs.
-Approving workflows that require manual intervention.

Troubleshooting

-Quickly identifying and retrieving logs from failed pipelines.
-Investigating pipeline performance issues.
-Comparing logs from different pipeline runs.

Automation

-Automating pipeline management tasks through natural language interfaces.
-Integrating CircleCI with other tools and services.
-Creating custom workflows based on natural language commands.

Who Is This For?

Best For

Developers who want to interact with CircleCI using natural language.
Teams that want to automate CI/CD tasks through a conversational interface.
Users who need to quickly troubleshoot pipeline failures.
Individuals who prefer using natural language over traditional CLI commands or web interfaces.

Not Ideal For

Environments where strict RBAC is required, as the MCP server relies on the API token's permissions.
Use cases requiring high throughput or low latency, as the natural language processing and API calls introduce overhead.
Scenarios where detailed auditing of all actions is necessary, as the MCP server's logging capabilities may be limited.

Autonomy & Execution

Default ModeConfigurable

Destructive Tools

Autonomy is governed by the permissions associated with the CircleCI API token. Ensure the token has appropriate, limited scope to minimize potential damage from automated actions.

StatelessYes

Retry LogicNot documented

ConcurrencySingle-threaded

Production Tip

Monitor the usage of the CircleCI API token and set up alerts for unusual activity to detect potential security breaches or performance issues.

FAQ

What is the purpose of the CircleCI MCP server?

It allows you to interact with CircleCI using natural language commands through the Model Context Protocol.

How do I authenticate with the CircleCI MCP server?

You need to provide a CircleCI API token with the necessary permissions.

What CircleCI actions can I perform with this MCP server?

You can trigger pipelines, retrieve logs, cancel pipelines, and approve workflows, among other things.

Is it safe to expose the CircleCI API token?

No, you should protect your API token and avoid exposing it in public repositories or insecure environments. Use environment variables or secure configuration management.

Can I limit the actions that the MCP server can perform?

Yes, by using a CircleCI API token with limited scope and permissions.

What happens if the CircleCI API token is compromised?

An attacker could use the token to perform unauthorized actions on your CircleCI account. Revoke the token immediately and generate a new one.

Does the MCP server support auditing of actions?

Auditing capabilities depend on the MCP client and CircleCI's own audit logs. The MCP server itself may not provide detailed logging.

Key Features

AI & LLM Development Data & Databases Search & Web Productivity Utilities Cloud & Infrastructure

Metrics

Discovered2/14/2026

Reviews0

Saved By0 users

Related Tools

Circleci | AI Builder Hub Review & Alternatives | Flaex AI