npm package discovery and stats viewer.

Discover Tips

  • General search

    [free text search, go nuts!]

  • Package details

    pkg:[package-name]

  • User packages

    @[username]

Sponsor

Optimize Toolset

I’ve always been into building performant and accessible sites, but lately I’ve been taking it extremely seriously. So much so that I’ve been building a tool to help me optimize and monitor the sites that I build to make sure that I’m making an attempt to offer the best experience to those who visit them. If you’re into performant, accessible and SEO friendly sites, you might like it too! You can check it out at Optimize Toolset.

About

Hi, 👋, I’m Ryan Hefner  and I built this site for me, and you! The goal of this site was to provide an easy way for me to check the stats on my npm packages, both for prioritizing issues and updates, and to give me a little kick in the pants to keep up on stuff.

As I was building it, I realized that I was actually using the tool to build the tool, and figured I might as well put this out there and hopefully others will find it to be a fast and useful way to search and browse npm packages as I have.

If you’re interested in other things I’m working on, follow me on Twitter or check out the open source projects I’ve been publishing on GitHub.

I am also working on a Twitter bot for this site to tweet the most popular, newest, random packages from npm. Please follow that account now and it will start sending out packages soon–ish.

Open Software & Tools

This site wouldn’t be possible without the immense generosity and tireless efforts from the people who make contributions to the world and share their work via open source initiatives. Thank you 🙏

© 2026 – Pkg Stats / Ryan Hefner

@rui.branco/1password-mcp

v0.1.7

Published

1Password MCP server for any MCP-compatible AI client (Claude Code, Codex, Antigravity, Cursor, etc.) - list vaults and items, get secrets, generate passwords, manage items via service accounts. Multi-instance like jira-mcp.

Vulnerabilities

Powered byPowered by Snyk
  • 0High
  • 0Medium
  • 0Low

Links

Maintainers

rui.brancorui.branco

Keywords

mcpmodel-context-protocol1passwordclaudeclaude-code

Readme

1Password MCP Server

A Model Context Protocol (MCP) server for 1Password that runs entirely locally — no external services, no telemetry, no leaks. Uses the official @1password/sdk with a 1Password Service Account token.

Works with any MCP-compatible AI client — Claude Code, Codex CLI, Google's Antigravity (Gemini), Cursor, Windsurf, Zed, and others. Built to mirror the multi-instance pattern of jira-mcp so you can point the same session at multiple 1Password accounts (e.g. work and personal).

Features

  • Multi-instance — add several service accounts, switch per tool call via instance parameter
  • Local only — all calls go directly from your machine to 1Password over TLS; the config file is stored 0600 in ~/.config/1password-mcp/config.json
  • Redaction by default — concealed fields (passwords, TOTP) are redacted unless you explicitly pass includeConcealed: true
  • Read + write — list vaults/items, fetch full items, resolve op:// references, generate passwords, create/delete items, create/delete vaults

Installation

Prerequisites

  • Node.js 18+
  • An MCP-compatible AI client (see Step 1 below)
  • Either:
    • The 1Password 8 desktop app (recommended — no admin permissions needed, and you get access to all vaults you can already see), or
    • A 1Password service account token (needs admin to provision, scoped to shared vaults only — good for CI/headless use)

Step 1: Register with your MCP client

Pick the snippet for your client. All of them launch the server over stdio.

Claude Code:

claude mcp add --scope user --transport stdio 1password -- npx -y @rui.branco/1password-mcp

Codex CLI: add to ~/.codex/config.toml:

[mcp_servers.1password]
command = "npx"
args = ["-y", "@rui.branco/1password-mcp"]

Google Antigravity / Gemini CLI: add to ~/.gemini/settings.json:

{
  "mcpServers": {
    "1password": { "command": "npx", "args": ["-y", "@rui.branco/1password-mcp"] }
  }
}

Cursor, Windsurf, Zed, Cline, Continue, etc.: add the same command/args pair to whatever JSON config that client uses for MCP servers (the exact path varies, but the shape is standard across clients).

Step 2: Run setup

npx @rui.branco/1password-mcp setup

The setup wizard walks you through picking an auth mode and validates the connection before saving.

Step 3 (desktop auth only): One-time 1Password 8 toggles

Desktop auth delegates unlock to the 1Password 8 desktop app, so you need to enable the SDK integration once per machine:

  1. Open the 1Password 8 desktop app (not my.1password.com in the browser).
  2. Open Settings (cmd+, on Mac / ctrl+, on Windows).
  3. Click the Developer tab.
  4. Under Command-Line Interface (CLI), tick "Integrate with 1Password CLI".
  5. Under Integrate with the 1Password SDKs, tick "Integrate with other apps". ← This is the critical one. Without it, the SDK cannot unlock and every call will fail with DesktopSessionExpiredError.
  6. Optional: Settings → Security → Unlock using Touch ID so the OS prompt can be cleared with your fingerprint.

The first time the MCP actually calls 1Password, your OS will pop an authorization prompt asking whether 1password-mcp-setup (during the wizard) and 1password-mcp (at runtime) can talk to 1Password. Click Approve.

Finding your account name

When the wizard asks for "Account name", open the 1Password 8 desktop app and click the account switcher in the top-left. The signin address shown next to your name is what you want — it looks like my.1password.com, my-team.1password.com, or similar.

Step 4: Reconnect

Restart your AI client and check its MCP status (e.g. /mcp in Claude Code, mcp in Codex CLI, or the equivalent panel in your client) to reconnect the 1password server and pick up the new config.

Tools

| Tool | Description | |---|---| | op_list_instances | List configured service accounts (tokens never returned) | | op_add_instance | Add/update an instance. Validates the token against the API. | | op_remove_instance | Remove an instance by name | | op_list_vaults | List vaults visible to the service account | | op_list_items | List items in a vault (by vault id or title) | | op_search_items | Title-substring search across one or all vaults | | op_get_item | Fetch a full item. Concealed fields redacted unless includeConcealed=true. | | op_get_secret | Resolve a op://Vault/Item/field secret reference | | op_generate_password | Generate Random / Memorable / Pin passwords via the 1Password generator | | op_create_item | Create a new item with fields, tags, and websites | | op_delete_item | Delete an item | | op_create_vault | Create a new vault | | op_delete_vault | Delete a vault |

All tools that talk to 1Password accept an optional instance parameter. Omit it to use the default instance.

Security notes

  • Tokens live only in ~/.config/1password-mcp/config.json (chmod 0600) and in the SDK client process. They are never logged or transmitted anywhere except to *.1password.com.
  • Service accounts only see vaults that have been explicitly shared with them — personal vaults are inaccessible by design.
  • Concealed fields are redacted by default in tool output so the model cannot accidentally quote a password back. Pass includeConcealed: true only when you actually need the cleartext.

Config shape

{
  "instances": [
    { "name": "work", "token": "ops_...", "description": "ITO service account" }
  ],
  "defaultInstance": "work"
}

License

MIT