@skillsmith/mcp-server
v0.4.6
Published
MCP server for Skillsmith skill discovery
Maintainers
wrsmith108Readme
@skillsmith/mcp-server
Important: The bare
skillsmithpackage on npm is not this project. Install@skillsmith/mcp-serverfor the MCP server or@skillsmith/clifor CLI usage.
MCP (Model Context Protocol) server for agent skill discovery, installation, and management.
What's New in v0.4.5
- Dependency intelligence:
skill_validatewarns on deprecated dependencies and undeclared MCP server references.install_skill,get_skill, anduninstall_skillnow surface dependency data. skill_outdatedtool: Check installed skills for staleness and dependency satisfaction status.- Encrypted skill detection:
install_skilldetects git-crypt encrypted skills and returns a clear error instead of misleading validation messages. - v0.4.5 fix: Resolved missing dependency export that broke v0.4.4 installations.
See CHANGELOG.md for previous releases.
Auto-Update Notifications
The MCP server checks for updates on startup and notifies you when a newer version is available:
[skillsmith] Update available: 0.4.4 → 0.4.5
Restart your MCP client to use the latest version.To disable update checks, set SKILLSMITH_AUTO_UPDATE_CHECK=false in your environment.
Installation
npm install @skillsmith/mcp-serverQuick Start
Copy this MCP configuration snippet:
Add this MCP server to my settings.json:
{
"mcpServers": {
"skillsmith": {
"command": "npx",
"args": ["-y", "@skillsmith/mcp-server"]
}
}
}Platform Configuration
Skillsmith works with any MCP-compatible AI agent platform. Add the following to your platform's MCP config file:
Claude Code (~/.claude/settings.json):
{
"mcpServers": {
"skillsmith": {
"command": "npx",
"args": ["-y", "@skillsmith/mcp-server"],
"env": {
"SKILLSMITH_API_KEY": "sk_live_your_key_here"
}
}
}
}OpenClaw / Cursor / Codex / Antigravity / GitHub Copilot / other MCP clients (openclaw.json or equivalent):
{
"mcpServers": {
"skillsmith": {
"command": "npx",
"args": ["-y", "@skillsmith/mcp-server"],
"env": {
"SKILLSMITH_API_KEY": "sk_live_your_key_here"
}
}
}
}Get your API key at https://skillsmith.app/account (free Community tier available).
After adding to your MCP client settings and restarting, try asking:
"Search for testing skills"
"Find verified skills for git workflows"
"Install the commit skill"
"Compare jest-helper and vitest-helper"Live Skill Registry
The Skillsmith API provides access to 14,000+ curated skills from 20,000+ on GitHub that are:
- Indexed daily from GitHub repositories
- Security screened hourly for vulnerabilities and malicious patterns
- Quality scored based on documentation, structure, and community feedback
- Categorized by trust tier (Verified, Community, Experimental)
Skills are served from api.skillsmith.app and cached locally for 24 hours.
Note (v0.3.8): Fixed critical bug where the MCP server defaulted to offline mode for all users. Search now correctly connects to the production API.
Why Configure an API Key?
Without an API key, you're limited to 10 total requests (trial mode). With a free Community account, you get 30 requests/minute with access to all live skills.
Benefits of API key:
- Access to live indexed skills (not just cached)
- Higher rate limits based on your tier
- Usage tracking on your dashboard
- Priority during high-traffic periods
API Key Configuration
Step 1: Get your API key from https://skillsmith.app/account
Step 2: Add to your Claude settings at ~/.claude/settings.json:
{
"mcpServers": {
"skillsmith": {
"command": "npx",
"args": ["-y", "@skillsmith/mcp-server"],
"env": {
"SKILLSMITH_API_KEY": "sk_live_your_key_here"
}
}
}
}Step 3: Restart your MCP client
Security Note: Never paste your API key in chat. Configure it via the settings file above. For testing, set the env var using the appropriate command for your platform:
| Platform | Command | |----------|---------| | Mac/Linux |
!export SKILLSMITH_API_KEY='your-key-here'| | Windows PowerShell |!$env:SKILLSMITH_API_KEY='your-key-here'| | Windows CMD |!set SKILLSMITH_API_KEY=your-key-here|The
!prefix in Claude Code runs the command without exposing the output.
Rate Limits by Tier
| Tier | Rate Limit | Monthly Cost | Best For | |------|------------|--------------|----------| | Trial | 10 total | Free | Quick evaluation | | Community | 30/min | Free | Personal projects | | Individual | 60/min | $9.99/mo | Active developers | | Team | 120/min | $25/user/mo | Development teams | | Enterprise | 300/min | $55/user/mo | Large organizations |
All tiers include:
- Full access to skill search, details, and recommendations
- Security screening results
- Quality scores and trust tier information
API Configuration
| Variable | Default | Description |
|----------|---------|-------------|
| SKILLSMITH_API_KEY | - | Personal API key for usage tracking |
| SKILLSMITH_API_URL | https://api.skillsmith.app/functions/v1 | API endpoint |
| SKILLSMITH_OFFLINE_MODE | false | Use local database instead |
| SKILLSMITH_TELEMETRY | true | Enable anonymous telemetry |
Available Tools
| Tool | Description | Tier |
|------|-------------|------|
| search | Search for skills with filters | Community |
| get_skill | Get detailed skill information | Community |
| install_skill | Install a skill to ~/.claude/skills | Community |
| uninstall_skill | Remove an installed skill | Community |
| skill_recommend | Get contextual skill recommendations | Community |
| skill_validate | Validate a skill's structure | Community |
| skill_compare | Compare skills side-by-side | Community |
| skill_suggest | Suggest skills based on project context (counts against monthly quota) | Community |
| skill_outdated | Check installed skills for staleness and dependency status | Community |
| index_local | Index skills from a local directory | Community |
| skill_publish | Prepare a skill for publishing | Community |
| skill_rescan | Re-scan an installed skill's content | Community |
| skill_updates | Check registry for newer skill versions | Individual+ |
| skill_diff | Section-level diff between skill versions | Individual+ |
| skill_pack_audit | Audit all skills in a directory | Individual+ |
| skill_audit | Check skills for security advisories | Team+ |
Tool Parameters
search
Search for skills matching a query.
| Parameter | Type | Required | Description |
|-----------|------|----------|-------------|
| query | string | Yes | Search term (min 2 characters) |
| category | string | No | Filter by category (development, testing, devops, etc.) |
| trust_tier | string | No | Filter by trust level (verified, community, experimental) |
| min_score | number | No | Minimum quality score (0-100) |
| limit | number | No | Max results (default 10) |
Response fields include: repository_url, homepage_url (when declared by the skill author), and compatibility tags (LLMs, IDEs, platforms supported).
get_skill
Get detailed information about a specific skill.
| Parameter | Type | Required | Description |
|-----------|------|----------|-------------|
| id | string | Yes | Skill ID in format author/name |
Response fields include: also_installed — an array of skills frequently co-installed alongside this one (surfaced once ≥5 co-installs are observed). Each entry contains skillId, name, description, and installCount.
install_skill
Install a skill to your local environment.
| Parameter | Type | Required | Description |
|-----------|------|----------|-------------|
| id | string | Yes | Skill ID to install |
uninstall_skill
Remove an installed skill.
| Parameter | Type | Required | Description |
|-----------|------|----------|-------------|
| id | string | Yes | Skill ID to uninstall |
skill_recommend
Get skill recommendations based on context.
| Parameter | Type | Required | Description |
|-----------|------|----------|-------------|
| context | string | Yes | Description of your project or needs |
| limit | number | No | Max recommendations (default 5) |
skill_validate
Validate a skill's SKILL.md file.
| Parameter | Type | Required | Description |
|-----------|------|----------|-------------|
| path | string | Yes | Path to skill directory or SKILL.md |
skill_compare
Compare multiple skills side-by-side.
| Parameter | Type | Required | Description |
|-----------|------|----------|-------------|
| skill_ids | string[] | Yes | Array of skill IDs to compare (2-5) |
skill_suggest
Proactively suggest relevant skills based on current project context. Counts against your monthly API quota.
| Parameter | Type | Required | Description |
|-----------|------|----------|-------------|
| project_path | string | Yes | Absolute path to the project directory |
| current_file | string | No | File currently being edited |
| recent_commands | string[] | No | Recent terminal commands (last 5) |
| error_message | string | No | Recent error message, if any |
| installed_skills | string[] | No | Currently installed skill IDs (for filtering) |
| limit | number | No | Max suggestions to return (default 3, max 10) |
| session_id | string | No | Session identifier (optional, for informational purposes) |
skill_outdated
Check installed skills for available updates and dependency satisfaction status.
| Parameter | Type | Required | Description |
|-----------|------|----------|-------------|
| include_deps | boolean | No | Include dependency satisfaction status (default: true) |
skill_diff
Show a section-level diff between two versions of a skill. Returns added, removed, and modified headings along with a change type (major/minor/patch) and update recommendation. Requires Individual tier or higher.
| Parameter | Type | Required | Description |
|-----------|------|----------|-------------|
| skillId | string | Yes | Registry skill identifier (e.g. author/skill-name) |
| oldContent | string | Yes | Previous SKILL.md content |
| newContent | string | Yes | Updated SKILL.md content |
| oldRiskScore | number | No | Risk score of the old version (0–100) |
| newRiskScore | number | No | Risk score of the new version (0–100) |
| hasLocalModifications | boolean | No | Whether the installed skill has local edits (default: false) |
| trustTier | string | No | Registry trust tier: verified, community, experimental (default: community) |
skill_audit
Check installed skills for known security advisories. Requires Team tier or higher. The advisory system is in early access.
| Parameter | Type | Required | Description |
|-----------|------|----------|-------------|
| skillIds | string[] | No | Specific skill IDs to audit (omit to return all skills with active advisories) |
index_local
Index local skills from ~/.claude/skills/ directory.
| Parameter | Type | Required | Description |
|-----------|------|----------|-------------|
| force | boolean | No | Force re-indexing even if cache is valid (default: false) |
| skillsDir | string | No | Custom skills directory path (defaults to ~/.claude/skills/) |
Trust Tiers
| Tier | Description |
|------|-------------|
| verified | Official platform skills |
| community | Community-reviewed skills |
| experimental | New/beta skills |
| unknown | Unverified skills |
Environment Variables
| Variable | Description | Default |
|----------|-------------|---------|
| SKILLSMITH_DB_PATH | Database file location | ~/.skillsmith/skills.db |
| SKILLSMITH_TELEMETRY_ENABLED | Enable anonymous telemetry | false |
| SKILLSMITH_USE_WASM | Force WASM SQLite driver (sql.js) | false |
| POSTHOG_API_KEY | PostHog API key (required if telemetry enabled) | - |
WASM Fallback (v0.3.18+)
The MCP server automatically falls back to a WASM-based SQLite driver (sql.js) when native better-sqlite3 is unavailable. This ensures the server works in environments where native modules can't be compiled.
The fallback is automatic—no configuration needed. To force WASM mode:
export SKILLSMITH_USE_WASM=trueTelemetry
Skillsmith includes optional, anonymous telemetry to help improve the product. Telemetry is disabled by default.
To enable telemetry:
export SKILLSMITH_TELEMETRY_ENABLED=true
export POSTHOG_API_KEY=your_api_keySee PRIVACY.md for full details on what data is collected and how it's used.