npm package discovery and stats viewer.

Discover Tips

  • General search

    [free text search, go nuts!]

  • Package details

    pkg:[package-name]

  • User packages

    @[username]

Sponsor

Optimize Toolset

I’ve always been into building performant and accessible sites, but lately I’ve been taking it extremely seriously. So much so that I’ve been building a tool to help me optimize and monitor the sites that I build to make sure that I’m making an attempt to offer the best experience to those who visit them. If you’re into performant, accessible and SEO friendly sites, you might like it too! You can check it out at Optimize Toolset.

About

Hi, 👋, I’m Ryan Hefner  and I built this site for me, and you! The goal of this site was to provide an easy way for me to check the stats on my npm packages, both for prioritizing issues and updates, and to give me a little kick in the pants to keep up on stuff.

As I was building it, I realized that I was actually using the tool to build the tool, and figured I might as well put this out there and hopefully others will find it to be a fast and useful way to search and browse npm packages as I have.

If you’re interested in other things I’m working on, follow me on Twitter or check out the open source projects I’ve been publishing on GitHub.

I am also working on a Twitter bot for this site to tweet the most popular, newest, random packages from npm. Please follow that account now and it will start sending out packages soon–ish.

Open Software & Tools

This site wouldn’t be possible without the immense generosity and tireless efforts from the people who make contributions to the world and share their work via open source initiatives. Thank you 🙏

© 2026 – Pkg Stats / Ryan Hefner

jambonz-mcp

v1.0.7

Published

MCP server for Jambonz documentation intelligence and REST API control.

Vulnerabilities

Powered byPowered by Snyk
  • 0High
  • 0Medium
  • 0Low

Links

Git

Maintainers

benjamingarridogbenjamingarridog

Keywords

Readme

jambonz-mcp

A Model Context Protocol (MCP) server for Jambonz documentation intelligence and REST API control. This package exposes Jambonz API reference as one MCP tool per REST endpoint and provides local documentation lookup for schemas, docs, and operational guidance.

Disclaimer: This is an independent community package. It is not an official Jambonz package and is not developed, maintained, or supported by the Jambonz team.

jambonz-mcp vs direct REST usage

This package provides an MCP interface into Jambonz. If you are wiring Jambonz into an agentic environment, this gives you structured tool discovery, endpoint-level schemas, permission gating, and reusable documentation context.

  • Direct REST: Better when you are writing a fixed application integration and already control the HTTP client, auth lifecycle, retries, and validation yourself.
  • MCP: Better when you want an agent to discover tools dynamically, inspect endpoint schemas, use docs as context, and execute Jambonz operations through a consistent tool surface.

Key Features

  • One tool per endpoint. Jambonz REST API reference is exposed as deterministic tools like jambonz_alerts_list_alerts_by_account.
  • Docs-aware. Exposes documentation tools, resources, and schema lookups for endpoint discovery.
  • Permission-gated. Enforces READ_ONLY, READ_WRITE, and ADMIN execution rules before endpoint-specific validation.
  • Credential-safe defaults. Sensitive endpoints that return secrets or tokens are automatically restricted to ADMIN.
  • Runtime defaults. Supports automatic AccountSid injection when JAMBONZ_ACCOUNT_SID is configured.

Requirements

  • Node.js 18 or newer
  • Codex, Claude Desktop, Cursor, Cline, VS Code, or any other MCP client

Getting started

First, install the Jambonz MCP server with your client.

Standard config works in most MCP clients:

{
  "mcpServers": {
    "jambonz": {
      "command": "npx",
      "args": [
        "-y",
        "jambonz-mcp"
      ],
      "env": {
        "JAMBONZ_API_TOKEN": "your-token",
        "JAMBONZ_ACCOUNT_SID": "your-account-sid",
        "JAMBONZ_API_PERMISSION_LEVEL": "READ_ONLY"
      }
    }
  }
}

Client setup

Use the Codex CLI:

codex mcp add jambonz --env JAMBONZ_API_TOKEN=your-token --env JAMBONZ_ACCOUNT_SID=your-account-sid --env JAMBONZ_API_PERMISSION_LEVEL=READ_ONLY -- npx -y jambonz-mcp

Or configure ~/.codex/config.toml:

[mcp_servers.jambonz]
command = "npx"
args = ["-y", "jambonz-mcp"]
startup_timeout_sec = 20
tool_timeout_sec = 120

[mcp_servers.jambonz.env]
JAMBONZ_API_TOKEN = "your-token"
JAMBONZ_ACCOUNT_SID = "your-account-sid"
JAMBONZ_API_PERMISSION_LEVEL = "READ_ONLY"

Follow the MCP install guide, using the standard config above.

Add the server to cline_mcp_settings.json:

{
  "mcpServers": {
    "jambonz": {
      "type": "stdio",
      "command": "npx",
      "timeout": 30,
      "args": [
        "-y",
        "jambonz-mcp"
      ],
      "env": {
        "JAMBONZ_API_TOKEN": "your-token",
        "JAMBONZ_ACCOUNT_SID": "your-account-sid",
        "JAMBONZ_API_PERMISSION_LEVEL": "READ_ONLY"
      }
    }
  }
}

Go to Cursor Settings -> MCP -> Add new MCP Server and use:

  • Command: npx
  • Args: -y jambonz-mcp

Add the same JAMBONZ_* environment variables from the standard config.

Follow the MCP install guide, using the standard config above.

What it exposes

Documentation tools

  • jambonz_docs_search
  • jambonz_docs_read
  • jambonz_docs_schema

REST tools

  • One MCP tool per REST endpoint under the Jambonz API Reference
  • Deterministic naming: jambonz_<domain>_<endpoint_slug>
  • Examples:
    • jambonz_alerts_list_alerts_by_account
    • jambonz_recent_calls_list_recent_calls
    • jambonz_users_create_user

Resources and prompts

  • jambonz://docs/index
  • jambonz://rest/catalog
  • jambonz://rest/usage
  • jambonz://runtime/defaults
  • jambonz://doc/{path}
  • jambonz://schema/{operationId}
  • Prompt: jambonz_usage_guide

Configuration

The server is configured through environment variables.

| Variable | Description | |----------|-------------| | JAMBONZ_DOCS_DIR | Local path to synced Jambonz docs. Default: docs/jambonz | | JAMBONZ_API_BASE_URL | Base URL for the Jambonz API. Default: https://jambonz.cloud/api | | JAMBONZ_API_TOKEN | Bearer token used for downstream Jambonz REST requests | | JAMBONZ_ACCOUNT_SID | Default AccountSid applied automatically to Account-scoped endpoints | | JAMBONZ_API_PERMISSION_LEVEL | Execution level: READ_ONLY, READ_WRITE, or ADMIN | | JAMBONZ_HTTP_TIMEOUT_MS | HTTP timeout in milliseconds. Default: 15000 | | JAMBONZ_ALLOW_TOKEN_OVERRIDE | Allow per-tool token override. Default: false | | JAMBONZ_ALLOW_BASE_URL_OVERRIDE | Allow per-tool base URL override. Default: false |

Permission model

  • READ_ONLY: GET
  • READ_WRITE: GET, POST, PUT, PATCH
  • ADMIN: GET, POST, PUT, PATCH, DELETE

Additional rule:

  • Endpoints that return secrets, tokens, passwords, webhook secrets, API keys, or similar credential material are forced to ADMIN even if the HTTP method is GET.

Documentation behavior

The package can run without local docs, but the documentation tools depend on a synced docs directory.

If you want the full docs surface (jambonz_docs_*, jambonz://doc/{path}, jambonz://schema/{operationId}), set JAMBONZ_DOCS_DIR to a local synced copy of the Jambonz docs.

Runtime guidance for agents:

  • jambonz://runtime/defaults tells the agent which permission level is active and whether a default AccountSid is already configured.
  • If JAMBONZ_ACCOUNT_SID is set, agents can omit pathParams.AccountSid for Account-scoped routes.
  • Permission failures return before endpoint-specific argument validation for blocked methods.

Development

If you are working from source instead of using the published package:

  1. Install dependencies:
    • npm install
  2. Sync local Jambonz docs:
    • npm run jambonz:sync
  3. Regenerate the REST catalog:
    • npm run rest:catalog:generate
  4. Validate:
    • npm run typecheck
    • npm test

Commands

  • npm run dev: Start the MCP server with stdio transport from source
  • npm run build: Build the published ESM bundle
  • npm run typecheck: Run TypeScript validation
  • npm test: Run deterministic unit tests
  • npm run protocol:sync: Refresh local MCP protocol docs in docs/protocol
  • npm run jambonz:sync: Refresh local Jambonz docs in docs/jambonz
  • npm run rest:catalog:generate: Regenerate src/rest/catalog.generated.ts
  • npm run rest:catalog:check: Verify the generated REST catalog is current
  • npm run inspect: Launch MCP Inspector against the local source build
  • npm run inspect:help: Show MCP Inspector CLI options

Release

This repository publishes the package to npm on Git tags that match v* using GitHub Actions.

Release flow:

  1. Ensure package.json version matches the intended release
  2. Push a tag such as v1.0.3
  3. Configure the repository secret NPM_TOKEN

The workflow installs dependencies, installs the Linux Rollup native binary explicitly, runs typecheck, runs test, builds dist/, and publishes with provenance enabled.