npm package discovery and stats viewer.

Discover Tips

  • General search

    [free text search, go nuts!]

  • Package details

    pkg:[package-name]

  • User packages

    @[username]

Sponsor

Optimize Toolset

I’ve always been into building performant and accessible sites, but lately I’ve been taking it extremely seriously. So much so that I’ve been building a tool to help me optimize and monitor the sites that I build to make sure that I’m making an attempt to offer the best experience to those who visit them. If you’re into performant, accessible and SEO friendly sites, you might like it too! You can check it out at Optimize Toolset.

About

Hi, 👋, I’m Ryan Hefner  and I built this site for me, and you! The goal of this site was to provide an easy way for me to check the stats on my npm packages, both for prioritizing issues and updates, and to give me a little kick in the pants to keep up on stuff.

As I was building it, I realized that I was actually using the tool to build the tool, and figured I might as well put this out there and hopefully others will find it to be a fast and useful way to search and browse npm packages as I have.

If you’re interested in other things I’m working on, follow me on Twitter or check out the open source projects I’ve been publishing on GitHub.

I am also working on a Twitter bot for this site to tweet the most popular, newest, random packages from npm. Please follow that account now and it will start sending out packages soon–ish.

Open Software & Tools

This site wouldn’t be possible without the immense generosity and tireless efforts from the people who make contributions to the world and share their work via open source initiatives. Thank you 🙏

© 2026 – Pkg Stats / Ryan Hefner

nosfir-mcp

v1.1.2

Published

Nosfir MCP Server — Connect AI agents to your Nosfir backend (storage, database, auth, OTP, notifications, functions, hosting, releases, logs and banlist)

Readme

nosfir-mcp

Model Context Protocol (MCP) server for Nosfir — the self-hosted BaaS that runs on Telegram. Gives AI agents (Claude, Cursor, Copilot, or any MCP client) a typed, zod-validated toolbox to manage your Nosfir backend end to end.

Install

npm install -g nosfir-mcp

Or run on demand:

npx nosfir-mcp

Configure

Two environment variables are required:

| Variable | Description | | --- | --- | | NOSFIR_BASE_URL | Root URL of your Nosfir deployment (e.g. https://api.nosfir.online). | | NOSFIR_API_KEY | MCP admin token. Generate it from the Developer panel in the Nosfir dashboard. |

Claude Desktop

Add an entry to your claude_desktop_config.json:

{
  "mcpServers": {
    "nosfir": {
      "command": "npx",
      "args": ["-y", "nosfir-mcp"],
      "env": {
        "NOSFIR_BASE_URL": "https://api.nosfir.online",
        "NOSFIR_API_KEY": "nx_live_..."
      }
    }
  }
}

Cursor / Windsurf

Same shape in ~/.cursor/mcp.json or the equivalent config file for your editor.

Capabilities

82 tools across 11 categories:

| Category | Tools | Examples | | --- | --- | --- | | Storage | 10 | listFiles, uploadFile, getFile, deleteFile, generateSignedUrl | | Database | 7 | listCollections, createDocument, queryDocuments, updateDocument | | Auth | 7 | listUsers, banUser, unbanUser, notifyUser | | OTP | 7 | sendOtp, verifyOtp, startOtpLink, pollOtpLink | | Notify | 8 | sendNotification, listChannels, broadcastToProject | | Functions | 13 | listFunctions, invokeFunction, deployFunction, rotateFunctionSecret | | Hosting | 16 | createSite, triggerGitHubDeploy, rollbackDeployment, setEnvVars | | Admin | 6 | listApiKeys, createApiKey, rotateApiKey, deleteApiKey, getUsage | | Banlist | 3 | listProjectBans, addProjectBan, removeProjectBan (project-scoped Telegram bans) | | Releases | 2 | uploadRelease, getLatestRelease | | Logs | 3 | getActivityLogs, getLogStats, clearOldLogs |

Two resources are exposed as well:

  • nosfir://account/context — snapshot of the active workspace (projects, buckets, recent files).
  • nosfir://docs/integration-guide — the official Nosfir integration guide fetched from your deployment.

Security notes

  • NOSFIR_API_KEY is an admin-scope token. Rotate it regularly — the server itself exposes rotateApiKey so agents can refresh it before the 90-day TTL (MCP_KEY_TTL_DAYS) lapses.
  • All auth flows in the Nosfir backend consult the project-scoped banlist (project_user_banlist) as of migration 044, so addProjectBan with a telegramChatId blocks register / verify / login / refresh / reset-password for that identity inside the project without touching others.

Changelog

1.1.2

  • rotateApiKey now requires the owner account password as a re-authentication guard, matching the Phase 1 backend behaviour that prevents a compromised admin token from silently rotating itself.

1.1.1

  • Fixed the Available Services block at the bottom of the nosfir://account/context resource: it now lists the true 11 services (Storage, Database, Auth, OTP, Notify, Functions, Hosting, Realtime, Releases, Logs, Admin/Banlist). Previously it stopped at 7 and missed Realtime, Releases, Logs, and Admin/Banlist, which misled agents about what they could do.

1.1.0

  • New Admin category: listApiKeys, createApiKey, rotateApiKey, deleteApiKey, updateApiKey, getUsage.
  • New Banlist category wired to the Phase 2 project-scoped banlist.
  • New Releases category for APK / EXE distribution.
  • New Logs category for activity log analytics.
  • Declared an explicit files whitelist so npm ships only dist/ and README.md.
  • Added engines.node >= 18 and a prepublishOnly build guard.

1.0.0

  • Initial public release with 68 tools across 7 categories (Storage, Database, Auth, OTP, Notify, Functions, Hosting).

License

Proprietary. Contact the maintainer for self-host licensing terms.