npm package discovery and stats viewer.

Discover Tips

  • General search

    [free text search, go nuts!]

  • Package details

    pkg:[package-name]

  • User packages

    @[username]

Sponsor

Optimize Toolset

I’ve always been into building performant and accessible sites, but lately I’ve been taking it extremely seriously. So much so that I’ve been building a tool to help me optimize and monitor the sites that I build to make sure that I’m making an attempt to offer the best experience to those who visit them. If you’re into performant, accessible and SEO friendly sites, you might like it too! You can check it out at Optimize Toolset.

About

Hi, 👋, I’m Ryan Hefner  and I built this site for me, and you! The goal of this site was to provide an easy way for me to check the stats on my npm packages, both for prioritizing issues and updates, and to give me a little kick in the pants to keep up on stuff.

As I was building it, I realized that I was actually using the tool to build the tool, and figured I might as well put this out there and hopefully others will find it to be a fast and useful way to search and browse npm packages as I have.

If you’re interested in other things I’m working on, follow me on Twitter or check out the open source projects I’ve been publishing on GitHub.

I am also working on a Twitter bot for this site to tweet the most popular, newest, random packages from npm. Please follow that account now and it will start sending out packages soon–ish.

Open Software & Tools

This site wouldn’t be possible without the immense generosity and tireless efforts from the people who make contributions to the world and share their work via open source initiatives. Thank you 🙏

© 2026 – Pkg Stats / Ryan Hefner

tailscale-mcp-server

v1.2.2

Published

A Model Context Protocol (MCP) server that provides seamless integration with Tailscale's CLI commands and REST API, enabling automated network management and monitoring through a standardized interface.

Vulnerabilities

Powered byPowered by Snyk
  • 0High
  • 0Medium
  • 0Low

Links

Git

Maintainers

eyal-iolasoftwareeyal-iolasoftware

Keywords

tailscalemcpmodel context protocoltailscale mcptailscale mcp server

Readme

Tailscale MCP Server

A Model Context Protocol server for operating Tailscale from MCP clients.

It supports local stdio usage for desktop clients and an authenticated HTTP transport for private tailnet deployments. The server defaults to read-only access, localhost binding, and short-lived OAuth credentials where available.

Fork notice. Security-hardened fork of HexSleeves/tailscale-mcp: adds REST path-segment encoding, https enforcement for TAILSCALE_API_BASE_URL, rate-limit bucket eviction, and removes the unused legacy server stack. Distributed as tailscale-mcp-server (npm) and @eyalm321/tailscale-mcp-server (GitHub Packages).

Features

  • Tailscale device, route, DNS, ACL, key, webhook, exit-node, and tag management.
  • Read-only MCP resources for tailnet summaries, devices, and ACL state.
  • MCP prompts for connectivity diagnosis and ACL review.
  • Risk-gated tools: read, write, and admin.
  • OAuth client credentials with API key compatibility.
  • Private HTTP mode with bearer auth, host validation, request limits, and health checks.
  • Docker support for local builds and private Tailscale Serve deployments.

Requirements

  • Node.js 20 or newer to run (npx). Bun also works.
  • Tailscale API access through one of:
    • OAuth client credentials: TAILSCALE_OAUTH_CLIENT_ID and TAILSCALE_OAUTH_CLIENT_SECRET.
    • Legacy API key: TAILSCALE_API_KEY.
  • Local Tailscale CLI for CLI-backed tools such as status, ping, connect, and disconnect.

Install

From npm (unscoped, default registry):

npx -y tailscale-mcp-server
# or install
npm install -g tailscale-mcp-server

From GitHub Packages (scoped). Add to .npmrc:

@eyalm321:registry=https://npm.pkg.github.com

then:

npm install @eyalm321/tailscale-mcp-server

MCP Client Setup

Use stdio for local MCP clients.

{
  "mcpServers": {
    "tailscale": {
      "command": "npx",
      "args": ["-y", "tailscale-mcp-server"],
      "env": {
        "TAILSCALE_OAUTH_CLIENT_ID": "your-client-id",
        "TAILSCALE_OAUTH_CLIENT_SECRET": "your-client-secret",
        "TAILSCALE_TAILNET": "-"
      }
    }
  }
}

For API key compatibility:

{
  "mcpServers": {
    "tailscale": {
      "command": "npx",
      "args": ["-y", "tailscale-mcp-server"],
      "env": {
        "TAILSCALE_API_KEY": "tskey-...",
        "TAILSCALE_TAILNET": "-"
      }
    }
  }
}

HTTP Transport

HTTP mode is intended for private tailnet access. It requires MCP_HTTP_BEARER_TOKEN and binds to 127.0.0.1 by default.

export MCP_TRANSPORT=http
export MCP_HTTP_BEARER_TOKEN="$(openssl rand -base64 32)"
export TAILSCALE_OAUTH_CLIENT_ID="your-client-id"
export TAILSCALE_OAUTH_CLIENT_SECRET="your-client-secret"
export TAILSCALE_TAILNET="-"

npx -y tailscale-mcp-server --http --host 127.0.0.1 --port 3000

Expose HTTP mode privately with Tailscale Serve:

tailscale serve --bg 443 localhost:3000

Do not use Funnel for normal MCP operation. Funnel makes the endpoint publicly reachable and should be reviewed separately.

Configuration

| Variable | Default | Description | | --- | --- | --- | | MCP_TRANSPORT | stdio | Transport mode: stdio or http. | | MCP_HTTP_BIND_HOST | 127.0.0.1 | HTTP bind host. | | MCP_HTTP_PORT | 3000 | HTTP bind port. | | MCP_HTTP_BEARER_TOKEN | | Required for HTTP mode. | | MCP_ALLOWED_HOSTS | | Comma-separated additional allowed HTTP Host values. | | TAILSCALE_TAILNET | - | Tailnet name or - shorthand. | | TAILSCALE_API_BASE_URL | https://api.tailscale.com | Tailscale API base URL. | | TAILSCALE_OAUTH_CLIENT_ID | | Preferred auth method. | | TAILSCALE_OAUTH_CLIENT_SECRET | | Preferred auth method. | | TAILSCALE_API_KEY | | API key fallback. | | TAILSCALE_ALLOWED_TOOL_RISK | read | Maximum allowed tool risk: read, write, or admin. | | TAILSCALE_CLI_PATH | tailscale | Local Tailscale CLI path. | | LOG_LEVEL | info | debug, info, warn, or error. | | MCP_SERVER_LOG_FILE | | Optional file log path. |

Risk levels:

  • read: list devices, inspect status, read resources, and run diagnostics.
  • write: update ACLs, DNS, routes, policy files, webhooks, tags, and other mutating tailnet settings.
  • admin: destructive or host-affecting operations such as delete, deauthorize, connect, disconnect, auth key mutation, and file sharing changes.

Capabilities

Tools:

  • Devices: list_devices, device_action, manage_routes.
  • Network: get_network_status, connect_network, disconnect_network, ping_peer, get_version.
  • Administration: get_tailnet_info, manage_acl, manage_dns, manage_keys, manage_policy_file, manage_file_sharing, manage_exit_nodes, manage_webhooks, manage_device_tags.

Resources:

  • tailscale://tailnet/summary
  • tailscale://devices
  • tailscale://devices/{deviceId}
  • tailscale://acl/current

Prompts:

  • diagnose_tailnet_connectivity
  • review_acl_change

Docker

Build locally:

docker build -t tailscale-mcp-server .

Run HTTP mode on localhost:

docker run --rm \
  -e MCP_HTTP_BEARER_TOKEN="$MCP_HTTP_BEARER_TOKEN" \
  -e TAILSCALE_OAUTH_CLIENT_ID="$TAILSCALE_OAUTH_CLIENT_ID" \
  -e TAILSCALE_OAUTH_CLIENT_SECRET="$TAILSCALE_OAUTH_CLIENT_SECRET" \
  -e TAILSCALE_TAILNET="-" \
  -p 127.0.0.1:3000:3000 \
  tailscale-mcp-server

For a sidecar deployment that exposes the server with private Tailscale Serve, see deploy/README.md.

Development

Build/test toolchain uses Bun:

bun install
bun run typecheck
bun test
bun run check
bun run build

Full verification:

bun run qa:full

Security audit:

bun audit