A community-driven registry for the Claude Code ecosystem. Not affiliated with Anthropic.
Are you the author? Sign in to claim
Open source GitLab MCP server for AI assistants: 2-tool dynamic find/execute over 870+ GitLab actions (1,000+ Enterprise
A Model Context Protocol (MCP) server that exposes the entire GitLab API as MCP tools, resources, and prompts for AI assistants. Single static binary — zero dependencies.
Security first: Continuously monitored on SonarCloud with quality gates, coverage, and security scanning. Supports read-only mode, safe mode (dry-run preview), and self-hosted GitLab with TLS verification.
Repository mirror: GitHub is the canonical repository. A read-only mirror of the code and releases is available on GitLab.com for discoverability; please open code contributions on GitHub.
Measured with go run ./cmd/gen_readme/ against the current base catalog. Totals estimate startup context visible to an MCP client: visible tool schemas plus shared resources and prompts, using the same byte/4 token heuristic as cmd/audit_tokens.
Default configuration: with TOOL_SURFACE unset or TOOL_SURFACE=dynamic, CAPABILITY_SURFACE=full, META_TOOLS unset, META_PARAM_SCHEMA=opaque, and GITLAB_ENTERPRISE unset or false, the server uses the dynamic find/execute surface. Use TOOL_SURFACE=meta only when you explicitly want domain meta-tools; use TOOL_SURFACE=individual only when your client can handle the full tool catalog.
Configuration (TOOL_SURFACE / CAPABILITY_SURFACE) | Visible tools | Reachable actions | META_PARAM_SCHEMA | Tool schema tokens | Shared tokens | Total tokens |
|---|---|---|---|---|---|---|
dynamic / full (default) | 2 | 871 | n/a | 2,204 | 18,284 | 20,488 |
dynamic / minimal | 2 | 871 | n/a | 2,204 | 740 | 2,944 |
meta / full | 34 | 871 | opaque | 87,392 | 18,284 | 105,676 |
meta / minimal | 34 | 871 | opaque | 87,392 | 740 | 88,132 |
individual / full | 867 | 867 | n/a | 473,799 | 18,284 | 492,083 |
Rows use the base Community Edition catalog (GITLAB_ENTERPRISE=false). META_PARAM_SCHEMA=opaque affects only visible meta-tool input schemas; dynamic mode gets exact action schemas from gitlab_find_action, and every surface advertises gitlab://tools plus gitlab://tools/{id} for on-demand action browsing and input schemas. Individual mode already exposes one schema per tool.
internal/tools: projects, branches, tags, releases, merge requests, issues, pipelines, jobs, groups, users, wikis, environments, deployments, packages, container registry, runners, feature flags, CI/CD variables, security attributes, security categories, templates, admin settings, access tokens, deploy keys, Orbit, and moregitlab_find_action and gitlab_execute_action while keeping the same canonical GitLab action catalog. Optional domain meta-tools remain available with TOOL_SURFACE=meta: 33 base, 49 on self-managed Enterprise/Premium, or 50 on GitLab.com Enterprise/Premiumgitlab_analyze meta-tool (MCP sampling capability)gitlab://tools manifest and gitlab://tools/{id} detail template, workspace roots, and 5 workflow best-practice guidesSizes: ["any"]) on all tools, resources, and prompts for visual identification in MCP clientsOnce connected, just talk to your AI assistant in natural language:
"List my GitLab projects" "Show me open merge requests in my-app" "Create a merge request from feature-login to main" "Review merge request !15 — is it safe to merge?" "List open issues assigned to me" "What's the pipeline status for project 42?" "Why did the last pipeline fail?" "Generate release notes from v1.0 to v2.0"
The server handles the translation from natural language to GitLab API calls. You do not need to know project IDs, API endpoints, or JSON syntax — the AI assistant figures that out for you. See Usage Examples for more scenarios.
Download the latest binary for your platform from GitHub Releases and make it executable:
chmod +x gitlab-mcp-server-* # Linux/macOS only
Or pull the published container image:
docker pull ghcr.io/jmrplens/gitlab-mcp-server:latest
Recommended: Run the built-in setup wizard — it configures your GitLab connection and MCP client in one step:
./gitlab-mcp-server --setup
Tip: The wizard supports Web UI, Terminal UI, and plain CLI modes. On Windows, double-click the
.exeto launch the wizard automatically.
Manual setup only needs a GitLab Personal Access Token with api scope:
GITLAB_TOKEN=glpat-xxxxxxxxxxxxxxxxxxxx
GITLAB_URL defaults to https://gitlab.com; add it only when you connect to a self-managed GitLab instance.
GITLAB_URL=https://gitlab.example.com
Most desktop clients use stdio: the client starts one local MCP server process and talks to it over stdin/stdout. Choose one of these runtime patterns.
VS Code and Cursor-style MCP configuration:
Add to .vscode/mcp.json in your workspace:
{
"servers": {
"gitlab": {
"type": "stdio",
"command": "/path/to/gitlab-mcp-server",
"env": {
"GITLAB_TOKEN": "glpat-xxxxxxxxxxxxxxxxxxxx"
}
}
}
}
Claude Desktop uses the same server command under mcpServers:
{
"mcpServers": {
"gitlab": {
"command": "/path/to/gitlab-mcp-server",
"env": {
"GITLAB_TOKEN": "glpat-xxxxxxxxxxxxxxxxxxxx"
}
}
}
}
For client-specific paths, secure token prompts, HTTP OAuth, and extra IDEs, see IDE Configuration.
If an IDE starts Docker as the MCP server process, keep docker run -i and pass --http=false after the image name. Do not publish port 8080 in this mode.
{
"servers": {
"gitlab": {
"type": "stdio",
"command": "docker",
"args": [
"run",
"-i",
"--rm",
"-e",
"GITLAB_TOKEN",
"-e",
"GITLAB_URL",
"-e",
"GITLAB_SKIP_TLS_VERIFY",
"ghcr.io/jmrplens/gitlab-mcp-server:latest",
"--http=false"
],
"env": {
"GITLAB_TOKEN": "glpat-xxxxxxxxxxxxxxxxxxxx",
"GITLAB_URL": "https://gitlab.com",
"GITLAB_SKIP_TLS_VERIFY": "false"
}
}
}
}
Use HTTP mode for shared, remote, or multi-user deployments. The Docker image
starts in HTTP mode by default, but the flags are shown explicitly here for
clarity. These examples publish the container port on host loopback only;
--http-addr=0.0.0.0:8080 binds inside the container.
# Fixed GitLab instance for all clients
docker run -d --name gitlab-mcp-server -p 127.0.0.1:8080:8080 \
ghcr.io/jmrplens/gitlab-mcp-server:latest \
--http \
--http-addr=0.0.0.0:8080 \
--gitlab-url=https://gitlab.com
# Multi-instance mode: clients send GITLAB-URL per request
docker run -d --name gitlab-mcp-server -p 127.0.0.1:8080:8080 \
ghcr.io/jmrplens/gitlab-mcp-server:latest \
--http \
--http-addr=0.0.0.0:8080
HTTP clients authenticate each request with PRIVATE-TOKEN or Authorization: Bearer:
{
"servers": {
"gitlab": {
"type": "http",
"url": "http://localhost:8080/mcp",
"headers": {
"PRIVATE-TOKEN": "glpat-xxxxxxxxxxxxxxxxxxxx"
}
}
}
}
In multi-instance mode, clients must also send GITLAB-URL. See HTTP Server Mode for OAuth, reverse proxy, rate limit, and server-pool details.
Open your AI client and try:
"List my GitLab projects"
See the Getting Started guide for detailed setup instructions.
Three registration modes, controlled by TOOL_SURFACE:
| Mode | Tools | Description |
|---|---|---|
| Dynamic Toolset (default) | 2 visible tools | Low-token find/execute surface over the canonical action catalog. |
| Meta-Tools | 33 base GitLab/interactive tools; gitlab_server is a separate maintenance helper | Domain-grouped dispatchers with action parameter. Enable with TOOL_SURFACE=meta; see the full 33/49/50 catalog in Meta-Tools Reference. |
| Individual | 867 CE / 1027 self-managed enterprise / 1033 GitLab.com Enterprise | Every GitLab operation as a separate MCP tool. |
For dynamic experiments where resources and prompts dominate initial context, set CAPABILITY_SURFACE=minimal (stdio) or --capability-surface=minimal (HTTP). Minimal keeps gitlab://workspace/roots plus the surface-aware gitlab://tools manifest so dynamic, meta, and individual deployments can still read accepted call shapes. The default remains full.
Dynamic mode is now the default low-token find/execute surface; see Dynamic Toolset for the field-aware ranking model, fuzzy fallback, response shapes, workflow diagrams, and migration guidance. Set TOOL_SURFACE=meta to use the consolidated domain meta-tool catalog.
The detailed meta-tool catalog now lives in Meta-Tools Reference, including action counts, Enterprise/Premium markers, and examples.
| MCP Capability | Support |
|---|---|
| Tools | Up to 1033 individual / 33–50 meta |
| Resources | 46 (static + templates) |
| Prompts | 37 templates |
| Completions | Project, user, group, branch, tag |
| Logging | Structured (text/JSON) + MCP notifications |
| Progress | Tool execution progress reporting |
| Sampling | 11 LLM-powered analysis actions via gitlab_analyze |
| Elicitation | 4 interactive creation wizards |
| Roots | Workspace root tracking |
Tested with: VS Code + GitHub Copilot, Claude Desktop, Claude Code, Cursor, Windsurf, JetBrains IDEs, Zed, Kiro, Cline, Roo Code.
See the full Compatibility Matrix for detailed client support.
The project includes an automated evaluator for model-facing MCP quality. It can run schema-only checks against the tool catalog or execute validated model tool calls through MCP against Docker GitLab CE or licensed Enterprise instances populated with fixtures. The evaluator measures whether each model chooses the correct meta-tool and action, sends valid parameters, recovers from actionable GitLab errors, and respects destructive-action safeguards.
Current published result: Docker CE-on-Enterprise meta 20260527.
| Provider | Model | Compatibility | Tool accuracy | Recovery | Docker live status |
|---|---|---|---|---|---|
| Anthropic | claude-haiku-4-5-20251001 | OK | 100.0% | No repairs | 100.0% final across 274 ops |
gemini-flash-latest | Review | 74.3% | 100.0% (36/36) | 100.0% final across 274 ops | |
| OpenAI | gpt-5.4-nano | Review | 99.3% | 100.0% (6/6) | 100.0% final across 274 ops |
| Qwen | qwen3.6-flash | OK | 100.0% | 100.0% (5/5) | 100.0% final across 274 ops |
The published model-evaluation set covers 560 task attempts and 1096 expected MCP operations. Across the selected reports, models emitted 1109 tool calls over 1145 model requests, with 100.0% aggregate final success. See AI Model Evaluation Results for the detailed current matrix.
Current published result: Docker CE dynamic 20260606.
| Provider | Model | Compatibility | Tool accuracy | Recovery | Docker live status |
|---|---|---|---|---|---|
| Anthropic | claude-haiku-4-5-20251001 | OK | 100.0% | 100.0% (6/6) | 100.0% final across 573 ops |
gemini-flash-latest | Review | 100.0% | 80.0% (4/5) | 99.3% final across 573 ops | |
| OpenAI | gpt-5.4-nano | Review | 99.4% | 95.8% (23/24) | 97.4% final across 573 ops |
| Qwen | qwen3.6-flash | Review | 100.0% | 90.9% (10/11) | 99.3% final across 573 ops |
The published model-evaluation set covers 620 task attempts and 2292 expected MCP operations. Across the selected reports, models emitted 2367 tool calls over 2369 model requests, with 99.0% aggregate final success. See AI Model Evaluation Results for the detailed current matrix.
Current published result: Docker Enterprise meta 20260527.
| Provider | Model | Compatibility | Tool accuracy | Recovery | Docker live status |
|---|---|---|---|---|---|
| Anthropic | claude-haiku-4-5-20251001 | OK | 100.0% | 100.0% (1/1) | 100.0% final across 84 ops |
gemini-flash-latest | Review | 78.2% | 100.0% (7/7) | 100.0% final across 84 ops | |
| OpenAI | gpt-5.4-nano | Review | 100.0% | 100.0% (4/4) | 100.0% final across 84 ops |
| Qwen | qwen3.6-flash | OK | 100.0% | 100.0% (1/1) | 100.0% final across 84 ops |
The published model-evaluation set covers 92 task attempts and 336 expected MCP operations. Across the selected reports, models emitted 345 tool calls over 350 model requests, with 100.0% aggregate final success. See AI Model Evaluation Results for the detailed current matrix.
Current published result: Docker Enterprise dynamic 20260605 (Enterprise).
| Provider | Model | Compatibility | Tool accuracy | Recovery | Docker live status |
|---|---|---|---|---|---|
| Anthropic | claude-haiku-4-5-20251001 | OK | 100.0% | No repairs | 100.0% final across 202 ops |
gemini-flash-latest | OK | 100.0% | No repairs | 100.0% final across 202 ops | |
| OpenAI | gpt-5.4-nano | OK | 100.0% | 100.0% (3/3) | 100.0% final across 202 ops |
| Qwen | qwen3.6-flash | OK | 100.0% | No repairs | 100.0% final across 202 ops |
The published model-evaluation set covers 124 task attempts and 808 expected MCP operations. Across the selected reports, models emitted 817 tool calls over 817 model requests, with 100.0% aggregate final success. See AI Model Evaluation Results for the detailed current matrix.
Full documentation is available at jmrplens.github.io/gitlab-mcp-server. Use this map when you need the source-of-truth reference for a specific area:
| Document | Description |
|---|---|
| Getting Started | Download, setup wizard, per-client configuration |
| IDE Configuration | Per-client stdio, HTTP legacy, and HTTP OAuth examples |
| Configuration | Environment variables, transport modes, TLS |
| Environment Variables | Exhaustive environment variable table with defaults and examples |
| CLI Reference | All command-line flags, exit codes, and runtime examples |
| HTTP Server Mode | Shared HTTP deployments, authentication, server pool isolation |
| Tools Reference | All individual tools with input/output schemas, including GitLab.com-only Orbit |
| Meta-Tools | 33/49/50 domain meta-tools with action dispatching |
| Dynamic Toolset | 2-tool low-token mode with canonical action catalog, safety model, and examples |
| Resources | All 46 resources with URI templates |
| Prompts | All 37 prompts with arguments and output format |
| Auto-Update | Self-update mechanism, modes, and release format |
| Testing | Unit, E2E, schema model evaluation, Docker model evaluation, and curated model results |
| Security | Security model, token scopes, input validation |
| Architecture | System architecture, component design, data flow |
| Development Guide | Building, testing, CI/CD, contributing |
| Troubleshooting | Common startup, token, TLS, transport, and tool-discovery issues |
| Component | Technology |
|---|---|
| Language | Go 1.26+ |
| MCP SDK | github.com/modelcontextprotocol/go-sdk v1.6.0 |
| GitLab Client | gitlab.com/gitlab-org/api/client-go/v2 v2.29.0 |
| Transport | stdio (default), HTTP (Streamable HTTP) |
git clone https://github.com/jmrplens/gitlab-mcp-server.git
cd gitlab-mcp-server
make build
See the Development Guide for cross-compilation and contributing guidelines.
The published image is ghcr.io/jmrplens/gitlab-mcp-server:latest. Runtime examples live in Quick Start next to MCP client configuration, and Docker Compose/source-build details live in the Development Guide.
Yes. Set GITLAB_URL to your instance URL. When GITLAB_URL is omitted, stdio mode uses https://gitlab.com. Self-signed TLS certificates are supported via GITLAB_SKIP_TLS_VERIFY=true.
The server runs locally on your machine (stdio mode) or on your own infrastructure (HTTP mode). No data is sent to third parties — all API calls go directly to your GitLab instance. See SECURITY.md for details.
Yes. Set GITLAB_READ_ONLY=true to disable all mutating tools (create, update, delete). Only read operations will be available.
Alternatively, set GITLAB_SAFE_MODE=true for a dry-run mode: mutating tools remain visible but return a structured JSON preview instead of executing. Useful for auditing, training, or reviewing what an AI assistant would do.
Both Community Edition (CE) and Enterprise Edition (EE). Set GITLAB_ENTERPRISE=true in stdio mode to enable additional tools for Premium/Ultimate features (DORA metrics, vulnerabilities, compliance, etc.). In HTTP mode, --enterprise can force the Enterprise/Premium catalog, otherwise CE/EE is detected per token+URL pool entry when GitLab reports edition.
The server includes retry logic with backoff for GitLab API rate limits. Errors are classified as transient (retryable) or permanent, with actionable hints in error messages.
Any MCP-compatible client: VS Code + GitHub Copilot, Claude Desktop, Cursor, Claude Code, Windsurf, JetBrains IDEs, Zed, Kiro, and others. The built-in setup wizard can auto-configure most clients.
See CONTRIBUTING.md for development guidelines, branch naming, commit conventions, and pull request process.
See SECURITY.md for the security policy and vulnerability reporting.
See CODE_OF_CONDUCT.md. This project follows the Contributor Covenant v2.1.
Numbers nobody asked for, but here they are anyway.
| Category | Files | Lines |
|---|---|---|
Source (.go, non-test) | 912 | 154,685 |
Unit tests (_test.go) | 490 | 255,666 |
| End-to-end tests | 139 | 31,477 |
| Total | 1,541 | 441,828 |
| Category | Count |
|---|---|
| Source functions | 6,508 |
| — exported (public) | 2,467 |
| — unexported (private) | 4,041 |
Unit test functions (TestXxx) | 10,331 |
Subtests (t.Run(...)) | 2,503 |
| End-to-end test functions | 279 |
| Observation | Value |
|---|---|
| Test lines vs source lines | 1.65× more tests than code |
| Average source file length | ~169 lines |
| Average test file length | ~521 lines |
| Comment lines in source | 12,059 (~7.8% of source) |
| Test functions per source function | 1.6× |
| Pattern | Count |
|---|---|
if err != nil checks | 6,095 |
defer statements | 782 |
struct types defined | 2,339 |
//nolint suppressions | 76 |
TODO / FIXME / HACK comments | 1 |
| Metric | Value |
|---|---|
| Go packages | 219 |
Direct dependencies (go.mod) | 11 |
| Indirect dependencies | 50 |
| Git commits | 187 |
| Unique contributors | 2 |
| Record | File |
|---|---|
| Longest source file | internal/tools/dynamic/register.go — 3,740 lines |
| Longest test file | internal/tools/projects/projects_test.go — 7,099 lines |
| Fact | Value |
|---|---|
| Source code printed at 55 lines/page | ~2,812 pages of A4 |
Source lines mentioning "gitlab" | 9,343 (impossible to avoid) |
| Longest function name in source | assertDynamicCompatibilityPolicyOwnedByActionCompat (51 chars) |
| Longest test function name | TestRequiredMissingAndUnknownParamNames_SchemaValidation_ReturnsSortedMissingAndUnknown (87 chars) |
Run Claude Code as an MCP server so any agent can delegate coding tasks to it
Browser automation using accessibility snapshots instead of screenshots
English-first Korean equity intelligence MCP — DART filings, foreign-holder 5%-rule flows, activist filings, KRX news. F
Unity MCP acts as a bridge between AI assistants and your Unity Editor. Give your LLM tools to manage assets, control sc
