Stats
Actions
Tags
Help us improve
Share bugs, ideas, or general feedback.
From mxcp-plugin
This skill should be used when the user asks to "create an MXCP project", "build an MCP server", "initialize mxcp", "add a tool endpoint", "create a resource", "configure authentication", "validate endpoints", "run mxcp validate", "mxcp-site.yml", or mentions MXCP, MCP server development, SQL/Python endpoints, or DuckDB data access. Provides expert guidance for building production MCP servers using MXCP.
npx claudepluginhub raw-labs/raw-labs-claude-marketplace --plugin mxcp-pluginHow this skill is triggered — by the user, by Claude, or both
Slash command
/mxcp-plugin:mxcp-expertThe summary Claude sees in its skill listing — used to decide when to auto-load this skill
MXCP is an enterprise framework for building production-ready AI tools with SQL and Python.
assets/llms.txtassets/project-templates/confluence/README.mdassets/project-templates/confluence/config.ymlassets/project-templates/confluence/mxcp-site.ymlassets/project-templates/confluence/plugins/mxcp_plugin_confluence/__init__.pyassets/project-templates/confluence/sql/cql_query.sqlassets/project-templates/confluence/sql/describe_page.sqlassets/project-templates/confluence/sql/get_children.sqlassets/project-templates/confluence/sql/get_page.sqlassets/project-templates/confluence/sql/list_spaces.sqlassets/project-templates/confluence/sql/search_pages.sqlassets/project-templates/confluence/tools/cql_query.ymlassets/project-templates/confluence/tools/describe_page.ymlassets/project-templates/confluence/tools/get_children.ymlassets/project-templates/confluence/tools/get_page.ymlassets/project-templates/confluence/tools/list_spaces.ymlassets/project-templates/confluence/tools/search_pages.ymlassets/project-templates/covid_owid/README.mdassets/project-templates/covid_owid/dbt_project.ymlassets/project-templates/covid_owid/models/covid_data.sqlMCPize Builder — takes a brief/PRD (from /mcpize:idea or custom) and builds a production-ready MCP server, end to end. Part of the MCPize suite (mcpize.com). Parses brief to extract tools, data strategy, secrets, and technical stack. Scaffolds project via mcpize CLI with the right template, implements all MCP tools with proper input validation and error handling, configures mcpize.yaml with secrets/credentials and HTTP transport, writes tests that verify MCP protocol compliance, and generates README + CLAUDE.md. Use this skill whenever someone wants to build an MCP server from a brief or PRD, has a spec they want to turn into a working server, says 'build this MCP', wants to implement tools from a brief, or references mcpize-build. Also trigger on: build mcp, implement mcp server, code mcp from brief, scaffold mcp project, create mcp server from spec, mcpize build, turn brief into server, implement brief, build from prd, mcp server from scratch.
Guides building MCP servers in TypeScript from research to evaluation. Covers design principles, SDK usage, and hosting patterns.
Designs and implements Model Context Protocol servers with resources, tools, prompts, and security best practices. Use when architecting an MCP server or integrating a service as an MCP endpoint.
Share bugs, ideas, or general feedback.
MXCP is an enterprise framework for building production-ready AI tools with SQL and Python.
Internalize these principles before implementing anything:
mxcp validate after every file change. Errors compound.Before writing ANY YAML or code:
| Category | Features | When to Use |
|---|---|---|
| Endpoints | Tools, Resources, Prompts | Tools=actions/queries, Resources=data by URI, Prompts=message templates |
| Languages | SQL, Python | SQL=database/simple, Python=complex logic/APIs |
| Data Access | DuckDB (local files, HTTP, S3, PostgreSQL, MySQL, SQLite) | Connect to any data source via DuckDB extensions |
| Data Transform | dbt (seeds, SQL models, Python models) | Clean, test, materialize static data |
| Security | OAuth, CEL policies, audit logs | Authentication + authorization |
| Quality | validate, test, lint, evals | Ensure correctness and LLM usability |
| Deployment | stdio, streamable-http | Local dev (stdio), production (HTTP) |
| Category | Key References |
|---|---|
| Getting Started | quickstart, hello-world |
| Endpoints | sql-endpoints, python-endpoints |
| Schemas | tool, resource, prompt |
| Quality | testing, validation, linting |
| Security | authentication, policies |
| Operations | configuration, deployment |
| Reference | cli, sql, python, type-system |
| Integrations | dbt, duckdb, excel |
| When implementing... | Read first |
|---|---|
| Any YAML | common-mistakes.md |
| Tools, Resources, Prompts | tool.md, resource.md, prompt.md |
| Authentication/Authorization | authentication.md, policies.md |
| Tests | testing.md |
| Data access (files, DBs) | duckdb.md |
| Data transformation | dbt.md |
| Python endpoints | python.md |
| SQL endpoints | sql.md |
| Concepts/architecture | endpoints.md, project-structure.md |
| Examples/patterns | examples/index.md |
| Monitoring, drift | monitoring.md, drift-detection.md |
| Deployment | deployment.md |
| Claude Desktop integration | claude-desktop.md |
| CLI commands | cli.md |
| Common tasks (how-to) | common-tasks.md |
Follow this methodology for every MXCP project. Run mxcp validate after EVERY file change.
mkdir my-project && cd my-project
uv venv && source .venv/bin/activate
uv pip install mxcp
mxcp init --bootstrap
mxcp validate # Verify setup
Analyze the task first:
Decision: Ingest or query directly?
| Data Characteristic | Approach | Why |
|---|---|---|
| Static/one-time (loaded once) | Ingest with dbt | Data quality tests, transformations, persistence |
| Dynamic/changing (files updated) | DuckDB direct read | Always reads latest data, no sync needed |
Ingestion approaches (for static data):
| Scenario | Approach |
|---|---|
| Simple CSV, static reference data | mxcp dbt seed |
| Excel, complex transformations | dbt Python models |
Direct read approaches (for dynamic data):
-- DuckDB reads files directly - always gets latest data
SELECT * FROM read_csv_auto('data/sales.csv');
SELECT * FROM read_parquet('data/*.parquet');
SELECT * FROM read_json_auto('https://api.example.com/data.json');
Connect to external databases via DuckDB:
-- PostgreSQL (requires postgres extension)
ATTACH 'postgresql://user:pass@host:5432/db' AS pg (TYPE postgres);
SELECT * FROM pg.public.users;
-- MySQL (requires mysql extension)
ATTACH 'host=localhost user=root database=mydb' AS mysql (TYPE mysql);
SELECT * FROM mysql.orders;
See duckdb.md for S3, HTTP auth, and secret management.
After ingestion (if using dbt), verify:
mxcp dbt test # Data quality tests
mxcp query "SELECT * FROM table LIMIT 5" # Manual verification
Choose endpoint type based on use case:
| Use Case | Endpoint Type | Example |
|---|---|---|
| Query data, perform actions | Tool | get_customer, create_order |
| Access data by URI/path | Resource | employee://{id}/profile |
| Reusable message templates | Prompt | data_analysis with Jinja2 |
Choose implementation language:
| Scenario | Language | Reference |
|---|---|---|
| Database queries, aggregations, file reading | SQL | sql-endpoints.md |
| Complex logic, external APIs, ML, file processing | Python | python-endpoints.md |
Development cycle for each endpoint:
# 1. Create the YAML definition
mxcp validate # Fix errors immediately
# 2. Create the implementation (SQL or Python)
mxcp validate # Validate again
# 3. Manual verification
mxcp run tool NAME --param key=value
# 4. Add tests and run
mxcp test
Python code requirements:
pytest for Python logic testingTools will be used by LLMs. Ensure clear metadata:
snake_casetool:
name: search_customers
description: |
Search customers by name or email. Returns matching customer records
with contact info and account status. Use for customer lookups.
parameters:
- name: query
type: string
description: Search term (matches name or email, case-insensitive)
examples: ["john", "smith@example.com"]
Run after every file change:
mxcp validate
mxcp validate --debug # For detailed errors
Check metadata quality for LLM consumption:
mxcp lint
Address all warnings about descriptions, examples, and documentation.
Create evals only if the user explicitly asks:
mxcp evals # AI behavior testing
Implement only if the user requests authentication, policies, or observability:
~/.mxcp/config.yml (see Security Features section)Test security with simulated user context:
mxcp run tool NAME --param key=value \
--user-context '{"role": "admin", "email": "test@example.com"}'
Implement only if the user explicitly asks for deployment:
| Transport | Use Case | Command |
|---|---|---|
stdio | Local dev, Claude Desktop | mxcp serve (default) |
streamable-http | Production, web clients | mxcp serve --transport streamable-http --port 8000 |
See Deployment for Docker, systemd, production setup.
A project is complete when:
mxcp validate passes with no errorsmxcp test passes with all tests greenmxcp dbt test passes (if using dbt)mxcp lint shows no critical issuesmxcp run confirms expected behavior--user-context (if auth/policies configured)| Test Type | Must Verify | Reference |
|---|---|---|
| MXCP endpoint | Valid inputs, edge cases (nulls, boundaries), error handling | testing.md |
| dbt data | not_null, unique, relationships, accepted_values | dbt.md |
| Python modules | Unit tests with pytest | - |
MXCP automatically creates and manages a DuckDB database. Do not configure a custom database path unless the user explicitly asks for it.
When you run mxcp init, MXCP creates:
data/db-default.duckdb (or data/db-{profile}.duckdb)Use the default (no database configuration needed):
# mxcp-site.yml - Minimal config
mxcp: 1
project: my-project
profile: default
# Database is automatically created at data/db-default.duckdb
Only configure duckdb.path if the user explicitly requests it (e.g., shared database, specific location, read-only mode). Do not proactively add database configuration.
Read common-mistakes.md before implementing. It covers YAML syntax errors, type mismatches, Python pitfalls, and SQL gotchas that cause 90% of debugging time. Also read the relevant schema doc (tool.md, resource.md, or prompt.md) and run mxcp validate after every change.
mxcp-project/
├── mxcp-site.yml # Project configuration (required)
├── tools/ # Tool definitions (.yml)
├── resources/ # Resource definitions (.yml)
├── prompts/ # Prompt definitions (.yml)
├── sql/ # SQL implementations
├── python/ # Python implementations
├── evals/ # LLM evaluation tests
└── data/ # Database files (db-default.duckdb)
Directory rules:
tools/*.ymlresources/*.ymlprompts/*.ymlsql/, referenced via relative pathspython/, referenced via relative pathsThis shows a complete, correct tool with all required fields and tests:
# tools/get_customer.yml
mxcp: 1
tool:
name: get_customer
description: Get customer by ID. Returns customer profile with contact info.
parameters:
- name: customer_id
type: integer
description: The customer's unique identifier
return:
type: object
properties:
id: {type: integer}
name: {type: string}
email: {type: string}
source:
file: ../sql/get_customer.sql
tests:
- name: existing_customer
arguments: [{key: customer_id, value: 1}]
result_contains: {id: 1}
- name: not_found
arguments: [{key: customer_id, value: 99999}]
result: null
-- sql/get_customer.sql
SELECT id, name, email FROM customers WHERE id = $customer_id
SQL vs Python: Use SQL for queries/aggregations. Use Python (language: python) for complex logic, APIs, ML.
CRITICAL: Use MXCP built-in security. NEVER write custom authentication code.
| Feature | Built-in Solution | Reference |
|---|---|---|
| Authentication | OAuth in ~/.mxcp/config.yml | authentication.md |
| Access Control | CEL policies in YAML | policies.md |
| User Context | SQL: get_username(), get_user_email() | sql.md |
| External APIs | SQL: get_user_external_token() | authentication.md |
| Audit Logs | Built-in logging | auditing.md |
Supported OAuth providers: GitHub, Google, Atlassian, Salesforce, Keycloak
# Project
mxcp init --bootstrap # Create new project
mxcp list # List all endpoints
# Quality
mxcp validate # Check structure
mxcp test # Run tests
mxcp lint # Check metadata
mxcp evals # AI behavior tests
# Running
mxcp serve # Start MCP server
mxcp run tool NAME --param k=v # Run tool manually
# Database
mxcp query "SELECT 1" # Execute SQL
# Operations
mxcp drift-snapshot # Create baseline
mxcp drift-check # Detect changes
mxcp log --since 1h # Query audit logs
mxcp validate --debug # Detailed validation errors
mxcp run tool NAME --debug # Debug tool execution
mxcp list # See available endpoints
Common issues: YAML syntax, missing required fields, invalid types, file paths.
Complete runnable examples in assets/project-templates/. Copy and run:
cp -r assets/project-templates/<template> my-project
cd my-project
mxcp validate && mxcp test
| Template | Description |
|---|---|
covid_owid | Data workflow with dbt models, seeds, and prompts |
earthquakes | API-style tool with profile configuration |
| Template | Description |
|---|---|
confluence | Confluence integration via plugin with SQL tools |
google-calendar | Google Calendar with Python endpoints |
jira | Jira integration with secrets-based auth |
jira-oauth | Jira integration via OAuth plugin |
keycloak | Keycloak OAuth authentication demo |
salesforce | Salesforce with secrets-based auth and Python |
salesforce-oauth | Salesforce with OAuth flow and Python |
| Template | Description |
|---|---|
plugin | DuckDB plugin development example |
python-demo | Python endpoint patterns (good starting point) |
See Configuration for mxcp-site.yml and config.yml options.