← 返回 Skills 市场

Monday mcp

Name: Monday mcp
Author: maverick

作者 Maverick · GitHub ↗ · v1.0.0 · MIT-0

cross-platform ✓ 安全检测通过

总下载

当前安装

版本数

在 OpenClaw 中安装

/install maverick-monday-mcp

功能描述

Search, read, and update Monday.com boards, workspaces, items, updates, and columns via Monday.com's hosted MCP server (https://mcp.monday.com/mcp). Use when...

使用说明 (SKILL.md)

Monday.com

Quick start

Always invoke through bash {baseDir}/scripts/invoke.sh — never call mcporter directly. The wrapper seeds the OAuth vault from the env-supplied tokens when needed, then calls mcporter.

bash {baseDir}/scripts/invoke.sh call maverick-monday.get_boards
bash {baseDir}/scripts/invoke.sh call maverick-monday.get_workspaces
bash {baseDir}/scripts/invoke.sh call maverick-monday.get_columns board_id=123456789

For structured output (also surfaces transport errors as JSON envelopes — workaround for mcporter #153):

bash {baseDir}/scripts/invoke.sh call --output json maverick-monday.get_boards | jq '.result.content'

Discover available tools and schemas:

bash {baseDir}/scripts/invoke.sh list maverick-monday --schema

Safety

Write operations (create_item, update_item, delete_item, create_update, column changes, board archive/delete actions, and workspace changes) modify Monday.com data visible to the connected account. Confirm clear user intent before invoking write tools — search and read tools are safe to call freely while exploring. Resolve board and workspace IDs first, call get_columns before writing column_values, and fetch item state before updating or commenting.

Authentication

Tokens are provisioned and rotated automatically. If a call returns HTTP 401 that doesn't recover within a few seconds, the OAuth grant has been revoked — re-authorize the integration to refresh credentials.

Data flow

Tool calls travel to Monday.com's hosted MCP service at https://mcp.monday.com/mcp over HTTPS, authenticated via OAuth. Monday.com sees the board, workspace, item, update, and column data referenced by each call. Use this skill for Monday.com-related work only; do not pass unrelated sensitive content through these tools.

Dependencies

mcporter (github.com/steipete/mcporter) — MCP CLI used to invoke Monday.com's hosted MCP server. Auto-installed via npm install -g --ignore-scripts mcporter if missing on PATH (see install spec in frontmatter). The install spec uses unpinned mcporter (npm latest); operators with strict supply-chain controls should override the install to pin a specific version (e.g. mcporter@\x3Cversion>).
jq (stedolan.github.io/jq) — JSON processor used by the vault initializer. System dependency; install via your OS package manager (apt install jq, brew install jq, etc.).
flock (part of util-linux) — file locking used to serialize concurrent vault writes. Available by default on Linux; on macOS install via brew install flock.
shasum (Perl, ships with Digest::SHA) — computes the SHA-256 hashes used to derive the mcporter vault key and the provisioned-token marker. Preinstalled on macOS and on Debian/Ubuntu (incl. the deployed cloudflare/sandbox Ubuntu 22.04 image); on minimal Linux images install perl-Digest-SHA. The script invokes shasum -a 256 rather than GNU sha256sum so it runs on stock macOS without coreutils.

安全使用建议

Install this only if you want the agent to access and potentially modify Monday.com data for the connected account. Confirm any create/update/delete/archive actions before they run, avoid passing unrelated sensitive content to the tools, protect or revoke the OAuth credentials when needed, and consider pinning the mcporter package for stricter supply-chain control.

功能分析

Type: OpenClaw Skill Name: maverick-monday-mcp Version: 1.0.0 The skill provides a legitimate integration for Monday.com using the mcporter MCP client. The included scripts (init-mcporter.sh and invoke.sh) handle OAuth token provisioning by seeding the local ~/.mcporter/credentials.json vault from environment variables. The implementation follows security best practices, such as using jq's environment variable injection to prevent tokens from appearing in process listings and using SHA-256 hashes for state tracking instead of storing raw credentials in sidecar files. All network activity is directed to the official Monday.com MCP endpoint (https://mcp.monday.com/mcp).

能力标签

requires-oauth-tokenrequires-sensitive-credentials

能力评估

ℹ Purpose & Capability

The stated purpose matches the artifacts: it connects to Monday.com's hosted MCP server to search, read, and update Monday.com boards, items, workspaces, updates, and columns. The capability includes high-impact write/delete/archive operations, but these are disclosed.

ℹ Instruction Scope

The instructions scope use to Monday.com-related work and explicitly tell the agent to confirm clear user intent before write operations. Read/search tools are described as safe to use for exploration, which still means they can access connected-account Monday.com data.

ℹ Install Mechanism

The skill installs the npm package mcporter without a pinned version. This is central to the skill and disclosed, but operators with stricter supply-chain requirements should pin or review the dependency.

ℹ Credentials

The required OAuth environment variables are proportionate for a Monday.com integration, but they grant access as the connected account.

ℹ Persistence & Privilege

The wrapper seeds mcporter's local credential vault in the user's home directory and stores a local provision marker hash. This is disclosed and purpose-aligned, but users should understand the credentials persist locally.

如何使用

确保已安装 OpenClaw（本地或 Docker 部署）
在对话框中输入安装命令：/install maverick-monday-mcp
安装完成后，直接呼叫该 Skill 的名称或使用 /maverick-monday-mcp 触发
根据 Skill 的参数说明提供必要输入，即可获得结构化输出

版本历史

v1.0.0

Initial public release of maverick-monday-mcp. - Enables searching, reading, and updating Monday.com boards, workspaces, items, updates, and columns via Monday.com's MCP server. - Uses `mcporter` CLI with secure OAuth token management; wrapper script ensures safe invocation. - Provides tool commands for common Monday.com actions and JSON output handling. - Documents dependencies (`mcporter`, `jq`, `flock`, `shasum`) and guides installation. - Includes safety and data flow guidelines to protect user data and confirm intent before writing. - Authentication and credential rotation handled automatically; prompts re-authorization if needed.

元数据

Slug maverick-monday-mcp

版本 1.0.0

许可证 MIT-0

累计安装 0

当前安装数 0

历史版本数 1

常见问题

Monday mcp 是什么？

Search, read, and update Monday.com boards, workspaces, items, updates, and columns via Monday.com's hosted MCP server (https://mcp.monday.com/mcp). Use when... 它是一个面向 Claude Code / OpenClaw 的 AI Agent Skill 插件，目前累计下载 42 次。

如何安装 Monday mcp？

在 OpenClaw 或 Claude Code 对话框中运行命令「/install maverick-monday-mcp」即可一键安装，无需额外配置。

Monday mcp 是免费的吗？

是的，Monday mcp 完全免费，采用 MIT-0 许可证，可自由下载、安装和使用。

Monday mcp 支持哪些平台？

Monday mcp 跨平台运行，可在任意部署了 OpenClaw / Claude Code 的环境中使用（cross-platform）。

谁开发了 Monday mcp？

由 Maverick（@maverick）开发并维护，当前版本 v1.0.0。