$ timeahead.in
/servers/blog/about
/ servers/npm/@stripe/mcp
npm

@stripe/mcp

A command line tool for setting up Stripe MCP server

2k stars15k/wkupdated 0d agogithub ↗
☆ Watch this server📋 Install guide⚡ Compare⚑ Claim listing
82good
▣ Overview

What it does

The server exposes Stripe payment and billing APIs to LLM agents through the Model Context Protocol. It can run either locally via npx @stripe/mcp or as a remote OAuth-authenticated server at https://mcp.stripe.com. Tool availability is controlled via Stripe's Restricted API Keys, allowing fine-grained permission scoping. Works with agent frameworks including OpenAI's Agent SDK, LangChain, CrewAI, and Vercel's AI SDK.

Who it's for

Builders implementing AI agents that need to perform billing, payment, or customer operations on Stripe—engineers wiring Claude or other LLMs into Stripe accounts for autonomous financial workflows, subscription management, or payment processing.

Common use cases

  • Automate customer invoice and payment reconciliation through an agentic interface
  • Generate refunds or adjust subscriptions via natural language commands to an AI agent
  • Query Stripe customer and transaction data to provide billing context to LLMs
  • Build AI-powered support agents that can modify account status or process payments
  • Create autonomous billing workflows (like refund decisions, retry logic) controlled by LLMs

Setup pitfalls

  • API key security: The scanner detected one hardcoded or exposed secret; never commit STRIPE_SECRET_KEY or STRIPE_RESTRICTED_KEY to version control. Use environment variables or a secrets manager.
  • Restricted API Key (RAK) permissions: Tool availability depends entirely on the RAK's configured permissions. Test scoping at https://dashboard.stripe.com/apikeys before deploying agents.
  • Remote vs. local trade-off: The remote server at mcp.stripe.com requires OAuth setup; the local npx server needs your secret key passed at startup. Both require secure credential handling.
  • Filesystem access: The server reads and writes files; ensure it runs with appropriate sandboxing and restricted working directory permissions.
1 credential detected in repository history via Gitleaks
▣ Score BreakdownMCPScore = Σ(raw × weight)
DimensionRawWeighted
Security
35%
80
28.0
Freshness
25%
100
25.0
Adoption
20%
82
16.4
Quality
10%
80
8.0
Trust
10%
50
5.0
Total
82.4
⚿ Capabilities & Risk Explainer
fs readfs writenetworkexecsecrets
◆ Risk level: high
fs read + fs write + network + exec + secrets active — can execute code, access credentials, and make external network calls.
⚙ Install config
Claude Desktop · Cursor · Windsurf · VS Code (Copilot) · Claude Code
add to your MCP client config:
{
  "mcpServers": {
    "stripemcp": {
      "command": "npx",
      "args": [
        "-y",
        "@stripe/mcp"
      ]
    }
  }
}
📈 Score historylast 35 snapshots
4/30/20266/13/2026 · 35 snapshots
⚙ Maintenance health
47/ 100 · is this project alive?
contributors (1y)28
top contributor share21%
releases (1y)0
ci✓ passing
⛁ Raw data
weekly downloads15k
github stars2k
forks278
open issues64
license✓ present
readme length6374 chars
last publish0d ago
last commit0d ago
last updated1d ago
install verified✓ pass · 29d ago
owner of this server? claim your listing to get a verified badgeclaim →
🔔 Score drop alerts
get notified by email when this server's score drops 5+ points