onepassword
Verified · yesterdayMCP server for interacting with 1Password via the CLI to read and manage credentials.
Install
claude mcp add onepassword -- npx -y [email protected]
Our take
Wraps the 1Password CLI (op) with nine tools — five read (vault/item listing, tag search, and a metadata-only tool that returns titles and field names without secret values) and four write (create login, secure note, API credential, mint a share URL) — gated by elicitation prompts before any credential is revealed or created, with per-item whitelisting and an ENABLED_TOOLGROUPS knob to run read-only. Requires the op binary plus a 1Password service account; TypeScript over stdio, MIT, part of PulseMCP's actively maintained monorepo (72 stars, 9 contributors overall) but in the experimental/ tier — explicitly not graduated to their productionized set. That said, the approval-gate and metadata-without-secrets design is more security-conscious than most credential servers, and at ~194 weekly downloads it has modest real usage. For teams who want agents to fetch secrets with human sign-off instead of pasting them into env vars.
Verification record
- yesterday
- 72
- yesterday
- no
- MIT
- 194
- 0.5.4
- 2026-06-17