moai-cc-mcp-plugins
Configuring MCP Servers & Plugins for Claude Code. Set up Model Context Protocol servers (GitHub, Filesystem, Brave Search, SQLite). Configure OAuth, manage permissions, validate MCP structure. Use when integrating external tools, APIs, or expanding Claude Code capabilities.
allowed_tools: Read, Write, Edit, Bash, Glob
$ Instalar
git clone https://github.com/majiayu000/claude-skill-registry /tmp/claude-skill-registry && cp -r /tmp/claude-skill-registry/skills/data/moai-cc-mcp-plugins ~/.claude/skills/claude-skill-registry// tip: Run this command in your terminal to install the skill
SKILL.md
name: moai-cc-mcp-plugins description: "Configuring MCP Servers & Plugins for Claude Code. Set up Model Context Protocol servers (GitHub, Filesystem, Brave Search, SQLite). Configure OAuth, manage permissions, validate MCP structure. Use when integrating external tools, APIs, or expanding Claude Code capabilities." allowed-tools: "Read, Write, Edit, Bash, Glob"
Skill Metadata
| Field | Value |
|---|---|
| Version | 1.0.0 |
| Tier | Ops |
| Auto-load | When setting up MCP servers |
What It Does
MCP (Model Context Protocol) server 및 plugin 설정을 위한 전체 가이드를 제공합니다. GitHub, Filesystem, SQLite 등 다양한 MCP server의 OAuth 설정, 권한 관리, 구조 검증 방법을 다룹니다.
When to Use
- 새로운 MCP server를 설정할 때
- OAuth 인증을 구성할 때
- External tool이나 API를 통합할 때
- MCP plugin의 permissions이나 구조를 검증할 때
Configuring MCP Servers & Plugins
MCP servers extend Claude Code with external tool integrations. Each server provides tools that Claude can invoke directly.
MCP Server Setup in settings.json
{
"mcpServers": {
"github": {
"command": "npx",
"args": ["-y", "@anthropic-ai/mcp-server-github"],
"oauth": {
"clientId": "your-client-id",
"clientSecret": "your-client-secret",
"scopes": ["repo", "issues", "pull_requests"]
}
},
"filesystem": {
"command": "npx",
"args": ["-y", "@modelcontextprotocol/server-filesystem", "/path/to/allowed/files"]
},
"sqlite": {
"command": "npx",
"args": ["-y", "@modelcontextprotocol/server-sqlite", "/path/to/database.db"]
},
"brave-search": {
"command": "npx",
"args": ["-y", "@modelcontextprotocol/server-brave-search"],
"env": {
"BRAVE_SEARCH_API_KEY": "${BRAVE_SEARCH_API_KEY}"
}
}
}
}
Common MCP Servers
| Server | Purpose | Installation | Config |
|---|---|---|---|
| GitHub | PR/issue management, code search | @anthropic-ai/mcp-server-github | OAuth required |
| Filesystem | Safe file access with path restrictions | @modelcontextprotocol/server-filesystem | Path whitelist required |
| SQLite | Database queries & migrations | @modelcontextprotocol/server-sqlite | DB file path |
| Brave Search | Web search integration | @modelcontextprotocol/server-brave-search | API key required |
OAuth Configuration Pattern
{
"oauth": {
"clientId": "your-client-id",
"clientSecret": "your-client-secret",
"scopes": ["repo", "issues"]
}
}
Scope Minimization (principle of least privilege):
- GitHub:
repo(code access),issues(PR/issue access) - NOT
admin, NOTdelete_repo
Filesystem MCP: Path Whitelisting
{
"filesystem": {
"command": "npx",
"args": [
"-y",
"@modelcontextprotocol/server-filesystem",
"${CLAUDE_PROJECT_DIR}/.moai",
"${CLAUDE_PROJECT_DIR}/src",
"${CLAUDE_PROJECT_DIR}/tests"
]
}
}
Security Principle: Explicitly list allowed directories, no wildcards.
Plugin Marketplace Integration
{
"extraKnownMarketplaces": [
{
"name": "company-plugins",
"url": "https://github.com/your-org/claude-plugins"
},
{
"name": "community-plugins",
"url": "https://glama.ai/mcp/servers"
}
]
}
MCP Health Check
# Inside Claude Code terminal
/mcp # List active MCP servers
/plugin validate # Validate plugin structure
/plugin install # Install from marketplace
/plugin enable github # Enable specific server
/plugin disable github # Disable specific server
Environment Variables for MCP
# Set in ~/.bash_profile or .claude/config.json
export GITHUB_TOKEN="gh_xxxx..."
export BRAVE_SEARCH_API_KEY="xxxx..."
export ANTHROPIC_API_KEY="sk-ant-..."
# Launch Claude Code with env
GITHUB_TOKEN=gh_xxxx claude
MCP Troubleshooting
| Issue | Cause | Fix |
|---|---|---|
| Server not connecting | Invalid JSON in mcpServers | Validate with jq .mcpServers settings.json |
| OAuth error | Token expired or invalid scopes | Check claude /usage, regenerate token |
| Permission denied | Path not whitelisted | Add to Filesystem MCP args |
| Slow response | Network latency or server overload | Check server logs, reduce scope |
Best Practices
✅ DO:
- Use environment variables for secrets
- Whitelist Filesystem paths explicitly
- Start with minimal scopes, expand only if needed
- Test MCP connection:
/mcpcommand
❌ DON'T:
- Hardcode credentials in settings.json
- Use wildcard paths (
/in Filesystem MCP) - Install untrusted plugins
- Give admin scopes unnecessarily
Plugin Custom Directory Structure
my-plugin/
├── .claude-plugin/
│ └── plugin.json
├── commands/
│ ├── deploy.md
│ └── rollback.md
├── agents/
│ └── reviewer.md
└── hooks/
└── pre-deploy-check.sh
Validation Checklist
- All server paths are absolute
- OAuth secrets stored in env vars
- Filesystem paths are whitelisted
- No hardcoded tokens or credentials
- MCP server installed:
which npx - Health check passes:
/mcp - Scopes follow least-privilege principle
Reference: Claude Code MCP documentation Version: 1.0.0
Repository
majiayu000
Author
majiayu000/claude-skill-registry/skills/data/moai-cc-mcp-plugins
0
Stars
0
Forks
Updated3h ago
Added1w ago