Skip to content

xrmcp/python-sdk

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

3 Commits
examples/getting-started
examples/getting-started
 
 
specification/v0.1.0
specification/v0.1.0
 
 
src
src
 
 
tests
tests
 
 
.DS_Store
.DS_Store
 
 
.gitignore
.gitignore
 
 
LICENSE
LICENSE
 
 
README.md
README.md
 
 
pyproject.toml
pyproject.toml
 
 

Repository files navigation

xrMCP Python SDK

Python runtime for xrMCP — install AI tools from JSON manifests without deploying hardcoded MCP servers.

What it does

The SDK exposes a Starlette app you embed in your own host application. It provides:

  • POST /tools/register — register a tool from a .xrmcp.json manifest at runtime
  • GET /tools/list-installed — list currently installed tools
  • DELETE /tools/{name} — uninstall a tool
  • /mcp — MCP Streamable HTTP endpoint for your agent

Quick start

pip install xrmcp
pip install "uvicorn>=0.30"

See examples/getting-started/ for a minimal host server.

Register a tool

# Using curl
curl -X POST http://127.0.0.1:7373/tools/register \
  -H 'authorization: Bearer my-secret-token' \
  -H 'content-type: application/json' \
  -d @examples/getting-started/registry/jsonph/list_posts.xrmcp.json

# Using the CLI
XRMCP_API_TOKEN=my-secret-token xrmcp tool install examples/getting-started/registry/jsonph/list_posts.xrmcp.json

Tool manifests follow specification/v0.1.0/schema.json.

REST API auth

The management endpoints:

  • POST /tools/register
  • GET /tools/list-installed
  • DELETE /tools/{name}

support these environment variables:

  • XRMCP_API_AUTH_MODEnone or bearer (default: none)
  • XRMCP_API_TOKEN — required when XRMCP_API_AUTH_MODE=bearer

When bearer auth is enabled, clients must send:

Authorization: Bearer <token>

If neither auth variable is set, app creation logs a warning that the REST API is running in development mode without auth.

Example:

export XRMCP_API_AUTH_MODE=bearer
export XRMCP_API_TOKEN=my-secret-token
uvicorn xrmcp.app:create_app --factory --host 127.0.0.1 --port 7373

Current scope

  • api execution type only
  • registry persists to disk (XRMCP_STORE_PATH or ./xrmcp_store/tools.json by default)
  • manifest-native tool exposure through the official MCP Python SDK
  • minimal permission enforcement

Secrets

Secrets referenced in manifests (e.g. {{secrets.MY_TOKEN}}) are resolved via a SecretStore. The default store reads from environment variables. Pass a custom store to use any backend:

from xrmcp import XRMCPRuntime, SecretStore

class VaultSecretStore(SecretStore):
    def get(self, name: str) -> str | None:
        return vault_client.read(name)

runtime = XRMCPRuntime(secret_store=VaultSecretStore())

Limitations

  • permissions.network uses a minimal allowlist check

About

Python SDK for xrMCP

Resources

Readme

License

Apache-2.0 license
Activity
Custom properties

Stars

0 stars

Watchers

0 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

 
 
 

Contributors

Languages