Description
MCP-1Panel is a server implementation that provides AI assistants with direct access to 1Panel server management capabilities. It exposes tools for managing websites, databases, SSL certificates, and applications through a standardized interface. Built with Go, it supports both stdio and SSE transport modes, authenticates with 1Panel via access tokens, and handles API requests through a client that manages error states appropriately. This implementation is particularly valuable for server administrators who want to monitor system information, deploy applications like MySQL and OpenResty, or manage web infrastructure directly through conversational AI without switching contexts.
Installation
git clone https://github.com/1panel-dev/mcp-1panelClaude Desktop Configuration
Add this configuration to your Claude Desktop config file to enable this MCP server:
Config file location: ~/Library/Application Support/Claude/claude_desktop_config.json
Config file location: %APPDATA%\Claude\claude_desktop_config.json
Config file location: ~/.config/Claude/claude_desktop_config.json
{
"mcpServers": {
"1panel": {
"command": "node",
"args": [
"path/to/server.js"
]
}
}
}Security Audit
| Dimension | Result | Details |
|---|---|---|
| Transport Security | Stdio (Local) | Stdio is local-only process communication. SSE/HTTP exposes network attack surface. |
| Authentication | API Key | Static API key — long-lived secret must be stored securely. |
| Token Lifecycle | Long-lived (Static) | Short-lived tokens limit exposure window if compromised. Long-lived tokens require secure rotation policies. |
| Input Handling | Shell Strings (Risky) | Parameterized inputs prevent injection attacks. Shell strings enable command injection vectors. |
| Data Residency | Local Only | Local-only data never leaves your machine. Cloud residency means data flows through third-party APIs. |