GitLab MCP Server

Also available in Russian: README-ru.md

GitLab MCP server provides tools for working with GitLab projects, merge requests, and tags directly from Claude Code, Code CLI, and other MCP clients.

Table of Contents

• Features
• Requirements
• Installation
  • Using npx (Recommended)
  • Using Claude MCP CLI
  • Manual Installation (Development)
• Development & Release
  • GitHub Actions Workflows
  • Setting up NPM_TOKEN
  • Release Process
  • Manual Build & Test
• Running the server (stdio)
• Configuration for Code (Recommended)
• Configuration for Claude Code CLI
• Configuration for VS Code Cline
• MCP Tools
  • Read-Only vs Write Mode
  • Tool Usage Guidelines
• Response Format

Features

• List available projects and get detailed project information.
• View repository tags with SemVer-based next release tag calculation.
• List merge requests with filters for state and update date.
• Get merge request details with freshness indicator (merged within 24 hours).
• View changed files and full diffs for merge requests with pagination and filtering.
• Search merge requests by title and description.
• List GitLab users with activity tracking and batch operations.
• Manage project and group members with access level information.
• Monitor CI/CD pipelines with status filters and date ranges.
• View pipeline jobs with execution details, artifacts, and runner info.
• Track build history and analyze job failures across projects.

Requirements

• Node.js ≥ 20
• Environment variables:
  • GITLAB_URL — GitLab instance base URL
  • GITLAB_TOKEN — Personal access token
    • Read-only mode (default): read_api and read_repository scopes
    • Write mode (for tag creation): api scope
  • GITLAB_READ_ONLY — Optional, defaults to true for safety
    • Set to false to enable write operations (tag creation)
  • GITLAB_TIMEZONE — Optional, timezone for date/time formatting (defaults to Europe/Moscow)
    • Examples: UTC, America/New_York, Asia/Tokyo, Europe/London
    • All dates in API responses will be formatted in the specified timezone

Installation

Using npx (Recommended)

You can run the server directly with npx without installation:

GITLAB_URL="https://gitlab.example.com" \
GITLAB_TOKEN="glpat-your-token-here" \
npx -y @vitalyostanin/gitlab-mcp@latest

Using Claude MCP CLI

Install using Claude MCP CLI:

claude mcp add --scope user \
--env GITLAB_URL='https://gitlab.example.com' \
--env GITLAB_TOKEN='glpat-your-token-here' \
gitlab-mcp -- npx -y @vitalyostanin/gitlab-mcp@latest

Scope Options:

• --scope user: Install for current user (all projects)
• --scope project: Install for current project only

Removal:

claude mcp remove gitlab-mcp --scope user

Manual Installation (Development)

npm install
npm run build

Development & Release

GitHub Actions Workflows

This project uses GitHub Actions for continuous integration and automated releases:

CI Workflow (.github/workflows/ci.yml)

Runs automatically on every push and pull request:

• Triggers: All branches, all pull requests
• Node.js versions: 20.x, 22.x (matrix testing)
• Steps:
  1. Install dependencies (npm ci)
  2. Run linter (npm run lint)
  3. Build project (npm run build)
  4. Verify build artifacts (executable check)

Publish Workflow (.github/workflows/publish.yml)

Runs automatically when you create a new version tag:

• Trigger: Git tags matching v* pattern (e.g., v0.1.0, v1.2.3)
• Node.js version: 20.x
• Steps:
  1. Install dependencies
  2. Build project
  3. Publish to npm registry
  4. Create GitHub Release

Setting up NPM_TOKEN

To enable automatic publishing to npm, you need to configure the NPM_TOKEN secret:

1. Generate npm Access Token:

   • Go to npmjs.com and log in
   • Navigate to Access Tokens in your account settings
   • Click Generate New Token → Classic Token
   • Select Automation type (for CI/CD)
   • Copy the generated token

2. Add Secret to GitHub:

   • Go to your GitHub repository
   • Navigate to Settings → Secrets and variables → Actions
   • Click New repository secret
   • Name: NPM_TOKEN
   • Value: Paste your npm token
   • Click Add secret

Release Process

To create a new release:

# 1. Update version in package.json and create git tag
npm version patch   # for 0.1.0 → 0.1.1
# or
npm version minor   # for 0.1.0 → 0.2.0
# or
npm version major   # for 0.1.0 → 1.0.0

# 2. Push the tag to GitHub
git push --follow-tags

# 3. GitHub Actions will automatically:
#    - Run tests and build
#    - Publish to npm
#    - Create GitHub Release

Note: The npm version command automatically:

• Updates package.json and package-lock.json
• Creates a git commit with message like "0.1.1"
• Creates a git tag like "v0.1.1"

Manual Build & Test

# Install dependencies
npm install

# Build the project
npm run build

# Run linter
npm run lint

# Watch mode for development
npm run dev:watch

Running the server (stdio)

GITLAB_URL="https://gitlab.example.com" \
GITLAB_TOKEN="glpat-example-token" \
node dist/index.js

Configuration for Code (Recommended)

Add to ~/.code/config.toml:

[mcp_servers.gitlab-mcp]
command = "npx"
args = ["-y", "@vitalyostanin/gitlab-mcp@latest"]

[mcp_servers.gitlab-mcp.env]
GITLAB_URL = "https://gitlab.example.com"
GITLAB_TOKEN = "glpat-your-token-here"
GITLAB_TIMEZONE = "Europe/Moscow"

Configuration for Claude Code CLI

To use this MCP server with Claude Code CLI, you can:

1. Use Claude MCP CLI - see Installation section above
2. Manual configuration - add to your ~/.claude.json file:

{
  "mcpServers": {
    "gitlab-mcp": {
      "type": "stdio",
      "command": "npx",
      "args": ["-y", "@vitalyostanin/gitlab-mcp@latest"],
      "env": {
        "GITLAB_URL": "https://gitlab.example.com",
        "GITLAB_TOKEN": "glpat-your-token-here",
        "GITLAB_TIMEZONE": "Europe/Moscow",
        "GITLAB_USE_STRUCTURED_CONTENT": "false"
      }
    }
  }
}

Note: This configuration uses npx to run the published package. For local development, use "command": "node" with "args": ["/absolute/path/to/gitlab-mcp/dist/index.js"].

Configuration for VS Code Cline

To use this MCP server with Cline extension in VS Code:

1. Open VS Code with Cline extension installed
2. Click the MCP Servers icon in Cline's top navigation
3. Select the "Configure" tab and click "Configure MCP Servers"
4. Add the following configuration to cline_mcp_settings.json:

{
  "mcpServers": {
    "gitlab-mcp": {
      "command": "npx",
      "args": ["-y", "@vitalyostanin/gitlab-mcp@latest"],
      "env": {
        "GITLAB_URL": "https://gitlab.example.com",
        "GITLAB_TOKEN": "glpat-your-token-here",
        "GITLAB_TIMEZONE": "Europe/Moscow",
        "GITLAB_USE_STRUCTURED_CONTENT": "false"
      }
    }
  }
}

Note: This configuration uses npx to run the published package. For local development, use "command": "node" with "args": ["/absolute/path/to/gitlab-mcp/dist/index.js"]. The GITLAB_TIMEZONE and GITLAB_READ_ONLY environment variables are optional.

MCP Tools

| gitlab_commits | List commits for a project with filters and pagination (brief mode default). | | gitlab_commit_details | Get detailed information about a specific commit by SHA. | | gitlab_commit_diff | Get commit diff files (brief mode default; full diff optional). | | gitlab_commit_statuses | List CI statuses for a commit (by context/pipeline). |

Read-Only vs Write Mode

By default, the GitLab MCP server operates in read-only mode for safety. This prevents accidental modifications to your GitLab repositories.

Read-Only Mode (Default)

• Token requirements: read_api and read_repository scopes
• Available operations: All read operations (list projects, MRs, tags, users, etc.)
• Configuration: No special configuration needed (default behavior)

Write Mode

To enable write operations (currently: tag creation), you must:

1. Generate a new GitLab token with the api scope (instead of read_api)

   • Go to GitLab → Settings → Access Tokens
   • Create a new token with the api scope
   • Note: The api scope includes both read and write permissions

2. Set the environment variable GITLAB_READ_ONLY=false

3. Ensure proper permissions: You need at least Developer role in the target project for tag creation

Example configuration for write mode:

# ~/.code/config.toml
[mcp_servers.gitlab-mcp]
command = "npx"
args = ["-y", "@vitalyostanin/gitlab-mcp@latest"]
env = {
  "GITLAB_URL" = "https://gitlab.example.com",
  "GITLAB_TOKEN" = "glpat-your-api-scope-token",
  "GITLAB_READ_ONLY" = "false",
  "GITLAB_TIMEZONE" = "Europe/Moscow"
}

Security Note: Write mode allows the server to make changes to your repositories. Only enable it when needed and ensure your token is properly secured.

Tool Usage Guidelines

Projects Tools

• gitlab_projects: List available projects with optional filters (membership, archive status, basic search). Uses /api/v4/projects endpoint. Use for: Browsing available projects, listing active projects only (archived: false), or inspecting archived repositories (archived: true). Returns each project with archived flag alongside other metadata.

• gitlab_projects_search: Search for specific projects by keywords using GitLab Search API. Uses /api/v4/search?scope=projects endpoint. Use for: Finding specific projects by name or path (e.g., "telegram/service").

Key Difference: gitlab_projects is for listing/browsing with filters, while gitlab_projects_search provides targeted keyword search using the Search API.

Merge Requests Tools

• gitlab_merge_requests: List merge requests for a specific project with filters (state, date range). Requires a project identifier. Use for: Getting all MRs for a specific project, filtering by state or update date.

• gitlab_merge_requests_search: Search merge requests by text (title, description) using GitLab Search API. Can search across all projects or within a specific project. Use for: Finding MRs by keywords across projects.

Key Difference: gitlab_merge_requests lists MRs for a specific project, while gitlab_merge_requests_search finds MRs by text search across projects.

Freshness Flag

The freshness flag is a boolean field returned by gitlab_merge_request_details that indicates whether a merge request is "fresh" or recently merged:

• For unmerged MRs (state is opened or closed): fresh = true (always considered fresh)
• For merged MRs:
  • fresh = true — merged within the last 24 hours
  • fresh = false — merged more than 24 hours ago

Use cases:

• Identify recently merged changes that may need attention
• Track hot/recent merge activity in a project
• Filter out older merged MRs when reviewing recent changes

Example response:

{
  "mergeRequest": {
    "id": 123,
    "iid": 45,
    "title": "Add new feature",
    "state": "merged",
    "mergedAt": "2025-10-13T10:30:00Z",
    "fresh": true
  }
}

Users Tools

• gitlab_users: List all GitLab users with optional filters (active, blocked, search). Returns basic user info including last activity date. Use for: Browsing available users, searching users by name or username, monitoring user activity.

• gitlab_user_details: Get detailed information about a specific user by ID or username. Includes last activity and sign-in dates. Use for: Getting user profile details, checking user status, viewing activity history.

• gitlab_users_batch: Get detailed information about multiple users at once (batch mode, max 50 users). Optimized for bulk operations with parallel API requests. Returns users array and notFound array for missing users. Use for: Getting details of multiple users efficiently, analyzing team activity, bulk user information retrieval.

• gitlab_current_user: Get information about the current user (API token owner). Includes permissions flags and 2FA status. Use for: Verifying authentication, checking current user permissions.

• gitlab_project_members: List members of a specific project with their access levels (Guest=10, Reporter=20, Developer=30, Maintainer=40, Owner=50). Use for: Checking who has access to a project, reviewing access levels, finding project maintainers.

• gitlab_group_members: List members of a group/namespace with their access levels (Guest=10, Reporter=20, Developer=30, Maintainer=40, Owner=50). Use for: Checking group membership, reviewing group access levels, finding group administrators.

Key Features:

• All user-related tools include lastActivityOn and lastSignInAt fields for activity tracking
• Batch mode supports up to 50 users per request for optimal performance
• Handles missing users gracefully without failing the entire batch request
• Access levels are provided both as numbers and human-readable descriptions

Tags Tools

• gitlab_project_tags: List repository tags with automatic next version suggestion based on SemVer. Returns all tags with commit information, identifies the latest SemVer-compliant tag, and suggests the next patch version. Also provides a pre-filled GitLab web UI URL for easy manual tag creation.

Use cases:

• Planning next release version
• Viewing tag history with automatic versioning
• Getting a quick link to create the next release tag

How it works:

• Parses all tags that follow SemVer format (e.g., v1.2.3, 1.0.0)
• Identifies the highest version as current
• Suggests next patch version (e.g., v1.2.3 → v1.2.4)
• Generates GitLab UI URL: https://gitlab.example.com/project/-/tags/new?tag_name=v1.2.4&ref=master

Example response:

{
  "project": "namespace/my-project",
  "tags": [
    { "name": "v1.2.3", "commitId": "abc123...", "authoredAt": "2025-01-10T10:30:00Z" },
    { "name": "v1.2.2", "commitId": "def456...", "authoredAt": "2025-01-05T14:20:00Z" }
  ],
  "versionInfo": {
    "currentTag": "v1.2.3",
    "suggestedNextTag": "v1.2.4",
    "createTagUrl": "https://gitlab.example.com/namespace/my-project/-/tags/new?tag_name=v1.2.4&ref=master"
  },
  "pagination": {
    "page": 1,
    "perPage": 50,
    "total": 150,
    "hasMore": true
  }
}

• gitlab_project_tag_create: Create a new tag in a GitLab project repository programmatically. Requires write mode - see Read-Only vs Write Mode section above.

Requirements:

• Write mode enabled (GITLAB_READ_ONLY=false)
• GitLab token with api scope
• At least Developer role in the target project

Parameters:

• project (required): Project ID or path (e.g., "namespace/project" or 123)
• tagName (required): Tag name following SemVer format (e.g., "v1.2.4" or "1.2.4")
• ref (optional): Branch name or commit SHA to tag (defaults to "master")
• message (optional): Tag message/annotation
• releaseDescription (optional): Release description (creates a GitLab release)

Use cases:

• Automating release tagging in CI/CD pipelines
• Creating tags programmatically after successful builds
• Batch tag creation across multiple projects

Workflow recommendation:

1. Use gitlab_project_tags to check existing tags and get suggested next version
2. Use gitlab_project_tag_create to create the new tag
3. Handle common errors (tag already exists, insufficient permissions, ref not found)

Example usage:

{
  "project": "namespace/my-project",
  "tagName": "v1.2.4",
  "ref": "master",
  "message": "Release version 1.2.4",
  "releaseDescription": "### Features\n- Added new API endpoint\n- Improved performance"
}

Example response:

{
  "project": "namespace/my-project",
  "tag": {
    "name": "v1.2.4",
    "message": "Release version 1.2.4",
    "target": "master",
    "commit": {
      "id": "abc123def456...",
      "message": "Merge branch 'feature/new-api'",
      "createdAt": "2025-10-14T10:30:00Z"
    },
    "release": {
      "tagName": "v1.2.4",
      "description": "### Features\n- Added new API endpoint\n- Improved performance"
    },
    "url": "https://gitlab.example.com/namespace/my-project/-/tags/v1.2.4"
  }
}

Common errors:

• Read-only mode: Tag creation is disabled by default. Enable write mode as described above.
• 409 Conflict: Tag already exists. Check existing tags with gitlab_project_tags.
• 403 Forbidden: Insufficient permissions. Ensure you have Developer+ role and api scope token.
• 422 Unprocessable: Reference (branch/commit) not found in repository.
• 400 Bad Request: Invalid tag name format. Must follow SemVer (e.g., v1.2.3).

Pipelines & Jobs Tools

The Pipelines & Jobs tools provide comprehensive access to GitLab CI/CD pipeline and job information, enabling you to monitor build status, analyze job execution, and track pipeline history.

• gitlab_pipelines: List project pipelines with optional filters (ref, status, dates). Uses /api/v4/projects/:id/pipelines endpoint. Use for: Browsing pipelines for a project, filtering by branch or status (e.g., failed pipelines on master), monitoring CI/CD activity.

• gitlab_pipeline_details: Get detailed information about a specific pipeline. Use for: Viewing full pipeline details including duration and coverage, checking execution timestamps, getting pipeline URL.

• gitlab_pipeline_jobs: List all jobs within a specific pipeline. Use for: Analyzing pipeline execution stages, viewing job statuses and durations, troubleshooting failed pipeline steps.

• gitlab_project_jobs: List all jobs across all pipelines in a project. Use for: Browsing project-wide job history, filtering by job status (e.g., all failed jobs), analyzing CI/CD patterns.

• gitlab_job_details: Get detailed information about a specific job. Use for: Viewing job execution details, checking artifacts and runner info, analyzing job failures.

• gitlab_latest_pipeline: Quick access to the most recent pipeline for a branch. Use for: Checking current CI/CD status, getting latest build results, monitoring branch health.

Key Features:

• All pipeline and job tools support pagination (default 50, max 100 per page)
• Status filters for targeted searches (e.g., 'failed', 'running', 'success')
• Comprehensive metadata including durations, timestamps, and URLs
• Integration with existing project resolution (by ID or path)

Pipeline Statuses:

• created, waiting_for_resource, preparing, pending - Pipeline is queued or starting
• running - Pipeline is currently executing
• success - All jobs completed successfully
• failed - One or more jobs failed
• canceled - Pipeline was canceled manually
• skipped - Pipeline was skipped (e.g., due to branch rules)
• manual - Pipeline requires manual trigger
• scheduled - Pipeline is scheduled to run

Job Statuses:

• created, pending - Job is waiting to start
• running - Job is currently executing
• success - Job completed successfully
• failed - Job failed
• canceled - Job was canceled
• skipped - Job was skipped
• manual - Job requires manual trigger
• scheduled - Job is scheduled to run

Example workflow:

1. List failed pipelines: gitlab_pipelines({ project: "my-project", status: "failed" })
2. Get pipeline details: gitlab_pipeline_details({ project: "my-project", pipelineId: 12345 })
3. Check failed jobs: gitlab_pipeline_jobs({ project: "my-project", pipelineId: 12345, scope: ["failed"] })
4. Investigate specific job: gitlab_job_details({ project: "my-project", jobId: 67890 })

Example response (gitlab_pipelines):

{
  "project": "namespace/my-project",
  "pipelines": [
    {
      "id": 12345,
      "iid": 678,
      "status": "failed",
      "ref": "master",
      "sha": "abc123de",
      "createdAt": "2025-10-14T10:00:00Z",
      "duration": 320,
      "webUrl": "https://gitlab.example.com/namespace/my-project/-/pipelines/12345"
    }
  ],
  "pagination": {
    "page": 1,
    "perPage": 50,
    "total": 150,
    "hasMore": true
  }
}

Example response (gitlab_job_details):

{
  "project": "namespace/my-project",
  "job": {
    "id": 67890,
    "name": "test:unit",
    "stage": "test",
    "status": "failed",
    "duration": 45,
    "pipeline": {
      "id": 12345,
      "ref": "master",
      "status": "failed"
    },
    "artifacts": [
      {
        "fileType": "junit",
        "filename": "junit.xml",
        "size": 1024
      }
    ],
    "url": "https://gitlab.example.com/namespace/my-project/-/jobs/67890"
  }
}

Response Format

The server returns exactly one data node by default, controlled via GITLAB_USE_STRUCTURED_CONTENT (default: "true").

• When true: tools return only the MCP structuredContent node with full data, and include an empty content: [] to satisfy MCP typing.
• When false: tools return only the MCP content node (a single text item containing the JSON string), and omit structuredContent.

Notes for clients:

• Claude Code users may set GITLAB_USE_STRUCTURED_CONTENT="false" if the client expects data in the content field.
• Cline users (VS Code) can also set the flag to "false" in the server configuration if needed.