How do I install Dev Latam?

Dev Latam is a local plugin. Install it using npm package: @codespar/mcp-coinbase-cdp and add the generated configuration snippet to your AI app's MCP config file. Then restart your AI app.

What credentials does Dev Latam need?

Dev Latam requires the following credentials or environment variables: COINBASE_CDP_KEY_NAME, COINBASE_CDP_PRIVATE_KEY. You can find setup instructions on the server detail page.

What AI apps work with Dev Latam?

Dev Latam uses the Model Context Protocol (MCP) and works with any MCP-compatible AI app, including Claude, ChatGPT / Codex, Gemini, Copilot, Cursor, and more.

Back to Browse

Dev Latam MCP Server

by User

FinanceUse Caution4.2LocalNew

Free

MCP server for Coinbase Developer Platform (CDP) — Trading, Wallets, Payments under one CDP key

About

MCP server for Coinbase Developer Platform (CDP) — Trading, Wallets, Payments under one CDP key

Security Report

4.2

Use Caution4.2High Risk

MCP Dev LATAM is a large, well-structured monorepo of 109 finance/commerce MCP servers for Latin American providers. The codebase demonstrates good architectural patterns and proper authentication handling for a finance category server. However, several moderate concerns emerge: (1) The analyzed Sift fraud server (`packages/fraud/sift/src/index.ts`) ships as alpha with unverified endpoint paths acknowledged in comments, creating potential for API contract mismatches; (2) alpha packages across the repo are contract-gated and unverified, increasing deployment risk; (3) some potential for sensitive data logging in error paths; (4) basic HTTP error handling without detailed sanitization. Permissions are appropriate for the finance category (network_http, env_vars for credentials). The server itself has no malicious patterns or exfiltration, but the alpha status and reliance on unverified endpoints warrant caution in production use. Supply chain analysis found 2 known vulnerabilities in dependencies (1 critical, 0 high severity). Package verification found 1 issue (1 critical, 0 high severity).

4 files analyzed · 10 issues found

Security scores are indicators to help you make informed decisions, not guarantees. Always review permissions before connecting any MCP server.

Permissions Required

This plugin requests these system permissions. Most are normal for its category.

HTTP Network Access

Connects to external APIs or services over the internet.

env_vars

Check that this permission is expected for this type of plugin.

Unverified package source

We couldn't verify that the installable package matches the reviewed source code. Proceed with caution.

What You'll Need

Set these up before or after installing:

CDP key id of the form organizations/<org>/apiKeys/<id>. Mint at https://portal.cdp.coinbase.com.Optional

Environment variable: COINBASE_CDP_KEY_NAME

PEM-encoded ECDSA P-256 private key downloaded once at mint time from https://portal.cdp.coinbase.com. Pass the full PEM including BEGIN/END lines.Required

Environment variable: COINBASE_CDP_PRIVATE_KEY

How to Install

Add this to your MCP configuration file:

{
  "mcpServers": {
    "io-github-codespar-mcp-coinbase-cdp": {
      "env": {
        "COINBASE_CDP_KEY_NAME": "your-coinbase-cdp-key-name-here",
        "COINBASE_CDP_PRIVATE_KEY": "your-coinbase-cdp-private-key-here"
      },
      "args": [
        "-y",
        "mcp-dev-latam"
      ],
      "command": "npx"
    }
  }
}