How do I install Mpesa?

Mpesa is a local plugin. Install it using PyPI package: mpesa-mcp and add the generated configuration snippet to your AI app's MCP config file. Then restart your AI app.

What credentials does Mpesa need?

Mpesa requires the following credentials or environment variables: MPESA_CONSUMER_KEY, MPESA_CONSUMER_SECRET, MPESA_SHORTCODE, MPESA_PASSKEY, MPESA_ENV, AT_API_KEY, AT_USERNAME. You can find setup instructions on the server detail page.

What AI apps work with Mpesa?

Mpesa uses the Model Context Protocol (MCP) and works with any MCP-compatible AI app, including Claude, ChatGPT / Codex, Gemini, Copilot, Cursor, and more.

Back to Browse

Mpesa

by Gabrielmahia

Developer ToolsUse Caution3.2MCP RegistryLocal

Free

Server data from the Official MCP Registry

M-Pesa + Africa's Talking MCP server — payments, SMS, airtime for AI agents in East Africa.

About

M-Pesa + Africa's Talking MCP server — payments, SMS, airtime for AI agents in East Africa.

What You'll Need

Set these up before or after installing:

Safaricom Daraja consumer keyRequired

Environment variable: MPESA_CONSUMER_KEY

Safaricom Daraja consumer secretRequired

Environment variable: MPESA_CONSUMER_SECRET

M-Pesa shortcode (till or paybill number)Optional

Environment variable: MPESA_SHORTCODE

M-Pesa Lipa Na M-Pesa online passkeyRequired

Environment variable: MPESA_PASSKEY

Daraja environment: sandbox or productionOptional

Environment variable: MPESA_ENV

Africa's Talking API keyRequired

Environment variable: AT_API_KEY

Africa's Talking username (use 'sandbox' for testing)Optional

Environment variable: AT_USERNAME

How to Install

Add this to your MCP configuration file:

{
  "mcpServers": {
    "io-github-gabrielmahia-mpesa-mcp": {
      "env": {
        "MPESA_ENV": "your-mpesa-env-here",
        "AT_API_KEY": "your-at-api-key-here",
        "AT_USERNAME": "your-at-username-here",
        "MPESA_PASSKEY": "your-mpesa-passkey-here",
        "MPESA_SHORTCODE": "your-mpesa-shortcode-here",
        "MPESA_CONSUMER_KEY": "your-mpesa-consumer-key-here",
        "MPESA_CONSUMER_SECRET": "your-mpesa-consumer-secret-here"
      },
      "args": [
        "mpesa-mcp"
      ],
      "command": "uvx"
    }
  }
}

Security Report

3.2

Use Caution3.2High Risk

This M-Pesa/Africa's Talking MCP server has appropriate functionality for its fintech purpose but lacks secure credential handling. Multiple API keys and credentials are required but not validated, and sensitive financial data may be logged in API responses. Supply chain analysis found 8 known vulnerabilities in dependencies (0 critical, 3 high severity). Package verification found 1 issue.

Scanned 5 files · 13 findings

Security scores are indicators to help you make informed decisions, not guarantees. Always review permissions before connecting any MCP server.

Permissions Required

This plugin requests these system permissions. Most are normal for its category.

env_vars

Check that this permission is expected for this type of plugin.

HTTP Network Access

Connects to external APIs or services over the internet.

Reviews

No reviews yet

Be the first to review this server!