How do I install Strava?

Strava is a local plugin. Install it using npm package: strava-mcp-server and add the generated configuration snippet to your AI app's MCP config file. Then restart your AI app.

What credentials does Strava need?

Strava requires the following credentials or environment variables: STRAVA_CLIENT_ID, STRAVA_CLIENT_SECRET, STRAVA_ACCESS_TOKEN. You can find setup instructions on the server detail page.

What AI apps work with Strava?

Strava uses the Model Context Protocol (MCP) and works with any MCP-compatible AI app, including Claude, ChatGPT / Codex, Gemini, Copilot, Cursor, and more.

Back to Browse

Strava

by R Huijts

Developer ToolsModerate5.5MCP RegistryLocal

Free

Server data from the Official MCP Registry

MCP server for accessing Strava API

About

MCP server for accessing Strava API

What You'll Need

Set these up before or after installing:

Your Strava API client IDOptional

Environment variable: STRAVA_CLIENT_ID

Your Strava API client secretRequired

Environment variable: STRAVA_CLIENT_SECRET

Your Strava API access tokenRequired

Environment variable: STRAVA_ACCESS_TOKEN

Unverified package source

We couldn't verify that the installable package matches the reviewed source code. Proceed with caution.

How to Install

Add this to your MCP configuration file:

{
  "mcpServers": {
    "io-github-r-huijts-strava-mcp": {
      "env": {
        "STRAVA_CLIENT_ID": "your-strava-client-id-here",
        "STRAVA_ACCESS_TOKEN": "your-strava-access-token-here",
        "STRAVA_CLIENT_SECRET": "your-strava-client-secret-here"
      },
      "args": [
        "-y",
        "@r-huijts/strava-mcp-server"
      ],
      "command": "npx"
    }
  }
}

Security Report

5.5

Moderate5.5Moderate Risk

Well-structured Strava MCP server with proper OAuth 2.0 authentication and comprehensive input validation. Authentication is handled securely with configurable OAuth flow and automatic token refresh. Permissions are appropriately scoped for Strava API integration with network access for API calls and file system for configuration storage. Supply chain analysis found 9 known vulnerabilities in dependencies (1 critical, 6 high severity). Package verification found 1 issue (1 critical, 0 high severity).

Scanned 3 files · 13 findings

Security scores are indicators to help you make informed decisions, not guarantees. Always review permissions before connecting any MCP server.

Permissions Required

This plugin requests these system permissions. Most are normal for its category.

HTTP Network Access

Connects to external APIs or services over the internet.

File System Read

Reads files on your machine. Normal for tools that analyze or process local data.

File System Write

Writes or modifies files on your machine. Check that this is expected for the tool.

env_vars

Check that this permission is expected for this type of plugin.

Reviews

No reviews yet

Be the first to review this server!