Server data from the Official MCP Registry
MCP server for Kaseya SaaS Alerts — SaaS security monitoring for M365 & Google Workspace.
MCP server for Kaseya SaaS Alerts — SaaS security monitoring for M365 & Google Workspace.
This is a well-structured MCP server for the Kaseya SaaS Alerts API with proper authentication, clear authorization boundaries, and good security practices. The server implements elicitation-based confirmations for destructive operations, uses environment variables for credential storage, and has no malicious patterns. Minor code quality findings around type casting and broad exception handling do not materially impact security. Supply chain analysis found 6 known vulnerabilities in dependencies (2 critical, 3 high severity).
7 files analyzed · 10 issues found
Security scores are indicators to help you make informed decisions, not guarantees. Always review permissions before connecting any MCP server.
This plugin requests these system permissions. Most are normal for its category.
Set these up before or after installing:
Environment variable: SAAS_ALERTS_API_KEY
Environment variable: MCP_TRANSPORT
Environment variable: AUTH_MODE
Environment variable: LOG_LEVEL
Add this to your MCP configuration file:
{
"mcpServers": {
"io-github-wyre-technology-saas-alerts-mcp": {
"env": {
"AUTH_MODE": "your-auth-mode-here",
"LOG_LEVEL": "your-log-level-here",
"MCP_TRANSPORT": "your-mcp-transport-here",
"SAAS_ALERTS_API_KEY": "your-saas-alerts-api-key-here"
},
"args": [
"-y",
"saas-alerts-mcp"
],
"command": "npx"
}
}
}From the project's GitHub README.
Model Context Protocol server for Kaseya SaaS Alerts — a SaaS security monitoring platform for M365 and Google Workspace events.
Part of the WYRE Technology MCP fleet.
Exposes the full SaaS Alerts External Partner API (v0.20.0) through 30 MCP tools organized by domain:
| Domain | Tools |
|---|---|
| events | Query/count security events by severity, customer, user, event type; advanced Elasticsearch queries; scroll pagination; recommended actions |
| customers | List, get, create, update, delete customers; set IP/country and account whitelists |
| users | MSP user info, partner users, customer users |
| devices | Unify mapped/unmapped/ignored devices, device organizations |
| billing | Billing details by date, billing date history |
| reports | List/get/create/delete scheduled reports |
| partner | Partner profile, branding settings |
Write/destructive tools require user confirmation via MCP elicitation (fail-open: proceeds if client doesn't support elicitation).
SaaS Alerts uses an API key sent as the api_key HTTP header.
Generate your API key in the SaaS Alerts UI under Settings → API Keys.
export SAAS_ALERTS_API_KEY=your-api-key
node dist/index.js
export SAAS_ALERTS_API_KEY=your-api-key
export MCP_TRANSPORT=http
export MCP_HTTP_PORT=8080
node dist/http.js
When running behind the WYRE MCP Gateway, set AUTH_MODE=gateway. The gateway injects the API key per-request via the X-SaaS-Alerts-API-Key header — no env var needed.
docker compose up
Or pull from GHCR:
docker run -e SAAS_ALERTS_API_KEY=your-key \
-e MCP_TRANSPORT=http \
-p 8080:8080 \
ghcr.io/wyre-technology/saas-alerts-mcp:latest
npm install
npm run build
npm test
npm run lint
node scripts/lint-destructive-warnings.mjs src
Tools that permanently delete data (customer delete, scheduled report delete) carry:
⚠ DESTRUCTIVE — IRREVERSIBLE description prefixannotations.destructiveHint: trueAlways confirm with the user before invoking these tools.
Apache-2.0 — see LICENSE.
Be the first to review this server!
by Modelcontextprotocol · Developer Tools
Web content fetching and conversion for efficient LLM usage
by Modelcontextprotocol · Developer Tools
Read, search, and manipulate Git repositories programmatically
by Toleno · Developer Tools
Toleno Network MCP Server — Manage your Toleno mining account with Claude AI using natural language.