Basecamp MCP Server

An MCP Server that interacts with the Basecamp 3+ API

MaintainedNot tested

Other

★ 81PyPI GitHub

82No CVEsmaintained22 toolsMIT

Quick Install

{
  "mcpServers": {
    "basecamp": {
      "env": {
        "PYTHONPATH": "/path/to/your/project",
        "VIRTUAL_ENV": "/path/to/your/project/venv",
        "BASECAMP_ACCOUNT_ID": "your_account_id"
      },
      "args": [
        "/path/to/your/project/basecamp_fastmcp.py"
      ],
      "command": "/path/to/your/project/venv/bin/python"
    }
  }
}

Setup guide

Should you use this server?

An MCP Server that interacts with the Basecamp 3+ API

✓

Is it safe?

No known CVEs for mcp. 3 previously resolved.

No authentication — any process on your machine can connect.

MIT. View license →

✓

Is it maintained?

Last commit 30 days ago. 81 stars.

Will it work with my client?

Transport: stdio, http. Works with Claude Desktop, Cursor, Claude Code, and most MCP clients.

Context cost

22 tools. ~1,300 tokens (0.7% of 200K). Consider loading selectively.

Test This Server

Run this in your terminal to verify the server starts. Then let us know if it worked — your result helps other developers.

uvx mcp 2>&1 | head -1 && echo "✓ Server started successfully"

After testing, let us know if it worked:

Tools (22)

get_projects

Get all Basecamp projects

get_project

Get details for a specific project

get_todolists

Get todo lists for a project

get_todolist

Get a specific todo list by ID

create_todolist

Create a new todo list in a project

update_todolist

Update an existing todo list (name and/or description)

trash_todolist

Move a todo list to the trash (recoverable within 30 days)

get_todos

Get todos from a todo list (returns all pages; handles Basecamp pagination transparently)

get_todo

Get a single todo item by its ID

create_todo

Create a new todo item in a todo list (with assignees, due dates, descriptions)

Help improve this page

This server is missing a description.If you've used it, help the community.

Add information

Score Breakdown

MCPpedia Score

Click each category to see evidence

82A

Last scored 1h ago

How we score →

Security

30/30

No open vulnerabilities. 3 fixed CVEs.

Advisories (0 open, 3 fixed)

mediumCVSS 4CVE-2025-66416Fixed

Model Context Protocol (MCP) Python SDK does not enable DNS rebinding protection by default

### Description The Model Context Protocol (MCP) Python SDK does not enable DNS rebinding protection by default for HTTP-based servers. When an HTTP-based MCP server is run on localhost without authentication using `FastMCP` with streamable HTTP or SSE transport, and has not configured `TransportSecuritySettings`, a malicious website could exploit DNS rebinding to bypass same-origin policy restrictions and send requests to the local MCP server. This could allow an attacker to invoke tools or ac

Affected: >= 0Fixed in 1.23.0Published Dec 2, 2025source \u2192

mediumCVSS 4CVE-2025-53366Fixed

MCP Python SDK vulnerability in the FastMCP Server causes validation error, leading to DoS

A validation error in the MCP SDK can cause an unhandled exception when processing malformed requests, resulting in service unavailability (500 errors) until manually restarted. Impact may vary depending on the deployment conditions, and presence of infrastructure-level resilience measures. Thank you to Rich Harang for reporting this issue.

Affected: >= 0Fixed in 1.9.4Published Jul 4, 2025source \u2192

mediumCVSS 4CVE-2025-53365Fixed

MCP Python SDK has Unhandled Exception in Streamable HTTP Transport, Leading to Denial of Service

If a client deliberately triggers an exception after establishing a streamable HTTP session, this can lead to an uncaught ClosedResourceError on the server side, causing the server to crash and requiring a restart to restore service. Impact may vary depending on the deployment conditions, and presence of infrastructure-level resilience measures. Thank you to Rich Harang for reporting this issue.

Affected: >= 0Fixed in 1.10.0Published Jul 4, 2025source \u2192