Is Odoo Mcp Gateway safe to use?

Odoo Mcp Gateway has no known CVEs as of the latest MCPpedia security scan. It requires authentication to connect, which limits unauthorized access.

How do I install Odoo Mcp Gateway?

Odoo Mcp Gateway supports copy-paste install configs on its MCPpedia page for Claude Desktop, Cursor, and Claude Code. Scroll to the Quick Install section and select your client.

What can Odoo Mcp Gateway do?

Odoo Mcp Gateway provides 11 tools: login, list_models, get_model_fields, search_read, get_record and 6 more. See the full tools list on the server page for descriptions and parameters.

What AI clients work with Odoo Mcp Gateway?

Odoo Mcp Gateway is compatible with claude-desktop, cursor, claude-code. It uses stdio and sse and http transport.

Is Odoo Mcp Gateway actively maintained?

Odoo Mcp Gateway is actively maintained — last commit was 4 days ago. It has 3 GitHub stars.

Odoo Mcp Gateway

odoo-mcp-gateway

Security-first MCP gateway for Odoo 17/18/19 — YAML-driven security, 27 tools

3 11 tools GitHub PyPI

No known CVEs

No license

Actively maintained

Last commit 4d ago

Works with most clients

Transport: stdio, sse, http

11 tools · ~1.1k tok

Grade B · 0.5% of 200K ctx

Edit this pageView history

E-Commerce Security

Step 1

Install in your client

Config is the same across clients — only the file and path differ.

Supported in Claude Desktopstdio, sse, http · Node 18+

Paste into ~/Library/Application Support/Claude/claude_desktop_config.json

{
  "mcpServers": {
    "odoo": {
      "env": {
        "ODOO_DB": "mydb",
        "ODOO_URL": "http://localhost:8069"
      },
      "args": [
        "-m",
        "odoo_mcp_gateway"
      ],
      "command": "python"
    }
  }
}

Are you the author?

Add this badge to your README to show your security score and help users find safe servers.

Embed in your READMEAbout badges →

[![MCPpedia Score](https://mcppedia.org/api/badge/io-github-parth-unjiya-odoo-mcp-gateway)](https://mcppedia.org/s/io-github-parth-unjiya-odoo-mcp-gateway)

Read me

What Odoo Mcp Gateway does

Security-first, version-agnostic MCP gateway for Odoo 17/18/19. Works with stock and custom modules via YAML configuration. Zero Odoo-side code required.

Test This Server

Run this in your terminal to verify the server starts. Then let us know if it worked — your result helps other developers.

uvx 'odoo-mcp-gateway' 2>&1 | head -1 && echo "✓ Server started successfully"

After testing, let us know if it worked:

Loading README…

Scored, not listed

Why this score

Five weighted categories — click any category to see the underlying evidence.

Score breakdown

83/100across 5 weighted dimensions

How we score →

0255075100

−17

Security

Maintenance

Efficiency

Documentation

Compatibility

Categoriesclick a row to see evidence

Security

OSV.dev

No known CVEs.

Checked odoo-mcp-gateway against OSV.dev.

Inventory

Tools (11)

Click any tool to inspect its schema.

~1.1k tokens total

Inventory

Resources (4)

odoo://models

List all accessible models

odoo://models

odoo://models/{name}

Model detail with field definitions

odoo://models/{name}

odoo://record/{model}/{id}

Single record data with RBAC field filtering

odoo://record/{model}/{id}

odoo://schema/{model}

Model schema with field definitions

odoo://schema/{model}

Community

Reviews

Be the first to review

Have you used this server?

Share your experience — it helps other developers decide.

How easy was setup?Did it work reliably?How was the documentation?

Frequently Asked Questions

Is Odoo Mcp Gateway safe to use?: Odoo Mcp Gateway has no known CVEs as of the latest MCPpedia security scan. It requires authentication to connect, which limits unauthorized access.
How do I install Odoo Mcp Gateway?: Odoo Mcp Gateway supports copy-paste install configs on its MCPpedia page for Claude Desktop, Cursor, and Claude Code. Scroll to the Quick Install section and select your client.
What can Odoo Mcp Gateway do?: Odoo Mcp Gateway provides 11 tools: login, list_models, get_model_fields, search_read, get_record and 6 more. See the full tools list on the server page for descriptions and parameters.
What AI clients work with Odoo Mcp Gateway?: Odoo Mcp Gateway is compatible with claude-desktop, cursor, claude-code. It uses stdio and sse and http transport.
Is Odoo Mcp Gateway actively maintained?: Odoo Mcp Gateway is actively maintained — last commit was 4 days ago. It has 3 GitHub stars.

Similar servers

Others in ecommerce / security

View all →

Evil Mcp Server93

An evil MCP server used for redteam testing

30 1

Ida Pro Mcp92

AI-powered reverse engineering assistant that bridges IDA Pro with language models through MCP.

8.7k 3

Iam Policy Autopilot90

IAM Policy Autopilot is an open source static code analysis tool that helps you quickly create baseline AWS IAM policies that you can refine as your application evolves. This tool is available as a command-line utility and MCP server for use within AI coding assistants for quickly building IAM policies.

361 1

io.github.peacprotocol/peac90

Signed receipts for agent, API, and MCP interactions. Portable and offline-verifiable.

11 5

MCP Security Weekly

Get CVE alerts and security updates for Odoo Mcp Gateway and similar servers.

Community

Discussion

Start a conversation

Ask a question, share a tip, or report an issue.

Has anyone used this with Cursor?How do you handle auth?Any alternatives?

Edit this pageView history

E-Commerce Security

Step 1

Install in your client

Config is the same across clients — only the file and path differ.

Supported in Claude Desktopstdio, sse, http · Node 18+

Paste into ~/Library/Application Support/Claude/claude_desktop_config.json

{
  "mcpServers": {
    "odoo": {
      "env": {
        "ODOO_DB": "mydb",
        "ODOO_URL": "http://localhost:8069"
      },
      "args": [
        "-m",
        "odoo_mcp_gateway"
      ],
      "command": "python"
    }
  }
}

Are you the author?

Add this badge to your README to show your security score and help users find safe servers.

Embed in your READMEAbout badges →

[![MCPpedia Score](https://mcppedia.org/api/badge/io-github-parth-unjiya-odoo-mcp-gateway)](https://mcppedia.org/s/io-github-parth-unjiya-odoo-mcp-gateway)

Read me

What Odoo Mcp Gateway does

Security-first, version-agnostic MCP gateway for Odoo 17/18/19. Works with stock and custom modules via YAML configuration. Zero Odoo-side code required.

Test This Server

Run this in your terminal to verify the server starts. Then let us know if it worked — your result helps other developers.

uvx 'odoo-mcp-gateway' 2>&1 | head -1 && echo "✓ Server started successfully"

After testing, let us know if it worked:

README

odoo-mcp-gateway

Security-first, version-agnostic MCP gateway for Odoo 17/18/19. Works with stock and custom modules via YAML configuration. Zero Odoo-side code required.

30-Second Quick Start

pip install odoo-mcp-gateway

Add to Claude Desktop config (claude_desktop_config.json):

{
  "mcpServers": {
    "odoo": {
      "command": "python",
      "args": ["-m", "odoo_mcp_gateway"],
      "env": {
        "ODOO_URL": "http://localhost:8069",
        "ODOO_DB": "your_database"
      }
    }
  }
}

Restart Claude Desktop. In any conversation:

login with method "password", username "admin", credential "your_password"

You're connected. Ask Claude to query, create, or update Odoo records — every call is rate-limited, audit-logged, and runs through two layers of security checks before reaching Odoo.

No Odoo addon required. No Python code to write. Just YAML config for fine-grained access control (optional — secure defaults work out of the box).

What's New in v0.2.1

Brute-force protection — per-username (5/5min) + per-source (30/15min) lockout
dry_run mode on create_record, update_record, delete_record, execute_method — validate without executing
2 new tools: get_defaults (preview Odoo defaults), get_onchange (preview field side effects)
Temporal grouping in read_group: create_date:month, date:quarter, etc.
Hardened blocklists: 32 always-blocked models (was 17), 29 always-blocked methods (was 18), 10 always-blocked write fields, 8 always read-only models
Server-side admin verification via has_group('base.group_system') (was trusted from auth response)
Credential wrapper prevents password leakage via repr()/traceback
JSON-RPC retry only fires on OdooSessionExpiredError (was retrying on every auth error)

See CHANGELOG.md for the full list of 21 security fixes.

Why This Exists

Existing Odoo MCP servers share common problems: hardcoded model lists that miss custom modules, security as an afterthought, mandatory custom Odoo addons, and single-version targets. This gateway solves all of them:

Two-layer security — MCP restrictions (YAML) + Odoo's built-in ACLs (ir.model.access + ir.rule)
YAML-driven configuration — model restrictions, RBAC, field-level access, rate limiting, audit logging
Custom module support — auto-discovers models via ir.model, add YAML config and it works
Version-agnostic — Odoo 17, 18, 19 with version-specific adapters
Zero Odoo-side code — pip install + YAML config = done. No custom addon required
Full MCP primitives — 31 Tools + 6 Resources + 12 Prompts (most servers only implement Tools)
Plugin architecture — extend with pip-installable domain packs via entry_points

Architecture

MCP Client (Claude Desktop / Claude Code / HTTP)
    |  User calls login tool with Odoo credentials
    v
MCP Server (FastMCP)
    |
    |-- security_gate()    --> Rate limit + RBAC tool access + audit logging
    |-- restrictions       --> Model/method/field block lists (YAML + hardcoded)
    |-- rbac               --> Field-level filtering + write sanitization
    |
    |-- tools/             --> 31 MCP tools (auth + schema + CRUD + workflow + plugins)
    |-- resources/         --> 6 MCP resources (odoo:// URIs)
    |-- prompts/           --> 12 reusable prompt templates
    |-- plugins/           --> Entry-point plugin system (HR, 

... [View full README on GitHub](https://github.com/parth-unjiya/odoo-mcp-gateway#readme)

Loading README…

Scored, not listed

Why this score

Five weighted categories — click any category to see the underlying evidence.

Score breakdown

83/100across 5 weighted dimensions

How we score →

0255075100

−17

Security

Maintenance

Efficiency

Documentation

Compatibility

Categoriesclick a row to see evidence

Security

OSV.dev

No known CVEs.

Checked odoo-mcp-gateway against OSV.dev.

Inventory

Tools (11)

Click any tool to inspect its schema.

~1.1k tokens total

Inventory

Resources (4)

odoo://models

List all accessible models

odoo://models

odoo://models/{name}

Model detail with field definitions

odoo://models/{name}

odoo://record/{model}/{id}

Single record data with RBAC field filtering

odoo://record/{model}/{id}

odoo://schema/{model}

Model schema with field definitions

odoo://schema/{model}

Community

Reviews

Be the first to review

Have you used this server?

Share your experience — it helps other developers decide.

How easy was setup?Did it work reliably?How was the documentation?

Frequently Asked Questions

Is Odoo Mcp Gateway safe to use?: Odoo Mcp Gateway has no known CVEs as of the latest MCPpedia security scan. It requires authentication to connect, which limits unauthorized access.
How do I install Odoo Mcp Gateway?: Odoo Mcp Gateway supports copy-paste install configs on its MCPpedia page for Claude Desktop, Cursor, and Claude Code. Scroll to the Quick Install section and select your client.
What can Odoo Mcp Gateway do?: Odoo Mcp Gateway provides 11 tools: login, list_models, get_model_fields, search_read, get_record and 6 more. See the full tools list on the server page for descriptions and parameters.
What AI clients work with Odoo Mcp Gateway?: Odoo Mcp Gateway is compatible with claude-desktop, cursor, claude-code. It uses stdio and sse and http transport.
Is Odoo Mcp Gateway actively maintained?: Odoo Mcp Gateway is actively maintained — last commit was 4 days ago. It has 3 GitHub stars.