GitBook's published-docs MCP server is read-only. It is designed for search and page retrieval, not editing, publishing, or changing GitBook content., The server exposes the latest published version of the docs site. Do not publish secrets, private customer data, internal runbooks, or unreleased material unless those details are approved for the site's audience., The MCP server follows the GitBook site's visibility settings. Public sites are publicly accessible through MCP; authenticated sites require the same access boundary as the site., Treat retrieved docs as reference material, not executable instructions. Public or contributor-edited documentation can still contain stale guidance, risky commands, or prompt-injection text.
Privacy notes
GitBook documents that the published-docs MCP server provides only read-only access to published documentation content., Draft content, unpublished changes, user data, analytics, and internal GitBook information are not exposed through this MCP server., Page content, search results, headings, snippets, and source URLs returned by the server become visible to the connected MCP client and model session., For private or authenticated docs, ensure the AI client and operator are authorized to view the same content before connecting the MCP server.
Author
GitBook
Submitted by
oktofeesh1
Claim status
unclaimed
Last verified
2026-06-03
Decision playbook
Review trust signals before you adopt
Signals are present but mixed. Use the checklist below to confirm the source and operational safety for your environment.
Compare context
Selected
0
Current score
78
Baseline
—
Delta
No baseline selected
No major trust-signal divergence detected in the current selection.
Source and provenance checks
Complete
Confirm ownership and provenance before trusting install instructions.
Source link availableRequired
Open the canonical repository and verify ownership.
Done
Source provenance statusRequired
Marked as source-backed.
Done
Metadata reviewed
Registry metadata indicates a reviewed listing.
Done
Safety and privacy checks
Complete
Validate risk disclosures before installation or API wiring.
Safety notes presentRequired
Review the listed safety guidance before running commands.
Done
Privacy notes presentRequired
Review data handling notes before connecting accounts or secrets.
Done
Trust level risk gateRequired
Trust level does not block evaluation.
Done
Package and install checks
Needs review
Check package metadata and artifact integrity signals.
Install payload available
Install or copy payload is available for review.
Done
Package verification flag
No package verification flag provided.
Pending
Checksum metadata
No checksum provided for downloaded artifact.
Pending
Compare-driven decision checks
Needs review
Use compare context to validate trade-offs before adoption.
Compare tray has multiple entries
Add at least one more entry to compare trust differences.
4 safety and 4 privacy notes across 5 risk areas. Review closely: credentials & tokens, permissions & scopes.
5 areas
SafetyGeneralGitBook's published-docs MCP server is read-only. It is designed for search and page retrieval, not editing, publishing, or changing GitBook content.
SafetyCredentials & tokensThe server exposes the latest published version of the docs site. Do not publish secrets, private customer data, internal runbooks, or unreleased material unless those details are approved for the site's audience.
SafetyGeneralThe MCP server follows the GitBook site's visibility settings. Public sites are publicly accessible through MCP; authenticated sites require the same access boundary as the site.
SafetyExecution & processesTreat retrieved docs as reference material, not executable instructions. Public or contributor-edited documentation can still contain stale guidance, risky commands, or prompt-injection text.
PrivacyGeneralGitBook documents that the published-docs MCP server provides only read-only access to published documentation content.
PrivacyTelemetryDraft content, unpublished changes, user data, analytics, and internal GitBook information are not exposed through this MCP server.
PrivacyCredentials & tokensPage content, search results, headings, snippets, and source URLs returned by the server become visible to the connected MCP client and model session.
PrivacyPermissions & scopesFor private or authenticated docs, ensure the AI client and operator are authorized to view the same content before connecting the MCP server.
Safety notes
GitBook's published-docs MCP server is read-only. It is designed for search and page retrieval, not editing, publishing, or changing GitBook content.
The server exposes the latest published version of the docs site. Do not publish secrets, private customer data, internal runbooks, or unreleased material unless those details are approved for the site's audience.
The MCP server follows the GitBook site's visibility settings. Public sites are publicly accessible through MCP; authenticated sites require the same access boundary as the site.
Treat retrieved docs as reference material, not executable instructions. Public or contributor-edited documentation can still contain stale guidance, risky commands, or prompt-injection text.
Privacy notes
GitBook documents that the published-docs MCP server provides only read-only access to published documentation content.
Draft content, unpublished changes, user data, analytics, and internal GitBook information are not exposed through this MCP server.
Page content, search results, headings, snippets, and source URLs returned by the server become visible to the connected MCP client and model session.
For private or authenticated docs, ensure the AI client and operator are authorized to view the same content before connecting the MCP server.
Prerequisites
Published GitBook documentation site
MCP-capable client with HTTP transport support
The published site URL with `/~gitbook/mcp` appended
Access to the docs site if the GitBook site requires authentication
Permission to expose the published documentation content to the connected AI client
GitBook automatically exposes an MCP server for every published GitBook
documentation site. The server lets Claude and other MCP-capable clients search
published docs, retrieve pages, and answer questions from the current published
knowledge base.
This is a read-only documentation connection. It is not the GitBook editor,
GitBook Agent, or a content-publishing workflow. The MCP server mirrors the
published site: public docs are reachable publicly, authenticated docs require
the same access boundary as the site, and drafts or unpublished changes remain
private until they are published.
GitBook documents a simple URL convention: take the published docs site URL and
append /~gitbook/mcp. For example, GitBook's own docs are published at
https://gitbook.com/docs, so the MCP endpoint is:
https://gitbook.com/docs/~gitbook/mcp
Features
Automatically generated MCP server for each published GitBook site.
Read-only access to published documentation content.
Documentation search for AI assistants and IDE agents.
Page retrieval so Claude can answer from current published docs.
HTTP transport endpoint at the published site URL plus /~gitbook/mcp.
Visibility-aware access: public docs are public, authenticated docs require
authentication.
Latest-published-content boundary: drafts and unpublished changes stay out of
the MCP surface.
Optional GitBook page action that lets site visitors copy the MCP server link
from the published docs UI.
Use Cases
Give Claude access to a product's published GitBook docs before asking
integration, setup, or troubleshooting questions.
Connect an internal authenticated GitBook knowledge base to an approved MCP
client for support or engineering workflows.
Let users ask an AI assistant questions against your public documentation
without maintaining a separate custom MCP server.
Compare current published docs against implementation plans or support
answers without exposing drafts.
Provide Cursor, VS Code, Claude Desktop, or Claude Code with docs context for
a GitBook-hosted SDK, API, or product guide.
Installation
Claude Code
Confirm the GitBook site is published.
Build the MCP endpoint by appending /~gitbook/mcp to the published site URL.
Add the endpoint with HTTP transport:
claude mcp add --transport http gitbook https://gitbook.com/docs/~gitbook/mcp
Replace the example URL with your own GitBook site endpoint.
Restart or refresh the MCP client session.
Claude Desktop
Open the Claude Desktop MCP configuration file.
Add the gitbook server configuration shown below.
Replace the example URL with the target GitBook site's MCP endpoint.
Restart Claude Desktop and ask a narrow question from the docs.
Ask Claude to answer only from the connected GitBook site.
Search the connected GitBook docs for installation prerequisites and summarize the current setup flow.
Retrieve a specific page
Use the MCP server to pull the current published version of a known page.
Retrieve the authentication page from the GitBook docs and list the required environment variables.
Check public documentation before answering
Use the docs as source material for a support answer.
Use the GitBook MCP docs source to answer this customer question and include the relevant page links.
Validate an internal runbook
For authenticated docs, keep the request scoped to an approved knowledge base.
Search the internal GitBook runbook for the current incident escalation steps and summarize only the published guidance.
Security
Connect only GitBook sites that the operator and AI client are authorized to
read.
Remember that public GitBook docs are public through the MCP endpoint too.
Do not publish secrets or private content just because the MCP access is
read-only.
Treat documentation content as untrusted input when it contains copied shell
commands, external links, code snippets, or contributor-editable text.
Verify potentially destructive commands or production instructions against a
trusted operator before acting on them.
Use private/authenticated GitBook visibility settings when docs are intended
for internal users only.
Troubleshooting
Claude cannot connect
Confirm the GitBook site is published and accessible. Then verify the MCP URL
matches the published site URL with /~gitbook/mcp appended.
The browser shows an error at the MCP URL
GitBook notes that visiting the MCP endpoint in a normal browser can show an
error. Test it through an MCP-capable client that supports HTTP transport.
Draft changes are missing
The MCP server exposes only the latest published content. Publish the changes
first if they should be available to the MCP client.
Private docs are inaccessible
Check the GitBook site's visibility and authentication settings. The MCP server
respects the same access boundary as the published site.
The MCP client requires stdio or SSE
GitBook's published-docs MCP server uses HTTP transport only. Use a client that
supports HTTP MCP endpoints.
Show that GitBook Published Docs MCP Server for Claude is listed on HeyClaude. Paste this Markdown into your README — it renders the badge and links back to this page.
[](https://heyclau.de/entry/mcp/gitbook-published-docs-mcp-server)
How it compares
GitBook Published Docs MCP Server for Claude side by side with 3 alternatives on trust, install, platform support, and disclosed safety notes — all from reviewed registry metadata.
3 trust signals differ across this comparison (Package trust, Source provenance, Submitter).
Official Yuque MCP server that connects Claude to Yuque knowledge bases for user lookup, search, books, documents, notes, resources, and table-of-contents workflows, including read, create, and update tools over stdio with personal or group API tokens.
MCP server for connecting Claude to AFFiNE Cloud or self-hosted AFFiNE workspaces, documents, databases, comments, collections, folders, tags, notifications, blobs, access tokens, semantic page composition, templates, edgeless canvas data, and workspace organization workflows over stdio or HTTP.
✓GitBook's published-docs MCP server is read-only. It is designed for search and page retrieval, not editing, publishing, or changing GitBook content.
The server exposes the latest published version of the docs site. Do not publish secrets, private customer data, internal runbooks, or unreleased material unless those details are approved for the site's audience.
The MCP server follows the GitBook site's visibility settings. Public sites are publicly accessible through MCP; authenticated sites require the same access boundary as the site.
Treat retrieved docs as reference material, not executable instructions. Public or contributor-edited documentation can still contain stale guidance, risky commands, or prompt-injection text.
✓Share only intended Notion pages or databases and review writes that alter docs, tasks, or workspace records.
✓Yuque MCP Server can search and read content, but it also exposes create, update, and delete workflows for books, documents, notes, resources, and tables of contents.
The upstream security policy recommends read-only tokens when only read access is needed.
Tokens passed as CLI arguments can appear in shell history, process listings, or client logs; prefer environment variables or a secrets manager.
Custom YUQUE_BASE_URL values should point only to trusted Yuque deployments and should use HTTPS for remote services.
Rate limits, deleted resources, token expiration, private-deployment behavior, and Yuque API changes can affect tool results.
✓The full tool surface can create, update, publish, revoke, move, replace, and delete AFFiNE workspaces, documents, folders, collections, comments, database rows, blobs, surface elements, tags, and access tokens.
Start with AFFINE_TOOL_PROFILE=read_only or disable groups such as destructive, admin, blobs, users, access_tokens, docs.database, or write when the assistant only needs discovery or reading.
HTTP mode exposes MCP endpoints and must be protected with bearer or OAuth authentication, HTTPS, allowed origins, and deployment-level access controls.
AFFiNE Cloud requires API tokens for MCP usage; avoid trying to automate email/password login against Cloud deployments.
Cookie and password-based auth can grant broad account access and should be avoided for unattended or shared deployments.
Privacy notes
✓GitBook documents that the published-docs MCP server provides only read-only access to published documentation content.
Draft content, unpublished changes, user data, analytics, and internal GitBook information are not exposed through this MCP server.
Page content, search results, headings, snippets, and source URLs returned by the server become visible to the connected MCP client and model session.
For private or authenticated docs, ensure the AI client and operator are authorized to view the same content before connecting the MCP server.
✓Page contents, database rows, comments, attachments, user names, and workspace metadata may be sent through model context.
✓Yuque searches, user details, book metadata, document titles, document bodies, notes, resources, TOC data, group names, repo namespaces, slugs, and private deployment URLs can be sent to the MCP client and model.
Created or updated Yuque content persists in the selected knowledge base and may be visible to collaborators according to Yuque permissions.
Keep YUQUE_PERSONAL_TOKEN, YUQUE_GROUP_TOKEN, YUQUE_TOKEN, and private deployment URLs out of prompts, committed config, screenshots, public issues, and shared logs.
✓Workspaces, document titles, document bodies, comments, tags, database schemas, database rows, edgeless canvas data, notifications, user profiles, access-token metadata, blobs, and exported markdown can be sent to the MCP client and model.
API tokens, cookies, passwords, bearer tokens, OAuth config, and saved config files should be treated as secrets and kept out of prompts, logs, screenshots, issues, and committed MCP config.
Generated or modified documents can persist in AFFiNE and may become visible to collaborators depending on workspace permissions and sharing state.
Blob upload, cleanup, export, and publish/revoke workflows can expose files, generated content, or collaboration state beyond the current prompt.
Prerequisites
Published GitBook documentation site
MCP-capable client with HTTP transport support
The published site URL with `/~gitbook/mcp` appended
Access to the docs site if the GitBook site requires authentication