Install command
Provided
Create, deploy, and manage websites on Netlify platform
Source-backed facts for citing this resource, derived directly from the registry — also available as plain text for AI assistants.
Decision playbook
Signals are comparatively strong, but you should still validate source, privacy posture, and package provenance for your environment.
0
96
—
No baseline selected
No major trust-signal divergence detected in the current selection.
Confirm ownership and provenance before trusting install instructions.
Source link availableRequired
Open the canonical repository and verify ownership.
Source provenance statusRequired
Marked as first-party.
Metadata reviewed
Registry metadata indicates a reviewed listing.
Validate risk disclosures before installation or API wiring.
Safety notes presentRequired
Review the listed safety guidance before running commands.
Privacy notes presentRequired
Review data handling notes before connecting accounts or secrets.
Trust level risk gateRequired
Trust level does not block evaluation.
Check package metadata and artifact integrity signals.
Install payload available
Install or copy payload is available for review.
Package verification flag
Package marked verified.
Checksum metadata
SHA-256 hash is present.
Use compare context to validate trade-offs before adoption.
Compare tray has multiple entries
Add at least one more entry to compare trust differences.
Baseline comparison available
No baseline peer selected yet.
Diverging trust signals identified
No major trust-signal divergence found.
Setup at a glance
Copy-ready — paste the snippet to get started.
Install command
Provided
Config snippet
Provided
Copy snippet
Provided
Prerequisites
10 to clear
Platforms
4 listed
Difficulty
6/100
Adoption plan
Current risk score 0/100. Use staged verification before broader rollout.
Validate source and review signals before any execution.
Confirm source provenanceRequired
Source URL/provenance metadata is present.
Confirm metadata review state
Listing has review metadata.
Verify install payload
Install/config payload exists and can be inspected.
Confirm safety, privacy, and package integrity signals.
Review safety notesRequired
Safety notes are present.
Review privacy notesRequired
Privacy notes are present.
Verify package integrity metadata
Package verification/checksum metadata is available.
Adopt in controlled steps based on the selected plan.
Run in isolated sandbox firstRequired
Use a constrained sandbox and observe behavior across multiple tasks.
Roll out graduallyRequired
Roll out to a small cohort before wider usage.
Set monitoring and fallback
Define rollback path and monitor errors after adoption.
Evidence readiness
Required evidence gates are covered (6/6 signals complete).
Source repository/provenance is listed.
Required in this preset
Review metadata is present.
Required in this preset
Safety notes are present.
Required in this preset
Privacy notes are present.
Optional in this preset
Package integrity metadata is present.
Optional in this preset
Install payload is available.
Required in this preset
Required evidence gates are covered for this preset.
Decision timeline
6/6 steps complete with no blocking gaps for this preset.
triage
Source/provenance metadata is available.
triage
Review metadata is available.
verify
Safety notes are available.
verify
Privacy notes are available.
verify
Package integrity metadata is available.
rollout
Install payload is available.
No required blockers for this timeline preset.
Prerequisite readiness
10 prerequisites to line up before setup. Have accounts and credentials ready first.
Safety & privacy surface
1 safety and 1 privacy notes across 2 risk areas. Review closely: permissions & scopes.
{
"netlify": {
"url": "https://netlify-mcp.netlify.app/mcp",
"transport": "http"
}
}Streamline your web deployment and site management by connecting Claude to Netlify. Deploy sites automatically, manage environment variables, configure domains and SSL, handle form submissions, deploy serverless and edge functions, monitor builds, and automate workflows—all through natural language commands. Leverage Netlify's powerful platform with rate limit monitoring and comprehensive deployment controls.
Several hosting platforms ship MCP servers that let Claude manage deployments. They differ by platform and primitives:
| MCP server | Platform | Manage via Claude | Transport |
|---|---|---|---|
| Netlify MCP | Netlify | Sites, deploys, environment variables, domains, build hooks | Hosted HTTP |
| Vercel MCP | Vercel | Projects, deployments, and deployment logs | Hosted HTTP |
| Cloudflare MCP | Cloudflare | Workers, Pages, and other platform resources | Hosted HTTP / local |
Use the Netlify MCP server when your sites and functions run on Netlify; the equivalent Vercel or Cloudflare servers cover those platforms' own primitives.
{
"netlify": {
"url": "https://netlify-mcp.netlify.app/mcp",
"transport": "http"
}
}
Common usage pattern for this MCP server
Ask Claude: "Deploy my site to production"
Common usage pattern for this MCP server
Ask Claude: "Update the API_KEY environment variable"
Common usage pattern for this MCP server
Ask Claude: "Show recent form submissions"
Common usage pattern for this MCP server
Ask Claude: "Configure domain redirect"
Deploy a site to Netlify with files and configuration
// Deploy site to Netlify
const deployment = await netlify.deploys.create({
site_id: "site-id",
files: {
"index.html": "<html>...</html>",
"style.css": "body { ... }",
},
draft: false,
});
Legacy plans: Check build minutes usage at app.netlify.com under team settings. Free plan: 300 build minutes/month. Upgrade plan for more minutes or switch to Credit-based pricing. Site auto-resumes next billing cycle or upgrade immediately. Credit-based plans use credits instead of build minutes. Monitor usage in Usage & billing dashboard.
Netlify API limit: 500 requests/minute for general operations, 3 deployments/minute, 100 deployments/day. Check X-RateLimit-Limit, X-RateLimit-Remaining, and X-RateLimit-Reset headers in responses. Monitor rate limit headers to avoid exceeding limits. Implement exponential backoff. Contact Netlify support for higher limits if needed.
Re-authenticate at https://netlify-mcp.netlify.app/mcp. Verify Personal Access Token is correctly configured (Authorization: Bearer ). Generate new PAT from Applications > Personal access tokens if expired. Verify account has team member role with deploy permissions. Check site access settings allow API operations. For OAuth2, ensure client key and secret are valid.
Add variables in site settings under Build & deploy > Environment. Use exact key names (case-sensitive). Redeploy site after adding variables. Check build logs for variable loading confirmation. Variables are scoped to site, branch, or deploy context. Verify variable is set for correct context (production, deploy-preview, branch-deploy).
Verify API token is valid and not expired. Check token permissions match required operations. Ensure token format is correct (Bearer token in Authorization header). For OAuth integrations, verify token refresh logic is working correctly.
Implement exponential backoff retry logic with jitter. Use Netlify API rate limit headers to monitor usage. Reduce concurrent requests. Cache frequently accessed site data. Netlify allows 1,000 requests per hour per API token.
Verify API token has access to the site. Check site permissions and account membership. Ensure API token has required permissions for target operations.
Check network connectivity and firewall settings. Verify Netlify API endpoints are accessible. Increase request timeout values. Implement connection pooling and retry mechanisms with exponential backoff.
Netlify MCP Server for Claude side by side with 3 alternatives on trust, install, platform support, and disclosed safety notes — all from reviewed registry metadata.
2 trust signals differ across this comparison (Package trust, Source provenance).
| Field | Create, deploy, and manage websites on Netlify platform Open dossier | Connect Claude to DigitalOcean — manage Apps, Droplets, managed Databases, Kubernetes, Container Registry, networking, and Functions — with DigitalOcean's official Model Context Protocol server. Open dossier | Manage deployments, analyze logs, and control Vercel projects Open dossier | Build applications, analyze traffic, and manage security settings through Cloudflare Open dossier |
|---|---|---|---|---|
| Next steps | ||||
| Trust | ||||
| Review status | ReviewedMaintainer reviewed | ReviewedMaintainer reviewed | ReviewedMaintainer reviewed | ReviewedMaintainer reviewed |
| Package trustDiffers | Package verified | Package not verified | Package verified | Package verified |
| Source provenanceDiffers | Source-backed | Source-backed | No submission link | No submission link |
| Submitter | — | — | — | — |
| Install risk | Low risk | Review first | Low risk | Low risk |
| Notes | Safety ✓ Privacy ✓ | Safety ✓ Privacy ✓ | Safety ✓ Privacy ✓ | Safety ✓ Privacy ✓ |
| Brand | ||||
| Category | mcp | mcp | mcp | mcp |
| Source | first-party | source-backed | first-party | first-party |
| Author | Netlify | DigitalOcean | Vercel | Cloudflare |
| Added | 2025-09-18 | 2026-06-17 | 2025-09-18 | 2025-09-18 |
| Platforms | Claude CodeCodexCursorClaude Desktop | Claude CodeClaude Desktop | Claude CodeClaude Desktop | Claude CodeClaude Desktop |
| Source repo | — | — | — | — |
| Safety notes | ✓Scope Netlify team and site permissions because deploy, environment, and domain changes can affect production websites. | ✓Tools can create, update, restart, and delete live infrastructure (Apps, Droplets, Databases) — scope the API token and select only the --services you need. Destructive actions (delete, rollback) act on production resources; confirm before running them through Claude. | ✓Scope Vercel team and project permissions because deployments, environment variables, and domain changes can affect production apps. | ✓Use a least-privilege Cloudflare token because DNS, security, Worker, and deployment actions can affect production services. |
| Privacy notes | ✓Build logs, deployment history, site metadata, environment variable names, domains, and team details may be exposed. | ✓Resource metadata, logs, and metrics enter the MCP client context and the model's prompt. The DIGITALOCEAN_API_TOKEN is a secret — store it in the client config or environment, never in shared repositories. | ✓Deployment logs, project metadata, environment variable names, domains, team details, and runtime errors may be exposed. | ✓Zone settings, analytics, logs, account identifiers, deployment metadata, and security configuration may be sent through model context. |
| Prerequisites |
|
|
|
|
| Install | | | | |
| Config | | | | |
| Citations | ||||
| Claim | Unclaimed | Unclaimed | Unclaimed | Unclaimed |
Source-backed guides for putting this to work.
Isolate Agent SDK tenants with cwd, config dir, and settingSources options.
Loading live community signals…
A short, calm digest of reviewed Claude resources. Unsubscribe any time.