Is Wise Personal free?

Yes, Wise Personal is free to use.

How do I install Wise Personal?

Wise Personal is a local plugin. Install it using npm package: @aiwerk/mcp-server-wise and add the generated configuration snippet to your AI app's MCP config file. Then restart your AI app.

Is Wise Personal safe to use?

Wise Personal scored 5.2/10 (moderate risk) in MCP Marketplace's automated security scan. It has 4 high or critical findings to review. It's listed, but review the security report on this page before installing.

What credentials does Wise Personal need?

Wise Personal requires the following credentials or environment variables: WISE_API_TOKEN. You can find setup instructions on the server detail page.

What AI apps work with Wise Personal?

Wise Personal uses the Model Context Protocol (MCP) and works with any MCP-compatible AI app, including Claude, ChatGPT / Codex, Gemini, Copilot, Cursor, and more.

Back to Browse

Wise Personal MCP Server

by AIWerk

Developer ToolsModerate5.2MCP RegistryLocal

Free

Server data from the Official MCP Registry

Wise Personal API: profiles, balances, multi-currency rates, transfers, recipients (read-only).

About

Wise Personal API: profiles, balances, multi-currency rates, transfers, recipients (read-only).

Security Report

5.2

Moderate5.2Moderate Risk

Well-structured MCP server for read-only Wise API access with strong security practices. Base URL validation prevents token exfiltration, comprehensive error handling with appropriate user-facing messages, and strict API surface (GET-only). Minor code quality observations around broad exception handling and test brittleness do not materially impact security posture. Supply chain analysis found 4 known vulnerabilities in dependencies (1 critical, 3 high severity). Package verification found 1 issue.

7 files analyzed · 8 issues found

Security scores are indicators to help you make informed decisions, not guarantees. Always review permissions before connecting any MCP server.

Permissions Required

This plugin requests these system permissions. Most are normal for its category.

env_vars

Check that this permission is expected for this type of plugin.

HTTP Network Access

Connects to external APIs or services over the internet.

What You'll Need

Set these up before or after installing:

Wise Personal API token. Create one in Wise Settings > API tokens.Required

Environment variable: WISE_API_TOKEN

How to Install

Add this to your MCP configuration file:

{
  "mcpServers": {
    "io-github-aiwerk-mcp-server-wise": {
      "env": {
        "WISE_API_TOKEN": "your-wise-api-token-here"
      },
      "args": [
        "-y",
        "@aiwerk/mcp-server-wise"
      ],
      "command": "npx"
    }
  }
}

Documentation

View on GitHub

From the project's GitHub README.

@aiwerk/mcp-server-wise

Wise (TransferWise) Personal API MCP server. Read-only: profiles, balances, rates, transfers, recipients.

Tools (v0.1.4, 11 read-only)

wise_list_profiles, wise_get_profile
wise_list_balances, wise_get_balance
wise_get_exchange_rate, wise_get_exchange_rate_history
wise_list_transfers, wise_get_transfer
wise_list_recipients, wise_get_recipient, wise_get_account_requirements

Write tools (create/fund/cancel transfer, create/delete recipient, create quote) are intentionally not in v0.1.x — they require idempotency + SCA state-machine handling, planned for v0.2.0.

Configuration

Env var	Required	Default	Purpose
`WISE_API_TOKEN`	yes	—	Personal API token from https://wise.com/settings/api-tokens
`WISE_API_BASE_URL`	no	`https://api.wise.com`	Sandbox override: `https://api.sandbox.transferwise.tech`
`WISE_API_TIMEOUT_MS`	no	`30000`	Per-request timeout
`WISE_API_ALLOW_UNSAFE_BASE_URL`	no	—	Dangerous override — see below

Base URL safety

WISE_API_BASE_URL is locked down by default:

Must use https://
Host must be on the allowlist: api.wise.com or api.sandbox.transferwise.tech

Violation throws WiseConfigError before any Bearer token leaves the machine. This prevents token exfiltration via a misconfigured env, a bad CI value, or a malicious override.

Dangerous override: set WISE_API_ALLOW_UNSAFE_BASE_URL=1 to bypass both checks (allow http:// and arbitrary hosts). Only use for local testing against a mock server. Never enable this in production or with a real Wise token. The token will be sent to whatever host you configure.

Install

Two ways to run this server — pick the one that fits.

Option 1 — Hosted (zero setup)

No local runtime, no env vars on your machine — your Wise token is AES-256-GCM encrypted server-side via HashiCorp Vault.

Sign up at aiwerkmcp.com.
Install Wise from the catalog and paste your WISE_API_TOKEN.
Point your MCP client (Claude.ai, Cursor, Hermes, …) at your hosted endpoint:
```
https://bridge.aiwerk.ch/u/<your-user-id>/mcp
```
with your Bearer token.

All 11 read-only tools appear. Install other AIWerk recipes from the same bridge.

Option 2 — Self-hosted (npx)

Run directly — you manage the token:

WISE_API_TOKEN=xxx npx @aiwerk/mcp-server-wise

Or install globally:

npm install -g @aiwerk/mcp-server-wise
WISE_API_TOKEN=xxx mcp-server-wise

Error taxonomy

Errors surface as MCP isError: true responses with distinct prefixes:

Timeout: … — request exceeded WISE_API_TIMEOUT_MS (wraps AbortController)
Network error: … — fetch rejected (DNS, connection reset, etc.)
Configuration error: … — missing token or invalid base URL
Wise API error <status> … — HTTP 4xx/5xx response from Wise

Typical flow

wise_list_profiles → pick profileId
wise_list_balances({profileId}) → see available currencies / amounts
wise_get_exchange_rate({source, target}) → check rate
wise_list_transfers({profileId, status}) → history / status lookup

Build / dev notes

src/version.ts is generated from package.json by scripts/gen-version.mjs (runs as prebuild / predev / pretest). The file IS committed so a fresh clone compiles immediately.
The generator is idempotent: it only writes when the version actually changes. So npm run build on an in-sync tree leaves the working copy clean.
Bumping package.json's version and running any of build / dev / test is enough to propagate — no separate manual step on src/version.ts.

About AIWerk MCP

Part of the AIWerk MCP platform — curated, signed MCP recipes served either as npm packages for self-hosting or through our multi-tenant hosted bridge (bridge.aiwerk.ch).

Other AIWerk MCP servers:

@aiwerk/mcp-server-cal — Cal.com scheduling
@aiwerk/mcp-server-imap — IMAP/SMTP email, provider-agnostic
@aiwerk/mcp-server-clawhub — ClawHub skill catalog

Browse the full catalog (20+ recipes including GitHub, Linear, Notion, Stripe, …) at aiwerkmcp.com.

Licence

Reviews

No reviews yet

Be the first to review this server!

More Developer Tools MCP Servers

Fetch

Free

by Modelcontextprotocol · Developer Tools

Web content fetching and conversion for efficient LLM usage

Git

Free

by Modelcontextprotocol · Developer Tools

Read, search, and manipulate Git repositories programmatically

Toleno

Free

by Toleno · Developer Tools

Toleno Network MCP Server — Manage your Toleno mining account with Claude AI using natural language.

Wise Personal MCP Server

About

Security Report

Findings (8)Action required

Permissions Required

What You'll Need

How to Install

Documentation

@aiwerk/mcp-server-wise

Tools (v0.1.4, 11 read-only)

Configuration

Base URL safety

Install

Option 1 — Hosted (zero setup)

Option 2 — Self-hosted (npx)

Error taxonomy

Typical flow

Build / dev notes

About AIWerk MCP

Licence

Reviews

No reviews yet

More Developer Tools MCP Servers

Fetch

Git

Toleno

mcp-creator-python

MarkItDown

FinAgent