How do I install Mainframe?

Mainframe is a local plugin. Install it using npm package: @notharshhaa/mainframe-mcp-server and add the generated configuration snippet to your AI app's MCP config file. Then restart your AI app.

Is Mainframe safe to use?

Mainframe was flagged by MCP Marketplace's security scan, scoring 4.2/10 (high risk). It has 3 high or critical findings to review. Review the security report on this page carefully before installing it.

What credentials does Mainframe need?

Mainframe requires the following credentials or environment variables: ZOSMF_HOST, ZOSMF_PORT, ZOSMF_BASE_PATH, ZOSMF_USER, ZOSMF_PASSWORD, ZOSMF_TOKEN, ZOSMF_TOKEN_TYPE, ZOSMF_REJECT_UNAUTHORIZED, LOG_LEVEL, MCP_TRANSPORT, MCP_SSE_PORT, MAX_JOB_OUTPUT_LINES, MAX_DATASET_READ_LINES, MAX_JES_SPOOL_FILES, MAX_AUDIT_LINES, CMCI_CONTEXT, CMCI_HOST, CMCI_PORT, CMCI_BASE_PATH, DB2_LOCATION, DB2_HOST, DB2_PORT, DB2_BASE_PATH, SMF_SUMMARY_DATASET, RMF_METRICS_ENABLED, RACF_AUDIT_USS_PATH, RACF_AUDIT_DATASET, SECURITY_READ_ONLY, SECURITY_ALLOWED_TOOLS, SECURITY_BLOCKED_TOOLS, SECURITY_ALLOWED_DATASET_PATTERNS, SECURITY_ALLOWED_USS_PATHS, SECURITY_AUDIT_LOGGING, SECURITY_MAX_JCL_BYTES. You can find setup instructions on the server detail page.

What AI apps work with Mainframe?

Mainframe uses the Model Context Protocol (MCP) and works with any MCP-compatible AI app, including Claude, ChatGPT / Codex, Gemini, Copilot, Cursor, and more.

Back to Browse

Mainframe MCP Server

by NotHarshhaa

Developer ToolsUse Caution4.2MCP RegistryLocal

Free

Server data from the Official MCP Registry

MCP server for IBM z/OS jobs, datasets, USS, and operational diagnostics via Zowe SDK.

About

MCP server for IBM z/OS jobs, datasets, USS, and operational diagnostics via Zowe SDK.

Security Report

4.2

Use Caution4.2High Risk

This is a well-designed MCP server for z/OS mainframe operations with strong enterprise security controls and clear architecture. However, there are credential storage concerns in the recommended configuration, sensitive credential logging in audit trails, and incomplete input validation that warrant attention. Permissions are appropriate for the stated purpose (mainframe system access), but secrets management requires hardening beyond the documented approach. Supply chain analysis found 4 known vulnerabilities in dependencies (0 critical, 3 high severity). Package verification found 1 issue.

5 files analyzed · 13 issues found

Security scores are indicators to help you make informed decisions, not guarantees. Always review permissions before connecting any MCP server.

Permissions Required

This plugin requests these system permissions. Most are normal for its category.

HTTP Network Access

Connects to external APIs or services over the internet.

env_vars

Check that this permission is expected for this type of plugin.

File System Read

Reads files on your machine. Normal for tools that analyze or process local data.

File System Write

Writes or modifies files on your machine. Check that this is expected for the tool.

What You'll Need

Set these up before or after installing:

z/OSMF hostname or IP addressOptional

Environment variable: ZOSMF_HOST

z/OSMF HTTPS port (default 443)Optional

Environment variable: ZOSMF_PORT

Optional API gateway or mediation layer prefix for z/OSMFOptional

Environment variable: ZOSMF_BASE_PATH

z/OS user id (required with ZOSMF_PASSWORD unless ZOSMF_TOKEN is set)Optional

Environment variable: ZOSMF_USER

Password for basic auth (required with ZOSMF_USER unless ZOSMF_TOKEN is set)Required

Environment variable: ZOSMF_PASSWORD

Auth token (alternative to user/password)Required

Environment variable: ZOSMF_TOKEN

Token type when using ZOSMF_TOKEN (e.g. LTPA2)Optional

Environment variable: ZOSMF_TOKEN_TYPE

Verify TLS certificates (true in production)Optional

Environment variable: ZOSMF_REJECT_UNAUTHORIZED

Log level: fatal, error, warn, info, debug, trace, silentOptional

Environment variable: LOG_LEVEL

Transport: stdio (IDE) or sse (container/network)Optional

Environment variable: MCP_TRANSPORT

Listen port when MCP_TRANSPORT=sseOptional

Environment variable: MCP_SSE_PORT

Max lines returned from a single spool DDOptional

Environment variable: MAX_JOB_OUTPUT_LINES

Max lines returned from dataset or USS readsOptional

Environment variable: MAX_DATASET_READ_LINES

Max spool files fetched during diagnosticsOptional

Environment variable: MAX_JES_SPOOL_FILES

Max RACF audit log lines per queryOptional

Environment variable: MAX_AUDIT_LINES

CICSplex name or region APPLID (required for CICS tools)Optional

Environment variable: CMCI_CONTEXT

CMCI hostname (defaults to ZOSMF_HOST)Optional

Environment variable: CMCI_HOST

CMCI HTTPS port (default 1490)Optional

Environment variable: CMCI_PORT

CMCI REST base pathOptional

Environment variable: CMCI_BASE_PATH

Db2 subsystem location name (required for Db2 tools)Optional

Environment variable: DB2_LOCATION

Db2 REST hostname (defaults to ZOSMF_HOST)Optional

Environment variable: DB2_HOST

Db2 REST port (default 50400)Optional

Environment variable: DB2_PORT

Db2 REST base pathOptional

Environment variable: DB2_BASE_PATH

Optional SMF summary dataset for offline metricsOptional

Environment variable: SMF_SUMMARY_DATASET

Query z/OSMF RMF metrics when availableOptional

Environment variable: RMF_METRICS_ENABLED

USS path to RACF audit log fileOptional

Environment variable: RACF_AUDIT_USS_PATH

Sequential dataset containing RACF audit recordsOptional

Environment variable: RACF_AUDIT_DATASET

When true, blocks write tools such as submit_jclOptional

Environment variable: SECURITY_READ_ONLY

Comma-separated allowlist of MCP tool namesOptional

Environment variable: SECURITY_ALLOWED_TOOLS

Comma-separated blocklist of MCP tool namesOptional

Environment variable: SECURITY_BLOCKED_TOOLS

Comma-separated dataset patterns (e.g. USERDEV.*,SYS1.*)Optional

Environment variable: SECURITY_ALLOWED_DATASET_PATTERNS

Comma-separated USS path prefixesOptional

Environment variable: SECURITY_ALLOWED_USS_PATHS

Log every tool invocation to stderr (SIEM-friendly JSON)Optional

Environment variable: SECURITY_AUDIT_LOGGING

Maximum inline JCL size for submit_jclOptional

Environment variable: SECURITY_MAX_JCL_BYTES

How to Install

Add this to your MCP configuration file:

{
  "mcpServers": {
    "io-github-notharshhaa-mainframe-mcp-server": {
      "env": {
        "DB2_HOST": "your-db2-host-here",
        "DB2_PORT": "your-db2-port-here",
        "CMCI_HOST": "your-cmci-host-here",
        "CMCI_PORT": "your-cmci-port-here",
        "LOG_LEVEL": "your-log-level-here",
        "ZOSMF_HOST": "your-zosmf-host-here",
        "ZOSMF_PORT": "your-zosmf-port-here",
        "ZOSMF_USER": "your-zosmf-user-here",
        "ZOSMF_TOKEN": "your-zosmf-token-here",
        "CMCI_CONTEXT": "your-cmci-context-here",
        "DB2_LOCATION": "your-db2-location-here",
        "MCP_SSE_PORT": "your-mcp-sse-port-here",
        "DB2_BASE_PATH": "your-db2-base-path-here",
        "MCP_TRANSPORT": "your-mcp-transport-here",
        "CMCI_BASE_PATH": "your-cmci-base-path-here",
        "ZOSMF_PASSWORD": "your-zosmf-password-here",
        "MAX_AUDIT_LINES": "your-max-audit-lines-here",
        "ZOSMF_BASE_PATH": "your-zosmf-base-path-here",
        "ZOSMF_TOKEN_TYPE": "your-zosmf-token-type-here",
        "RACF_AUDIT_DATASET": "your-racf-audit-dataset-here",
        "SECURITY_READ_ONLY": "your-security-read-only-here",
        "MAX_JES_SPOOL_FILES": "your-max-jes-spool-files-here",
        "RACF_AUDIT_USS_PATH": "your-racf-audit-uss-path-here",
        "RMF_METRICS_ENABLED": "your-rmf-metrics-enabled-here",
        "SMF_SUMMARY_DATASET": "your-smf-summary-dataset-here",
        "MAX_JOB_OUTPUT_LINES": "your-max-job-output-lines-here",
        "MAX_DATASET_READ_LINES": "your-max-dataset-read-lines-here",
        "SECURITY_ALLOWED_TOOLS": "your-security-allowed-tools-here",
        "SECURITY_AUDIT_LOGGING": "your-security-audit-logging-here",
        "SECURITY_BLOCKED_TOOLS": "your-security-blocked-tools-here",
        "SECURITY_MAX_JCL_BYTES": "your-security-max-jcl-bytes-here",
        "ZOSMF_REJECT_UNAUTHORIZED": "your-zosmf-reject-unauthorized-here",
        "SECURITY_ALLOWED_USS_PATHS": "your-security-allowed-uss-paths-here",
        "SECURITY_ALLOWED_DATASET_PATTERNS": "your-security-allowed-dataset-patterns-here"
      },
      "args": [
        "-y",
        "@notharshhaa/mainframe-mcp-server"
      ],
      "command": "npx"
    }
  }
}

Reviews

No reviews yet

Be the first to review this server!

More Developer Tools MCP Servers

Git

Free

by Modelcontextprotocol · Developer Tools

Read, search, and manipulate Git repositories programmatically

Fetch

Free

by Modelcontextprotocol · Developer Tools

Web content fetching and conversion for efficient LLM usage

Toleno

Free

by Toleno · Developer Tools

Toleno Network MCP Server — Manage your Toleno mining account with Claude AI using natural language.

Mainframe MCP Server

About

Security Report

Findings (13)Action required

Permissions Required

What You'll Need

How to Install

Reviews

No reviews yet

More Developer Tools MCP Servers

Git

Fetch

Toleno

mcp-creator-python

MarkItDown

FinAgent