Claude Code Plugins

Community-maintained marketplace

Feedback

moai-cc-mcp-plugins

@junseokandylee/CookieProxy
0
0

Configuring MCP Servers & Plugins for Claude Code. Set up Model Context Protocol servers (GitHub, Filesystem, Brave Search, SQLite). Configure OAuth, manage permissions, validate MCP structure. Use when integrating external tools, APIs, or expanding Claude Code capabilities.

Install Skill

1Download skill
2Enable skills in Claude

Open claude.ai/settings/capabilities and find the "Skills" section

3Upload to Claude

Click "Upload skill" and select the downloaded ZIP file

Note: Please verify skill by going through its instructions before using it.

SKILL.md

name moai-cc-mcp-plugins
description Configuring MCP Servers & Plugins for Claude Code. Set up Model Context Protocol servers (GitHub, Filesystem, Brave Search, SQLite). Configure OAuth, manage permissions, validate MCP structure. Use when integrating external tools, APIs, or expanding Claude Code capabilities.
allowed-tools Read, Write, Edit, Bash, Glob

Skill Metadata

Field Value
Version 1.0.0
Tier Ops
Auto-load When setting up MCP servers

What It Does

MCP (Model Context Protocol) server 및 plugin 설정을 위한 전체 가이드를 제공합니다. GitHub, Filesystem, SQLite 등 다양한 MCP server의 OAuth 설정, 권한 관리, 구조 검증 방법을 다룹니다.

When to Use

  • 새로운 MCP server를 설정할 때
  • OAuth 인증을 구성할 때
  • External tool이나 API를 통합할 때
  • MCP plugin의 permissions이나 구조를 검증할 때

Configuring MCP Servers & Plugins

MCP servers extend Claude Code with external tool integrations. Each server provides tools that Claude can invoke directly.

MCP Server Setup in settings.json

{
  "mcpServers": {
    "github": {
      "command": "npx",
      "args": ["-y", "@anthropic-ai/mcp-server-github"],
      "oauth": {
        "clientId": "your-client-id",
        "clientSecret": "your-client-secret",
        "scopes": ["repo", "issues", "pull_requests"]
      }
    },
    "filesystem": {
      "command": "npx",
      "args": ["-y", "@modelcontextprotocol/server-filesystem", "/path/to/allowed/files"]
    },
    "sqlite": {
      "command": "npx",
      "args": ["-y", "@modelcontextprotocol/server-sqlite", "/path/to/database.db"]
    },
    "brave-search": {
      "command": "npx",
      "args": ["-y", "@modelcontextprotocol/server-brave-search"],
      "env": {
        "BRAVE_SEARCH_API_KEY": "${BRAVE_SEARCH_API_KEY}"
      }
    }
  }
}

Common MCP Servers

Server Purpose Installation Config
GitHub PR/issue management, code search @anthropic-ai/mcp-server-github OAuth required
Filesystem Safe file access with path restrictions @modelcontextprotocol/server-filesystem Path whitelist required
SQLite Database queries & migrations @modelcontextprotocol/server-sqlite DB file path
Brave Search Web search integration @modelcontextprotocol/server-brave-search API key required

OAuth Configuration Pattern

{
  "oauth": {
    "clientId": "your-client-id",
    "clientSecret": "your-client-secret",
    "scopes": ["repo", "issues"]
  }
}

Scope Minimization (principle of least privilege):

  • GitHub: repo (code access), issues (PR/issue access)
  • NOT admin, NOT delete_repo

Filesystem MCP: Path Whitelisting

{
  "filesystem": {
    "command": "npx",
    "args": [
      "-y",
      "@modelcontextprotocol/server-filesystem",
      "${CLAUDE_PROJECT_DIR}/.moai",
      "${CLAUDE_PROJECT_DIR}/src",
      "${CLAUDE_PROJECT_DIR}/tests"
    ]
  }
}

Security Principle: Explicitly list allowed directories, no wildcards.

Plugin Marketplace Integration

{
  "extraKnownMarketplaces": [
    {
      "name": "company-plugins",
      "url": "https://github.com/your-org/claude-plugins"
    },
    {
      "name": "community-plugins",
      "url": "https://glama.ai/mcp/servers"
    }
  ]
}

MCP Health Check

# Inside Claude Code terminal
/mcp                    # List active MCP servers
/plugin validate        # Validate plugin structure
/plugin install         # Install from marketplace
/plugin enable github   # Enable specific server
/plugin disable github  # Disable specific server

Environment Variables for MCP

# Set in ~/.bash_profile or .claude/config.json
export GITHUB_TOKEN="gh_xxxx..."
export BRAVE_SEARCH_API_KEY="xxxx..."
export ANTHROPIC_API_KEY="sk-ant-..."

# Launch Claude Code with env
GITHUB_TOKEN=gh_xxxx claude

MCP Troubleshooting

Issue Cause Fix
Server not connecting Invalid JSON in mcpServers Validate with jq .mcpServers settings.json
OAuth error Token expired or invalid scopes Check claude /usage, regenerate token
Permission denied Path not whitelisted Add to Filesystem MCP args
Slow response Network latency or server overload Check server logs, reduce scope

Best Practices

DO:

  • Use environment variables for secrets
  • Whitelist Filesystem paths explicitly
  • Start with minimal scopes, expand only if needed
  • Test MCP connection: /mcp command

DON'T:

  • Hardcode credentials in settings.json
  • Use wildcard paths (/ in Filesystem MCP)
  • Install untrusted plugins
  • Give admin scopes unnecessarily

Plugin Custom Directory Structure

my-plugin/
├── .claude-plugin/
│   └── plugin.json
├── commands/
│   ├── deploy.md
│   └── rollback.md
├── agents/
│   └── reviewer.md
└── hooks/
    └── pre-deploy-check.sh

Validation Checklist

  • All server paths are absolute
  • OAuth secrets stored in env vars
  • Filesystem paths are whitelisted
  • No hardcoded tokens or credentials
  • MCP server installed: which npx
  • Health check passes: /mcp
  • Scopes follow least-privilege principle

Reference: Claude Code MCP documentation Version: 1.0.0