roychri/mcp-server-asana

MCP Server for Asana

→ roychri/mcp-server-asana· npm: @roychri/mcp-server-asana· listed on npm

Is this your MCP?

Claim it to get a verified publisher badge, a free copy of our full audit findings, and direct contact for any high-priority issues we find.

Install from

npm

M8ven verifies MCPs across every public registry — install directly from whichever one you prefer.

// key findings

🚨

Known vulnerabilities in dependencies: 1 critical, 3 high

Affects packages this MCP installs at runtime. Upgrade or remove the affected dependency.

🔐

You'll be asked for 1 credential: ASANA_ACCESS_TOKEN

These are read from process.env at runtime. Make sure you trust where they’ll be sent.

// required environment variables

This server reads these from process.env. You'll be asked to provide them before it can run.

🔐 secretASANA_ACCESS_TOKEN— (Required) Your Asana access token

configREAD_ONLY_MODE— (Optional) Set to 'true' to disable all write operations. In this mode:

// full audit trail

The full breakdown of what we checked, the deductions that landed, the network hosts, the dependency advisories, and concrete fix guidance is available to verified publishers.

// improvement guidance — verified publishers only

We have 3 concrete improvements we can share with the publisher of this MCP. Each comes with specific guidance to raise the trust score.

// embed badge in your README

[![M8ven Score](https://m8ven.ai/badge/mcp/roychri-mcp-server-asana-rsb8qe)](https://m8ven.ai/mcp/roychri-mcp-server-asana-rsb8qe)

commit: c4508aac54e210d49dbc9d7d8ad1fa98b9090a82

code hash: 484b80b1dd94ed34c3d6c525bad67751c3b8afd7836a3ab3445e621ca4f7b137

verified: 5/29/2026, 10:53:55 AM

view raw JSON →