Provides ops-focused n8n tools for MCP-compatible agents, enabling listing, inspecting, triggering, validating, managing tags, running security audits, and safely editing n8n workflows with auto-backup and confirm gates.
Claim it to get a verified publisher badge, a free copy of our full audit findings, and direct contact for any high-priority issues we find.
Install from
M8ven verifies MCPs across every public registry — install directly from whichever one you prefer.
Disclosed vulnerabilities in this server's declared npm dependencies (via OSV). Whether each is reachable depends on the installed versions.
OpenClaw's gateway config mutation guard allowed unsafe model-driven config writes
OpenClaw vulnerable to arbitrary code execution via attacker-controlled setup-api.js loaded from cwd during env-key resolution
OpenClaw: MCP Streamable HTTP redirects could forward configured custom headers to another origin
OpenClaw's Webhooks SecretRef route secret remains valid after rotation/reload
process.env. You'll be asked to provide them before it can run.N8N_API_KEY— yes - n8n Public API key (X-N8N-API-KEY)N8N_API_KEY_ENVN8N_BACKUP_DIR— no ~/.n8n-backups Where n8n_save_workflow writes pre-save snapshotsN8N_BASE_URL— yes - n8n base URL, e.g. http://localhost:5678N8N_ENABLE_CREDENTIALS_WRITE— no false Second gate (on top of N8N_ENABLE_EDIT) for n8n_create_credential and n8n_delete_credential. See [Security model](#security-model).N8N_ENABLE_EDIT— Write tools are hidden unless =true.SMOKE_WRITE[](https://m8ven.ai/mcp/solomonneas-n8n-ops-mcp-1oms3u)