Skip to main content

Documentation Index

Fetch the complete documentation index at: https://factory-changelog-jun2.mintlify.app/llms.txt

Use this file to discover all available pages before exploring further.

Model Context Protocol (MCP) servers extend droid’s capabilities by providing additional tools and context. Droid offers two ways to manage them: an interactive UI for easy browsing and setup, or CLI commands for scripting and automation.

Quick Start: Add from Registry

The easiest way to get started is using the built-in registry. Type /mcp in droid and select “Add from Registry” to browse 40+ pre-configured servers:
ServerDescription
figmaDesign exploration and implementation
linearIssue tracking and project management
sentryError tracking and performance monitoring
notionNotes, docs, and project management
supabaseCreate and manage Supabase projects
stripePayment processing APIs
vercelManage projects and deployments
playwrightEnd-to-end browser testing
hubspotCRM data management
mongodbDatabase management
and many more
Select a server from the list, authenticate if required (most HTTP servers support OAuth—just follow the browser prompt), and the server is ready to use.
The registry is the fastest way to get started. For custom servers or automation, use the CLI commands below.

Interactive Manager (/mcp)

Type /mcp within droid to open the interactive MCP manager. From here you can:
  • Browse servers - See all configured servers and their connection status
  • View tools - Inspect what tools each connected server provides
  • Enable/disable - Temporarily disable servers without removing them
  • Authenticate - Connect to OAuth-enabled servers via browser
  • Clear auth - Remove stored credentials for a server
  • Add from registry - One-click setup for popular MCP servers
  • Remove servers - Delete user-configured servers

Adding Servers via CLI

For scripting and automation, use droid mcp add. Droid supports three transports: http (Streamable HTTP — the current MCP standard, which uses SSE internally to stream responses), sse (the legacy standalone HTTP+SSE transport, for older servers), and stdio (local processes).

Adding HTTP Servers

HTTP servers are remote MCP endpoints - the recommended way to connect to cloud services and APIs. Syntax: 
droid mcp add <name> <url> --type http [--header "KEY: VALUE"...]
Arguments:
  • name - Unique server identifier
  • url - HTTP/HTTPS URL of the MCP server
  • --type http - Required flag to specify HTTP transport
  • --header "KEY: VALUE" - HTTP headers for authentication (can be used multiple times)

Development & Testing

Sentry - Monitor errors, debug production issues 
droid mcp add sentry https://mcp.sentry.dev/mcp --type http
Hugging Face - Access Hugging Face Hub and Gradio AI applications 
droid mcp add hugging-face https://huggingface.co/mcp --type http
Socket - Security analysis for dependencies 
droid mcp add socket https://mcp.socket.dev/ --type http

Project Management & Documentation

Notion - Read docs, update pages, manage tasks 
droid mcp add notion https://mcp.notion.com/mcp --type http
Linear - Issue tracking and project management 
droid mcp add linear https://mcp.linear.app/mcp --type http
Intercom - Access customer conversations and tickets 
droid mcp add intercom https://mcp.intercom.com/mcp --type http
Monday - Manage monday.com boards and items 
droid mcp add monday https://mcp.monday.com/mcp --type http

Payments & Commerce

Stripe - Payment processing and subscriptions 
droid mcp add stripe https://mcp.stripe.com --type http
PayPal - PayPal commerce and payment processing 
droid mcp add paypal https://mcp.paypal.com/mcp --type http

Design & Media

Figma - Generate code with Figma context 
droid mcp add figma https://mcp.figma.com/mcp --type http
Canva - Browse, summarize, and generate Canva designs 
droid mcp add canva https://mcp.canva.com/mcp --type http
TwelveLabs - Video analysis, search, and AI-powered insights 
droid mcp add twelvelabs-mcp https://mcp.twelvelabs.io --type http \
  --header "x-api-key: YOUR_TWELVELABS_API_KEY"

Infrastructure & DevOps

Netlify - Create, deploy, and manage websites 
droid mcp add netlify https://netlify-mcp.netlify.app/mcp --type http
Vercel - Manage projects, deployments, and logs 
droid mcp add vercel https://mcp.vercel.com/ --type http
Stytch - Configure authentication services 
droid mcp add stytch https://mcp.stytch.dev/mcp --type http
Many remote servers (HTTP and SSE) require OAuth authentication. After adding, use the interactive /mcp UI to complete the authentication flow.

Adding SSE Servers

sse is the legacy HTTP+SSE transport (MCP protocol version 2024-11-05), which exposes a standalone Server-Sent Events endpoint. It was superseded by Streamable HTTP (--type http), which already streams over SSE internally — so prefer http and reach for sse only when a server offers just the older standalone SSE endpoint. Arguments mirror HTTP servers; only --type changes. Syntax: 
droid mcp add <name> <url> --type sse [--header "KEY: VALUE"...]
Example: 
droid mcp add example-sse https://mcp.example.com/sse --type sse \
  --header "Authorization: Bearer YOUR_TOKEN"

Adding Stdio Servers

Stdio servers run as local processes on your machine - ideal for tools that need direct system access. Syntax: 
droid mcp add <name> "<command>" [--env KEY=VALUE...]
Arguments:
  • name - Unique server identifier
  • command - Command to start the server (quote if it contains spaces)
  • --env KEY=VALUE - Environment variables (can be used multiple times)
These npx examples install the latest published version of each package. For security-sensitive setups, pin an explicit version (e.g. airtable-mcp-server@1.4.0) so updates are deliberate and you can audit changes before they run.
Airtable - Read/write records, manage bases and tables 
droid mcp add airtable "npx -y airtable-mcp-server" \
  --env AIRTABLE_API_KEY=your_key
ClickUp - Task management and project tracking 
droid mcp add clickup "npx -y @hauptsache.net/clickup-mcp" \
  --env CLICKUP_API_KEY=your_key \
  --env CLICKUP_TEAM_ID=your_team_id
HubSpot - Access and manage CRM data 
droid mcp add hubspot "npx -y @hubspot/mcp-server" \
  --env HUBSPOT_ACCESS_TOKEN=your_token

Removing Servers

Remove a server from your configuration: 
droid mcp remove <name>
Example: 
droid mcp remove notion

Managing Servers

Type /mcp within droid to open an interactive UI for managing MCP servers.
  • See all configured servers with status
  • View all tools provided by each server
  • Authenticate remote servers that require OAuth authentication
  • Add/remove and enable/disable servers

Configuration

MCP server configurations are loaded from local files at the following levels:
LevelLocationPurpose
User~/.factory/mcp.jsonYour personal servers, available in all projects
Folder.factory/mcp.json in any ancestor directory of the projectServers shared across nested projects under a common parent folder
Project.factory/mcp.json in the project rootShared team servers, committed to the repo
Organization administrators can also centrally provide servers and restrict which ones are allowed via organization-managed settings (see Enterprise MCP policy).

How Layering Works

When the same server is defined at multiple levels, user config takes priority, followed by folder-level config, then project config. Key behaviors:
  • When you enable/disable a project-defined server, a copy is saved to your user config with the new state. The original project config remains unchanged, so your teammates aren’t affected.
  • Project servers cannot be removed via CLI or the /mcp UI. To remove them, edit .factory/mcp.json directly.
  • Servers you add via droid mcp add or the registry always go to your user config.

OAuth Tokens

OAuth tokens are stored globally in your system keyring (or fallback file), not per-project. If you authenticate with a server in one project, you’re authenticated everywhere that server is configured. To clear authentication for a server, use the /mcp interactive manager and select “Clear Auth”.

Configuration Schema

Each server entry includes:
FieldTypeDescription
type"stdio" | "http" | "sse"Server type. May be omitted for stdio servers, which default to stdio.
disabledbooleanTemporarily disable the server (default: false)
enabledToolsstring[]Allowlist of tool names to load from this server. When set, only listed tools are loaded into context.
disabledToolsstring[]Blocklist of tool names to exclude from this server. Disabled tools are not loaded into context.
timeoutMsnumberPer-server override for the MCP tool call timeout in milliseconds. Falls back to the global default when omitted.
For stdio servers:
  • command: Executable to run
  • args: Command-line arguments (array)
  • env: Environment variables (object)
For http and sse servers:
  • url: HTTP/HTTPS endpoint URL
  • headers: HTTP headers for authentication (object)
  • oauth: Optional OAuth overrides for the remote server (object). Supported fields:
    • scopes: OAuth scopes to request (array)
    • clientId: OAuth client ID
    • clientSecret: OAuth client secret
    • callbackPort: Local port used for the OAuth callback
Project-level .factory/mcp.json is committed to the repo. Never put secrets — headers auth tokens (e.g. Authorization), oauth.clientSecret, or API keys — in project config. Keep them in your user-level config (~/.factory/mcp.json) or supply them via environment variables, and rely on Droid’s keyring for OAuth tokens.
Example mcp.json: 
{
  "mcpServers": {
    "linear": {
      "type": "http",
      "url": "https://mcp.linear.app/mcp",
      "disabled": false
    },
    "example-sse": {
      "type": "sse",
      "url": "https://mcp.example.com/sse",
      "headers": {
        "Authorization": "Bearer YOUR_TOKEN"
      },
      "disabled": false
    },
    "playwright": {
      "command": "npx",
      "args": ["-y", "@playwright/mcp@latest"],
      "disabled": false
    }
  }
}
Droid automatically reloads when the configuration file changes, so servers are immediately available after adding them.

Variable expansion

Droid expands ${VAR} and ${VAR:-default} references in mcp.json against your current shell environment when the configuration is loaded. This lets you keep secrets out of the file itself and source them from a secret manager, .env loader, or your shell profile. Variable expansion is supported in:
  • command and args entries for stdio servers
  • env values for stdio servers
  • url for http servers
  • headers values for http servers
Example — sourcing an API key from the environment: 
{
  "mcpServers": {
    "context7": {
      "type": "http",
      "url": "https://mcp.context7.com/mcp",
      "headers": {
        "CONTEXT7_API_KEY": "${CONTEXT7_API_KEY}"
      },
      "disabled": false
    },
    "airtable": {
      "type": "stdio",
      "command": "npx",
      "args": ["-y", "airtable-mcp-server"],
      "env": {
        "AIRTABLE_API_KEY": "${AIRTABLE_API_KEY}"
      }
    }
  }
}
If a referenced variable is unset and no default is provided, droid leaves the placeholder in place and surfaces a warning the next time the server is started. Use ${VAR:-fallback} to provide a safe default.
The raw mcp.json file is never rewritten with expanded values — expansion happens in memory at load time, so secrets stay out of disk and version control.

Per-tool filtering

Servers can expose many tools, and not all of them need to be loaded into every session. enabledTools and disabledTools let you trim the tool surface persistently in mcp.json, mirroring the --enabled-tools / --disabled-tools flags available on droid exec.
  • disabledTools: blocklist — every tool the server reports is loaded except the listed names.
  • enabledTools: allowlist — only the listed tools are loaded.
  • If both are set, enabledTools takes precedence and disabledTools is ignored.
  • Filtered-out tools are never registered with the model, so they don’t consume context tokens.
Example — blocklist a noisy tool: 
{
  "mcpServers": {
    "my-server": {
      "type": "stdio",
      "command": "npx",
      "args": ["-y", "@some/mcp-server"],
      "disabledTools": ["tool_i_dont_need", "another_unused_tool"]
    }
  }
}
Example — allowlist only the tools you use: 
{
  "mcpServers": {
    "another-server": {
      "type": "http",
      "url": "https://mcp.example.com/mcp",
      "enabledTools": ["only_tool_i_want", "and_this_one"]
    }
  }
}
Run /mcp inside droid to see the full list of tools a server exposes, then copy the exact tool names into enabledTools or disabledTools.

MCP call timeout

By default, droid applies a global timeout to every MCP tool invocation. Long-running tools (large data exports, browser automations, model-backed servers) can exceed this default and fail with a timeout error. Override the timeout per server with timeoutMs: 
{
  "mcpServers": {
    "slow-server": {
      "type": "stdio",
      "command": "my-long-running-server",
      "timeoutMs": 120000
    }
  }
}
You can also set a global default via the mcp.callTimeoutMs setting in settings.json: 
{
  "mcp": {
    "callTimeoutMs": 60000
  }
}
Resolution order, highest priority first:
  1. Per-server timeoutMs in mcp.json
  2. Global mcp.callTimeoutMs in settings.json
  3. Built-in default
Increasing the timeout only changes how long droid waits for a response — it does not extend any timeouts enforced by the MCP server itself or its upstream APIs.

Per-droid server selection

Custom droids can select which configured MCP servers they’re allowed to use via the mcpServers field in their frontmatter. This scopes a subagent to specific servers (e.g., mcpServers: ["linear", "github"]) instead of inheriting every server in the session. For finer-grained control, a droid’s tools list can name exact registered MCP tool IDs. See Selecting MCP servers for details.

Enterprise MCP policy

Organizations can centrally control which MCP servers are allowed via the mcpPolicy setting in org-managed settings. This lets administrators restrict MCP access at the org level so users can only connect to vetted servers.
FieldTypeDescription
enabledbooleanWhether policy enforcement is active. Enforcement applies only when enabled is true. When enabled is absent or false, no policy is enforced and configured MCP servers are allowed.
allowliststring[]List of allowed server matchers, applied only when the policy is enabled. Entries match the hostname of a remote HTTP/SSE server’s URL, or the command and arguments of a stdio server — not the configured server name. When the policy is enabled with an empty or absent allowlist, all servers are blocked.
Example org-managed settings: 
{
  "mcpPolicy": {
    "enabled": true,
    "allowlist": ["mcp.linear.app", "mcp.sentry.dev", "npx"]
  }
}
mcpPolicy is an enterprise/org-level setting and is enforced through managed settings — individual users cannot override it. Servers disallowed by policy remain in mcp.json and are still loaded into your configuration, but they are filtered out from running or connecting and do not appear as available in the /mcp manager.

MCP autonomy URL overrides

Administrators can assign a default autonomy risk level to remote MCP servers by URL with the mcpAutonomyUrlOverrides org-managed setting, controlling how much confirmation a matching server’s tools require before Droid runs them. Each rule maps a URL pattern to a risk level:
FieldTypeDescription
urlPatternstringGlob pattern (picomatch syntax) matched against the server’s URL.
defaultLevel"low" | "medium" | "high"Risk level for the matching server’s tools, compared against the user’s Autonomy Level to decide auto-run vs. confirm.
Example org-managed settings: 
{
  "mcpAutonomyUrlOverrides": [
    { "urlPattern": "https://mcp.internal.example.com/**", "defaultLevel": "low" },
    { "urlPattern": "https://*.partner.example.com/**", "defaultLevel": "medium" },
    { "urlPattern": "https://**", "defaultLevel": "high" }
  ]
}

Matching and precedence

  • Remote servers only. Rules match remote servers that have a URL (http and sse transports); local stdio servers are unaffected.
  • First match wins. Rules are checked in order, so list them most-specific first.
  • Safety floor. A rule sets a tool’s risk classification, not an absolute prompt: high-classified tools still follow the normal Autonomy Level comparison (High autonomy runs them without an extra prompt unless another safety check intervenes). The floor is one-directional — low or medium cannot pull a tool that isn’t read-only (destructive, or missing safety metadata) below high, so you can relax confirmation for read-only tools but never auto-approve destructive ones.
  • Fallback. Servers with no matching rule use Droid’s built-in tool risk classification (read-only hints and curated defaults).
mcpAutonomyUrlOverrides is admin-managed (MDM): it is delivered through org-managed settings and users cannot override or weaken it.