VERIFIED

Contentful

Safety: 45/100

0.0(0)

This MCP server provides full CRUD operations for Contentful's Content Management API, including content, comments, assets, spaces, and content types.

MCP ServersFreemium

Boost this tool

Subscribe to listing upgrades or segmented pushes.

Overview

This MCP server provides full CRUD operations for Contentful's Content Management API, including content, comments, assets, spaces, and content types.

This MCP server offers extensive content management capabilities, making it powerful but potentially risky. It is relatively safe when space and environment scoping are configured and the LLM is carefully instructed. It becomes risky if the management token is exposed or the LLM is given broad permissions without proper safeguards.

Performance depends on the size of the Contentful space and the complexity of the operations. Pagination is implemented to prevent context window overflow.

Cost depends on Contentful's pricing model, which is based on the number of entries, assets, and API calls. Bulk operations can help reduce the number of API calls.

HybridTypeScript61 starsMITReleased 1/17/2026CI/CD

Connections & Capabilities

Connects To

GitHub

Capabilities

ReadWriteAdmin

Client Compatibility

Claude Desktop

full

Cursor

untested

Windsurf

untested

VS Code (Copilot)

untested

Quickstart

Install

npx -y @smithery/cli install @ivotoby/contentful-management-mcp-server --client claude

Claude Desktop Config

{
  "mcpServers": {
    "contentful": {
      "command": "npx",
      "args": ["-y", "@ivotoby/contentful-management-mcp-server"],
      "env": {
        "CONTENTFUL_MANAGEMENT_ACCESS_TOKEN": "<Your CMA token>"
      }
    }
  }
}

Tools (33)

safe

search_entries

Search for entries within Contentful using specified query parameters.

Read-only operation; no content is modified.

moderate

create_entry

Create a new entry in Contentful with specified content and metadata.

Creates new content, but doesn't modify existing content without explicit instruction.

safe

get_entry

Retrieve an existing entry from Contentful by its ID.

Read-only operation; no content is modified.

high

update_entry

Update the fields of an existing entry in Contentful.

Modifies existing content, potentially causing data loss or corruption if not handled carefully.

critical

delete_entry

Delete an entry from Contentful.

Destructive operation; permanently removes content.

moderate

publish_entry

Publish an entry to make it available on the delivery API.

Changes the state of content, making it publicly accessible.

moderate

unpublish_entry

Unpublish an entry to remove it from the delivery API.

Changes the state of content, removing it from public access.

safe

get_comments

Retrieve comments for a specific entry, optionally filtering by status.

Read-only operation; retrieves existing comments.

moderate

create_comment

Create a new comment on an entry, supporting plain-text and rich-text formats.

Adds new content in the form of comments.

safe

get_single_comment

Retrieve a specific comment by its ID for an entry.

Read-only operation; retrieves a single comment.

high

delete_comment

Delete a specific comment from an entry.

Removes a comment, which could be important for context or discussion.

moderate

update_comment

Update the content or status of an existing comment.

Modifies existing comment content or status.

high

bulk_publish

Publish multiple entries and assets in a single operation.

Publishes multiple content items, potentially exposing unintended content.

high

bulk_unpublish

Unpublish multiple entries and assets in a single operation.

Unpublishes multiple content items, potentially disrupting content delivery.

safe

bulk_validate

Validate multiple entries for content consistency and required fields.

Read-only operation; validates content without modifying it.

safe

list_assets

List assets with pagination.

Read-only operation; lists existing assets.

moderate

upload_asset

Upload new assets with metadata.

Adds new assets to the content repository.

safe

get_asset

Retrieve asset details and information.

Read-only operation; retrieves asset information.

high

update_asset

Update asset metadata and files.

Modifies existing asset metadata and files.

critical

delete_asset

Remove assets from space.

Destructive operation; permanently removes assets.

moderate

publish_asset

Publish assets to delivery API.

Changes the state of assets, making them publicly accessible.

moderate

unpublish_asset

Unpublish assets from delivery API.

Changes the state of assets, removing them from public access.

safe

list_spaces

List available spaces.

Read-only operation; lists available spaces.

safe

get_space

Get space details.

Read-only operation; retrieves space details.

safe

list_environments

List environments in a space.

Read-only operation; lists environments.

high

create_environment

Create new environment.

Creates a new environment, which can impact content organization and workflows.

critical

delete_environment

Remove environment.

Destructive operation; permanently removes an environment.

safe

list_content_types

List available content types.

Read-only operation; lists content types.

safe

get_content_type

Get content type details.

Read-only operation; retrieves content type details.

high

create_content_type

Create new content type.

Creates a new content type, which can impact content structure.

high

update_content_type

Update content type.

Modifies an existing content type, which can impact content structure.

critical

delete_content_type

Remove content type.

Destructive operation; permanently removes a content type.

moderate

publish_content_type

Publish a content type.

Publishes a content type, making it available for content creation.

Security

Auth Method

Token

Data Locality

hybrid

Known Risks

!Exposure of the Content Management API token could lead to unauthorized content manipulation.
!Improperly configured LLM instructions could result in unintended content changes or deletions.
!Lack of sandboxing increases the risk of destructive operations.
!Bulk operations, if misused, can cause widespread content issues.

Safety Score

moderate risk

Positive

+Space and environment scoping limits operations to defined areas.
+Bulk operations provide status updates.
+Pagination limits the number of items returned per request.
+App Identity can be used instead of a management token.

Risks

-Requires a Content Management API token, which needs to be securely stored.
-Full CRUD operations available, including deletion.
-No explicit sandboxing is mentioned.
-Potential for unintended modifications if the LLM is not properly instructed.

Use Cases

Content Creation and Management

-Creating and managing blog posts
-Managing product catalogs
-Building and maintaining documentation
-Localizing content for different regions

Workflow Automation

-Automating content publishing workflows
-Managing content review and approval processes
-Triggering notifications based on content changes

Content Migration and Updates

-Migrating content from other systems to Contentful
-Performing bulk updates to content
-Validating content consistency across multiple entries

Comment Management

-Enabling content creators to add comments to entries
-Facilitating threaded conversations around content
-Managing comment status (active, resolved)

Who Is This For?

Best For

Content creators and managers
Developers building content-driven applications
Teams managing large content repositories
Organizations using Contentful as their CMS

Not Ideal For

Simple websites with static content
Projects with extremely limited budgets
Users without Contentful accounts or API tokens

Autonomy & Execution

Default ModeConfigurable

Destructive Tools

The level of autonomy depends on how the LLM is configured and instructed. Without proper safeguards, destructive operations are possible.

StatelessYes

Retry LogicNot documented

ConcurrencySingle-threaded

Production Tip

Implement robust error handling and logging to monitor the server's performance and identify potential issues.

FAQ

What is the purpose of this MCP server?

It provides an interface to manage Contentful content using the Content Management API.

How do I authenticate with the Contentful API?

You need to provide a Content Management API token as an environment variable or argument.

What are the risks of using this MCP server?

The main risks are unauthorized content manipulation if the API token is exposed or the LLM is improperly instructed.

How can I limit the scope of operations?

You can use space and environment scoping to restrict operations to specific areas.

Does this server support bulk operations?

Yes, it supports bulk publishing, unpublishing, and validation of entries and assets.

How does pagination work?

List operations return a maximum of 3 items per request, with information for retrieving subsequent pages.

Can I use App Identity for authentication?

Yes, you can use App Identity instead of a management token by providing the app ID, private key, space ID, and environment ID.

Metrics

Discovered2/14/2026

Reviews0

Saved By0 users

Related Tools

Contentful - AI Tool Review & Alternatives | Flaex AI