Metadata-Version: 2.4
Name: servicenow-devtools-mcp
Version: 0.9.0
Summary: A developer & debug-focused MCP server for ServiceNow — 32 tools for platform introspection, change intelligence, debugging, investigations, and documentation generation.
Project-URL: Homepage, https://github.com/xerrion/servicenow-devtools-mcp
Project-URL: Repository, https://github.com/xerrion/servicenow-devtools-mcp
Project-URL: Issues, https://github.com/xerrion/servicenow-devtools-mcp/issues
Author-email: Lasse Nielsen <lasse@xerrion.dk>
License-Expression: MIT
License-File: LICENSE
Keywords: debugging,devtools,mcp,model-context-protocol,servicenow
Classifier: Development Status :: 4 - Beta
Classifier: Intended Audience :: Developers
Classifier: License :: OSI Approved :: MIT License
Classifier: Programming Language :: Python :: 3
Classifier: Programming Language :: Python :: 3.12
Classifier: Programming Language :: Python :: 3.13
Classifier: Programming Language :: Python :: 3.14
Classifier: Topic :: Software Development :: Debuggers
Classifier: Topic :: Software Development :: Libraries :: Application Frameworks
Requires-Python: >=3.12
Requires-Dist: httpx>=0.27.0
Requires-Dist: mcp>=1.0.0
Requires-Dist: pydantic-settings>=2.0.0
Requires-Dist: pydantic>=2.0.0
Requires-Dist: python-dotenv>=1.0.0
Requires-Dist: sentry-sdk>=2.55.0
Requires-Dist: starlette>=0.38.0
Requires-Dist: toon-format
Requires-Dist: uvicorn>=0.30.0
Description-Content-Type: text/markdown

<p align="center">
  <img src="assets/banner.svg" alt="servicenow-devtools-mcp banner" width="900" />
</p>

<p align="center">
  <a href="https://pypi.org/project/servicenow-devtools-mcp/"><img src="https://img.shields.io/pypi/v/servicenow-devtools-mcp?color=00c9a7&style=flat-square" alt="PyPI version"></a>
  <a href="https://pypi.org/project/servicenow-devtools-mcp/"><img src="https://img.shields.io/pypi/pyversions/servicenow-devtools-mcp?style=flat-square" alt="Python versions"></a>
  <a href="https://github.com/xerrion/servicenow-devtools-mcp/blob/main/LICENSE"><img src="https://img.shields.io/github/license/xerrion/servicenow-devtools-mcp?style=flat-square" alt="License"></a>
  <img src="https://img.shields.io/badge/tools-100-00d4ff?style=flat-square" alt="Tool count">
</p>

# servicenow-devtools-mcp

A developer & debug-focused [Model Context Protocol (MCP)](https://modelcontextprotocol.io/) server for ServiceNow. Give your AI agent direct access to your ServiceNow instance for schema exploration, debugging, change intelligence, ITIL process management, and documentation generation.

## Features

- :mag: **Table & Schema Access** -- describe tables with enriched metadata (sys_db_object + sys_documentation), query records, compute aggregates, build structured queries
- :link: **Record Access** -- fetch individual records, find incoming and outgoing references for any record
- :paperclip: **Attachment Access** -- list metadata, inspect details, download content as `content_base64`, upload via `content_base64`, and delete attachments
- :package: **Change Intelligence** -- inspect update sets, diff artifact versions, audit trails, generate release notes
- :bug: **Debug & Trace** -- trace record timelines, flow executions, email chains, integration errors, import set runs, field mutations
- :test_tube: **Record Write** -- create, update, delete records with direct or preview-then-apply patterns
- :wrench: **Artifact Write** -- create and update platform artifacts (business rules, script includes, etc.) with optional local script file injection
- :mag_right: **Investigations** -- 7 built-in analysis modules (stale automations, deprecated APIs, table health, ACL conflicts, error analysis, slow transactions, performance bottlenecks)
- :page_facing_up: **Documentation** -- generate logic maps, artifact summaries, test scenarios, code review notes
- :gear: **Workflow Analysis** -- list workflow versions, inspect contexts, map activity structures, trace execution status
- :fire_engine: **Incident Management** -- list, create, update, resolve incidents and add comments
- :arrows_counterclockwise: **Change Management** -- manage change requests, change tasks, and approvals
- :warning: **Problem Management** -- track problems through root cause analysis to resolution
- :globe_with_meridians: **CMDB** -- browse configuration items, relationships, classes, and health checks
- :inbox_tray: **Request Management** -- manage service requests and request items (RITMs)
- :books: **Knowledge Management** -- search, create, update articles and submit feedback
- :shopping_cart: **Service Catalog** -- browse catalogs, categories, items, manage cart, and place orders
- :shield: **Safety** -- table deny lists, sensitive field masking, row limit caps, write gating in production

---

## Quick Start

```bash
# No install needed -- run directly with uvx
uvx servicenow-devtools-mcp
```

Set three required environment variables (or use a `.env` file):

```bash
export SERVICENOW_INSTANCE_URL=https://your-instance.service-now.com
export SERVICENOW_USERNAME=admin
export SERVICENOW_PASSWORD=your-password
```

---

## Configuration

### OpenCode

Add to `~/.config/opencode/opencode.json`:

```json
{
  "mcp": {
    "servicenow": {
      "type": "local",
      "command": ["uvx", "servicenow-devtools-mcp"],
      "environment": {
        "SERVICENOW_INSTANCE_URL": "https://your-instance.service-now.com",
        "SERVICENOW_USERNAME": "admin",
        "SERVICENOW_PASSWORD": "your-password",
        "MCP_TOOL_PACKAGE": "full",
        "SERVICENOW_ENV": "dev"
      }
    }
  }
}
```

### Claude Desktop

Add to your Claude Desktop config (`claude_desktop_config.json`):

```json
{
  "mcpServers": {
    "servicenow": {
      "command": "uvx",
      "args": ["servicenow-devtools-mcp"],
      "env": {
        "SERVICENOW_INSTANCE_URL": "https://your-instance.service-now.com",
        "SERVICENOW_USERNAME": "admin",
        "SERVICENOW_PASSWORD": "your-password",
        "MCP_TOOL_PACKAGE": "full",
        "SERVICENOW_ENV": "dev"
      }
    }
  }
}
```

### VS Code / Cursor (Copilot MCP)

Add to `.vscode/mcp.json` in your workspace:

```json
{
  "servers": {
    "servicenow": {
      "command": "uvx",
      "args": ["servicenow-devtools-mcp"],
      "env": {
        "SERVICENOW_INSTANCE_URL": "https://your-instance.service-now.com",
        "SERVICENOW_USERNAME": "admin",
        "SERVICENOW_PASSWORD": "your-password",
        "MCP_TOOL_PACKAGE": "full",
        "SERVICENOW_ENV": "dev"
      }
    }
  }
}
```

### Generic stdio

```bash
SERVICENOW_INSTANCE_URL=https://your-instance.service-now.com \
SERVICENOW_USERNAME=admin \
SERVICENOW_PASSWORD=your-password \
uvx servicenow-devtools-mcp
```

---

## :robot: Install Instructions for AIs

> Copy the block below and paste it into a conversation with any AI agent that supports MCP tool use. The AI will know how to configure and use this server.

````text
## ServiceNow MCP Server Setup

You have access to a ServiceNow MCP server (`servicenow-devtools-mcp`) that provides
100 tools for interacting with a ServiceNow instance.

### Installation

Run via uvx (no install required):
```
uvx servicenow-devtools-mcp
```

### Required Environment Variables

- SERVICENOW_INSTANCE_URL -- Full URL of the ServiceNow instance (e.g. https://dev12345.service-now.com)
- SERVICENOW_USERNAME -- ServiceNow user with admin or appropriate roles
- SERVICENOW_PASSWORD -- Password for the user above

### Optional Environment Variables

- MCP_TOOL_PACKAGE -- Which tools to load (default: "full"). See Tool Packages section for all 14 options.
- SERVICENOW_ENV -- Environment label: "dev" (default), "test", "staging", "prod". Write operations are blocked when set to "prod" or "production".
- MAX_ROW_LIMIT -- Max records per query (default: 100, max: 10000)
- LARGE_TABLE_NAMES_CSV -- Tables requiring date-bounded queries (default: syslog,sys_audit,sys_log_transaction,sys_email_log)
- SCRIPT_ALLOWED_ROOT -- When using artifact_write with script_path, constrains file reads to this directory tree (required for script_path). The file must be an existing regular UTF-8 file of <= 1 MB.

### MCP Client Configuration (stdio transport)

```json
{
  "command": "uvx",
  "args": ["servicenow-devtools-mcp"],
  "env": {
    "SERVICENOW_INSTANCE_URL": "<instance_url>",
    "SERVICENOW_USERNAME": "<username>",
    "SERVICENOW_PASSWORD": "<password>",
    "MCP_TOOL_PACKAGE": "full",
    "SERVICENOW_ENV": "dev"
  }
}
```

### Available Tools (100 total)

**Table (4):** table_describe, table_query, table_aggregate, build_query
  - Describe table schema with enriched metadata (sys_db_object + sys_documentation), query with encoded queries, compute stats, build structured queries

**Record (3):** record_get, rel_references_to, rel_references_from
  - Fetch records by sys_id, find what references a record, find what a record references

**Attachment (4):** attachment_list, attachment_get, attachment_download, attachment_download_by_name
  - List attachment metadata, fetch a single attachment record, and download content as `content_base64`

**Attachment Write (2):** attachment_upload, attachment_delete
  - Upload attachments with `content_base64` and delete attachments by sys_id

**Metadata (4):** meta_list_artifacts, meta_get_artifact, meta_find_references, meta_what_writes
  - List/inspect platform artifacts (business rules, script includes, etc.), find cross-references, find writers to a table

**Change Intelligence (4):** changes_updateset_inspect, changes_diff_artifact, changes_last_touched, changes_release_notes
  - Inspect update sets, diff artifact versions, view audit trail, generate release notes

**Debug & Trace (6):** debug_trace, debug_flow_execution, debug_email_trace, debug_integration_health, debug_importset_run, debug_field_mutation_story
  - Build event timelines, inspect flow executions, trace emails, check integration errors, inspect import sets, trace field mutations

**Record Write (7):** record_create, record_preview_create, record_update, record_preview_update, record_delete, record_preview_delete, record_apply
  - Create, update, delete records directly or via preview-then-apply confirmation pattern

**Artifact Write (2):** artifact_create, artifact_update
  - Create and update platform artifacts (business rules, script includes, client scripts, etc.) with optional local script file injection via script_path

**Investigations (2 dispatchers, 7 modules):** investigate_run, investigate_explain
  - Modules: stale_automations, deprecated_apis, table_health, acl_conflicts, error_analysis, slow_transactions, performance_bottlenecks

**Documentation (4):** docs_logic_map, docs_artifact_summary, docs_test_scenarios, docs_review_notes
  - Generate automation maps, artifact summaries with dependencies, test scenario suggestions, code review findings

**Workflow Analysis (5):** workflow_contexts, workflow_map, workflow_status, workflow_activity_detail, workflow_version_list
  - List workflow contexts for a record, map workflow structure, inspect execution status, view activity details

**Flow Designer (8):** flow_list, flow_get, flow_map, flow_action_detail, flow_execution_list, flow_execution_detail, flow_snapshot_list, workflow_migration_analysis
  - List, inspect, and map Flow Designer flows. View action details, execution history, published snapshots, and analyze legacy workflows for migration readiness

**Incident Management (6):** incident_list, incident_get, incident_create, incident_update, incident_resolve, incident_add_comment
  - Full incident lifecycle: list, fetch, create, update, resolve, and add comments/work notes

**Change Management (6):** change_list, change_get, change_create, change_update, change_tasks, change_add_comment
  - Manage change requests: list, fetch, create, update, view tasks, and add comments/work notes

**Problem Management (5):** problem_list, problem_get, problem_create, problem_update, problem_root_cause
  - Problem lifecycle: list, fetch, create, update, and document root cause analysis

**CMDB (5):** cmdb_list, cmdb_get, cmdb_relationships, cmdb_classes, cmdb_health
  - Browse CIs, inspect relationships, list CI classes, check CMDB health by operational status

**Request Management (5):** request_list, request_get, request_items, request_item_get, request_item_update
  - Manage service requests and RITMs: list, fetch, view items, update request items

**Knowledge Management (5):** knowledge_search, knowledge_get, knowledge_create, knowledge_update, knowledge_feedback
  - Search, read, create, update knowledge articles and submit feedback/ratings

**Service Catalog (12):** sc_catalogs_list, sc_catalog_get, sc_categories_list, sc_category_get, sc_items_list, sc_item_get, sc_item_variables, sc_order_now, sc_add_to_cart, sc_cart_get, sc_cart_submit, sc_cart_checkout
  - Browse catalogs, categories, and items. View item variables, order directly, manage cart, and checkout

**Core (1):** list_tool_packages
  - List available tool packages and their contents

### Safety Guardrails

- Table deny list: sys_user_has_role, sys_user_grmember, and other sensitive tables are blocked
- Sensitive fields: password, token, secret fields are masked in responses
- Row limits: User-supplied limit parameters capped at MAX_ROW_LIMIT (default 100)
- Large tables: syslog, sys_audit, etc. require date-bounded filters
- Write gating: All write operations blocked when SERVICENOW_ENV contains "prod" or "production"
- Attachments: uploads accept `content_base64`; download tools return `content_base64`
- Mandatory field validation: record creation validates all required fields are present before submission
- Standardized responses: Tools return TOON-serialized envelopes with correlation_id, status, data, and optionally pagination and warnings
````

---

## Environment Variables

| Variable | Description | Default | Required |
|---|---|---|---|
| `SERVICENOW_INSTANCE_URL` | Full URL of your ServiceNow instance (must start with `https://`) | -- | Yes |
| `SERVICENOW_USERNAME` | ServiceNow username (Basic Auth) | -- | Yes |
| `SERVICENOW_PASSWORD` | ServiceNow password | -- | Yes |
| `MCP_TOOL_PACKAGE` | Tool package to load (see [Tool Packages](#tool-packages)) | `full` | No |
| `SERVICENOW_ENV` | Environment label (`dev`, `test`, `staging`, `prod`) | `dev` | No |
| `MAX_ROW_LIMIT` | Maximum rows returned per query (range: 1-10000) | `100` | No |
| `LARGE_TABLE_NAMES_CSV` | Comma-separated tables requiring date filters | `syslog,sys_audit,sys_log_transaction,sys_email_log` | No |
| `SCRIPT_ALLOWED_ROOT` | Root directory for `script_path` in artifact write tools | `""` (disabled) | Yes (when using `script_path`) |
| `SENTRY_DSN` | Sentry DSN for error reporting (enables Sentry when set) | `""` | No |
| `SENTRY_ENVIRONMENT` | Sentry environment label | Falls back to `SERVICENOW_ENV` | No |

The server reads from `.env` and `.env.local` files automatically (`.env.local` takes precedence).

---

## Sentry Error Tracking

Opt-in error tracking designed for MCP servers. Since MCP servers run as child processes of AI agents via stdio, the user never sees stdout or stderr - Sentry provides the primary way to get error visibility in production.

### Install with Sentry support

```bash
uv pip install "servicenow-devtools-mcp[sentry]"
```

### Enable error tracking

```bash
# Required - provide a Sentry DSN to activate
SENTRY_DSN=https://your-key@o123.ingest.sentry.io/456

# Optional - override environment label (defaults to SERVICENOW_ENV)
SENTRY_ENVIRONMENT=production
```

| Variable | Description | Default | Required |
|---|---|---|---|
| `SENTRY_DSN` | Sentry DSN for error reporting | `""` (disabled) | No |
| `SENTRY_ENVIRONMENT` | Sentry environment label | Falls back to `SERVICENOW_ENV` | No |

### What gets captured

- **Tool errors** - every unhandled exception in tool execution, with tool name and correlation ID as tags
- **HTTP errors** - ServiceNow API failures with status code, method, and URL as structured context
- **Infrastructure failures** - broken tool group imports, persistent `sys_choice` fetch failures, TOON encoding bugs

### Graceful degradation

- Without `sentry-sdk` installed: zero overhead, all functions no-op
- With package installed but no `SENTRY_DSN` set: no client initialized
- With package installed and `SENTRY_DSN` set: full error capture active

Performance monitoring is enabled in Sentry with `traces_sample_rate=1.0` (100% sampling) to capture full performance telemetry for this MCP server. Since MCP servers are single-user stdio processes, this is unlikely to cause ingest overhead. For high-throughput deployments, consider reducing the sample rate in code.

---

## Tool Reference

### Core

| Tool | Description | Key Parameters |
|---|---|---|
| `list_tool_packages` | List all available tool packages and their tool groups | -- |

### :mag: Table

| Tool | Description | Key Parameters |
|---|---|---|
| `table_describe` | Return enriched field metadata for a table (types, references, choices, sys_db_object, sys_documentation) | `table` |
| `table_query` | Query a table with encoded query string or query token | `table`, `query_token?`, `fields?`, `limit?`, `offset?`, `order_by?`, `display_values?` |
| `table_aggregate` | Compute aggregate stats (count, avg, min, max, sum) | `table`, `query_token?`, `group_by?`, `avg_fields?`, `sum_fields?` |
| `build_query` | Build a ServiceNow encoded query from structured JSON conditions | `conditions` (JSON array) |

The `build_query` tool returns a reusable `query_token` that can be passed to `table_query`, `table_aggregate`, `meta_list_artifacts`, and other query-accepting tools. Supports comparison, string, null, time, date, range, field comparison, reference, change detection, logical, related list, and ordering operators.

### :link: Record

| Tool | Description | Key Parameters |
|---|---|---|
| `record_get` | Fetch a single record by sys_id | `table`, `sys_id`, `fields?`, `display_values?` |
| `rel_references_to` | Find records in other tables that reference a given record | `table`, `sys_id` |
| `rel_references_from` | Find what a record references via its reference fields | `table`, `sys_id` |

### :paperclip: Attachment

| Tool | Description | Key Parameters |
|---|---|---|
| `attachment_list` | List attachment metadata with optional table, record, and file filters | `table_name?`, `table_sys_id?`, `file_name?`, `limit?`, `offset?`, `order_by?` |
| `attachment_get` | Fetch attachment metadata by attachment sys_id | `sys_id` |
| `attachment_download` | Download attachment content by attachment sys_id | `sys_id` |
| `attachment_download_by_name` | Download attachment content by source record and file name | `table_name`, `table_sys_id`, `file_name` |

Download tools return attachment metadata plus `content_base64`.

### :paperclip: Attachment Write

| Tool | Description | Key Parameters |
|---|---|---|
| `attachment_upload` | Upload a new attachment using base64-encoded content | `table_name`, `table_sys_id`, `file_name`, `content_base64`, `content_type?`, `encryption_context?`, `creation_time?` |
| `attachment_delete` | Delete an attachment by attachment sys_id | `sys_id` |

Uploads accept `content_base64` and follow the same write gating rules as other mutation tools.

### :package: Metadata

| Tool | Description | Key Parameters |
|---|---|---|
| `meta_list_artifacts` | List platform artifacts by type (business rules, script includes, etc.) | `artifact_type`, `query_token?`, `limit?` |
| `meta_get_artifact` | Get full artifact details including script body | `artifact_type`, `sys_id` |
| `meta_find_references` | Search all script tables for references to a target string | `target`, `limit?` |
| `meta_what_writes` | Find business rules that write to a table/field | `table`, `field?` |

### :package: Change Intelligence

| Tool | Description | Key Parameters |
|---|---|---|
| `changes_updateset_inspect` | Inspect update set members grouped by type with risk flags | `update_set_id` |
| `changes_diff_artifact` | Show unified diff between two most recent artifact versions | `table`, `sys_id` |
| `changes_last_touched` | Show who last touched a record and what changed (sys_audit) | `table`, `sys_id`, `limit?` |
| `changes_release_notes` | Generate Markdown release notes from an update set | `update_set_id`, `format?` |

### :bug: Debug & Trace

| Tool | Description | Key Parameters |
|---|---|---|
| `debug_trace` | Build merged timeline from sys_audit, syslog, and journal | `record_sys_id`, `table`, `minutes?` |
| `debug_flow_execution` | Inspect a Flow Designer execution step by step | `context_id` |
| `debug_email_trace` | Reconstruct email chain for a record | `record_sys_id` |
| `debug_integration_health` | Summarize recent integration errors (ECC queue or REST) | `kind?`, `hours?` |
| `debug_importset_run` | Inspect import set run with row-level results | `import_set_sys_id` |
| `debug_field_mutation_story` | Chronological mutation history of a single field | `table`, `sys_id`, `field`, `limit?` |

### :test_tube: Record Write

| Tool | Description | Key Parameters |
|---|---|---|
| `record_create` | Create a new record in a table | `table`, `data` (JSON string) |
| `record_preview_create` | Preview a record creation and get a confirmation token | `table`, `data` (JSON string) |
| `record_update` | Update an existing record | `table`, `sys_id`, `changes` (JSON string) |
| `record_preview_update` | Preview a record update with field-level diff | `table`, `sys_id`, `changes` (JSON string) |
| `record_delete` | Delete a record | `table`, `sys_id` |
| `record_preview_delete` | Preview a deletion showing the record to be removed | `table`, `sys_id` |
| `record_apply` | Apply a previously previewed action (create, update, or delete) | `preview_token` |

### :wrench: Artifact Write

| Tool | Description | Key Parameters |
|---|---|---|
| `artifact_create` | Create a new platform artifact in ServiceNow | `artifact_type`, `data` (JSON string), `script_path?` |
| `artifact_update` | Update an existing platform artifact in ServiceNow | `artifact_type`, `sys_id`, `changes` (JSON string), `script_path?` |

Supports 17 artifact types: `business_rule`, `script_include`, `ui_policy`, `ui_action`, `client_script`, `scheduled_job`, `fix_script`, `scripted_rest_resource`, `ui_script`, `processor`, `widget`, `ui_page`, `ui_macro`, `script_action`, `mid_script_include`, `scripted_rest_api`, `notification_script`.

When `script_path` is provided, it must be an absolute filesystem path; relative paths are rejected. Requires `SCRIPT_ALLOWED_ROOT` to be configured. The path must resolve to an existing regular UTF-8 file under that root, and file size must be <= 1 MB. The file content is read and set as the artifact's script field. The script field varies by artifact type (e.g. `script` for business rules, `operation_script` for scripted REST resources, `html` for UI pages).

### :mag_right: Investigations

| Tool | Description | Key Parameters |
|---|---|---|
| `investigate_run` | Run a named investigation module | `investigation`, `params?` (JSON string) |
| `investigate_explain` | Get detailed explanation for a specific finding | `investigation`, `element_id` |

**Available investigation modules:**

| Module | What it does |
|---|---|
| `stale_automations` | Find disabled or unused business rules, flows, and scheduled jobs |
| `deprecated_apis` | Scan scripts for deprecated ServiceNow API usage |
| `table_health` | Analyze table size, index coverage, and schema issues |
| `acl_conflicts` | Detect conflicting or redundant ACL rules |
| `error_analysis` | Aggregate and categorize recent errors from syslog |
| `slow_transactions` | Find slow-running transactions from sys_log_transaction |
| `performance_bottlenecks` | Identify performance issues across flows, queries, and scripts |

### :page_facing_up: Documentation

| Tool | Description | Key Parameters |
|---|---|---|
| `docs_logic_map` | Generate lifecycle logic map of all automations on a table | `table` |
| `docs_artifact_summary` | Generate artifact summary with dependency analysis | `artifact_type`, `sys_id` |
| `docs_test_scenarios` | Analyze script and suggest test scenarios | `artifact_type`, `sys_id` |
| `docs_review_notes` | Scan script for anti-patterns and generate review notes | `artifact_type`, `sys_id` |

### :gear: Workflow Analysis

| Tool | Description | Key Parameters |
|---|---|---|
| `workflow_contexts` | List legacy and Flow Designer contexts running on a record | `record_sys_id`, `table?`, `state?`, `limit?` |
| `workflow_map` | Show structure of a workflow version (activities, transitions, variables) | `workflow_version_sys_id` |
| `workflow_status` | Show execution status of a workflow context | `context_sys_id` |
| `workflow_activity_detail` | Fetch detailed info about a workflow activity | `activity_sys_id` |
| `workflow_version_list` | List workflow versions defined for a table | `table`, `active_only?`, `limit?` |

### :ocean: Flow Designer

| Tool | Description | Key Parameters |
|---|---|---|
| `flow_list` | List Flow Designer flows and subflows with optional filters | `table?`, `flow_type?`, `status?`, `active_only?`, `limit?` |
| `flow_get` | Fetch a Flow Designer flow definition with inputs/outputs | `flow_sys_id` |
| `flow_map` | Map the structure of a flow (action instances and logic blocks) | `flow_sys_id` |
| `flow_action_detail` | Fetch detailed info about a flow action instance | `action_instance_sys_id` |
| `flow_execution_list` | List Flow Designer execution contexts with optional filters | `flow_sys_id?`, `source_record?`, `state?`, `limit?` |
| `flow_execution_detail` | Fetch detailed execution info including ordered log entries | `context_id` |
| `flow_snapshot_list` | List published snapshots (versions) for a flow | `flow_sys_id`, `limit?` |
| `workflow_migration_analysis` | Analyze a legacy workflow for Flow Designer migration readiness | `workflow_version_sys_id` |

### :fire_engine: Incident Management

| Tool | Description | Key Parameters |
|---|---|---|
| `incident_list` | List incidents with optional filters | `state?`, `priority?`, `assigned_to?`, `assignment_group?`, `limit?` |
| `incident_get` | Fetch incident by INC number | `number` |
| `incident_create` | Create a new incident | `short_description`, `urgency?`, `impact?`, `priority?`, `description?`, `assignment_group?` |
| `incident_update` | Update an existing incident by INC number | `number`, `state?`, `priority?`, `assigned_to?`, ... |
| `incident_resolve` | Resolve an incident with close code and notes | `number`, `close_code`, `close_notes` |
| `incident_add_comment` | Add comment or work note to an incident | `number`, `comment?`, `work_note?` |

### :arrows_counterclockwise: Change Management

| Tool | Description | Key Parameters |
|---|---|---|
| `change_list` | List change requests with optional filters | `state?`, `type?`, `risk?`, `assignment_group?`, `limit?` |
| `change_get` | Fetch change request by CHG number | `number` |
| `change_create` | Create a new change request | `short_description`, `type?`, `risk?`, `assignment_group?`, `start_date?`, `end_date?` |
| `change_update` | Update an existing change request by CHG number | `number`, `state?`, `type?`, `risk?`, ... |
| `change_tasks` | Get change tasks for a change request | `number`, `limit?` |
| `change_add_comment` | Add comment or work note to a change request | `number`, `comment?`, `work_note?` |

### :warning: Problem Management

| Tool | Description | Key Parameters |
|---|---|---|
| `problem_list` | List problems with optional filters | `state?`, `priority?`, `assigned_to?`, `assignment_group?`, `limit?` |
| `problem_get` | Fetch problem by PRB number | `number` |
| `problem_create` | Create a new problem | `short_description`, `urgency?`, `impact?`, `priority?`, `description?` |
| `problem_update` | Update an existing problem by PRB number | `number`, `state?`, `priority?`, `assigned_to?`, ... |
| `problem_root_cause` | Document root cause analysis for a problem | `number`, `cause_notes`, `fix_notes?` |

### :globe_with_meridians: CMDB

| Tool | Description | Key Parameters |
|---|---|---|
| `cmdb_list` | List Configuration Items from CMDB | `ci_class?`, `operational_status?`, `limit?` |
| `cmdb_get` | Fetch a Configuration Item by name or sys_id | `name_or_sys_id`, `ci_class?` |
| `cmdb_relationships` | Fetch CMDB relationships for a CI | `name_or_sys_id`, `direction?`, `ci_class?` |
| `cmdb_classes` | List unique CI classes in CMDB | `limit?` |
| `cmdb_health` | Check CMDB health by aggregating operational status | `ci_class?` |

### :inbox_tray: Request Management

| Tool | Description | Key Parameters |
|---|---|---|
| `request_list` | List requests with optional filters | `state?`, `requested_for?`, `assignment_group?`, `limit?` |
| `request_get` | Fetch request by REQ number | `number` |
| `request_items` | Fetch request items (RITMs) for a request | `number`, `limit?` |
| `request_item_get` | Fetch request item by RITM number | `number` |
| `request_item_update` | Update a request item by RITM number | `number`, `state?`, `assignment_group?`, `assigned_to?` |

### :books: Knowledge Management

| Tool | Description | Key Parameters |
|---|---|---|
| `knowledge_search` | Search knowledge articles with fuzzy text matching | `query`, `workflow_state?`, `limit?` |
| `knowledge_get` | Fetch a knowledge article by KB number or sys_id | `number_or_sys_id` |
| `knowledge_create` | Create a new knowledge article | `short_description`, `text`, `kb_knowledge_base?`, `workflow_state?` |
| `knowledge_update` | Update a knowledge article by KB number or sys_id | `number_or_sys_id`, `short_description?`, `text?`, `workflow_state?` |
| `knowledge_feedback` | Submit feedback (rating or comment) for a knowledge article | `number_or_sys_id`, `rating?`, `comment?` |

### :shopping_cart: Service Catalog

| Tool | Description | Key Parameters |
|---|---|---|
| `sc_catalogs_list` | List service catalogs | `limit?`, `text?` |
| `sc_catalog_get` | Fetch details of a specific catalog | `sys_id` |
| `sc_categories_list` | List categories for a catalog | `catalog_sys_id`, `top_level_only?`, `limit?` |
| `sc_category_get` | Fetch details of a catalog category | `sys_id` |
| `sc_items_list` | List catalog items with optional filters | `text?`, `catalog?`, `category?`, `limit?` |
| `sc_item_get` | Fetch details of a catalog item | `sys_id` |
| `sc_item_variables` | Fetch variables (form fields) for a catalog item | `sys_id` |
| `sc_order_now` | Order a catalog item immediately (bypass cart) | `item_sys_id`, `variables?` |
| `sc_add_to_cart` | Add a catalog item to the shopping cart | `item_sys_id`, `variables?` |
| `sc_cart_get` | Retrieve current shopping cart contents | -- |
| `sc_cart_submit` | Submit the current shopping cart as an order | -- |
| `sc_cart_checkout` | Checkout the current shopping cart | -- |

---

## Tool Packages

Control which tools are loaded using the `MCP_TOOL_PACKAGE` environment variable. There are 14 preset packages plus support for custom combinations.

### Preset Packages

| Package | Groups | Description |
|---|---|---|
| `full` (default) | 20 | All standard tool groups (excludes `testing`) -- 100 tools total |
| `itil` | 16 | ITIL process tools (incidents, changes, problems, requests + platform tools) |
| `developer` | 13 | Development-focused (table, record, attachments, debug, investigations, workflows) |
| `readonly` | 10 | Read-only operations, including attachment read tools |
| `analyst` | 8 | Analysis and reporting (table, record, attachments, investigations, docs, workflows) |
| `incident_management` | 9 | Incident lifecycle with supporting tools and attachment writes |
| `problem_management` | 9 | Problem lifecycle with supporting tools and attachment writes |
| `change_management` | 8 | Change request management with change intelligence and attachment writes |
| `request_management` | 8 | Request and RITM management with attachment writes |
| `cmdb` | 6 | CMDB management with relationships and attachment writes |
| `knowledge_management` | 6 | Knowledge base tools with attachment writes |
| `service_catalog` | 6 | Service catalog tools with attachment writes |
| `core_readonly` | 4 | Read-only core tools (table, record, attachment, metadata) |
| `none` | 0 | Only `list_tool_packages` -- minimal/testing |

### Custom Packages

You can also specify a comma-separated list of tool group names to create a custom package:

```bash
MCP_TOOL_PACKAGE="table,record,debug,domain_incident"
```

Readonly-style packages include only `attachment`. Write-capable packages include both `attachment` and `attachment_write`.

Available tool groups: `table`, `record`, `attachment`, `record_write`, `attachment_write`, `metadata`, `artifact_write`, `changes`, `debug`, `investigations`, `documentation`, `workflow`, `flow_designer`, `testing`, `domain_incident`, `domain_change`, `domain_problem`, `domain_cmdb`, `domain_request`, `domain_knowledge`, `domain_service_catalog`.

---

## Safety & Policy

The server includes built-in guardrails that are always active:

- **Table deny list** -- Sensitive tables like `sys_user_has_role`, `sys_user_grmember`, and 6 others are blocked from queries
- **Sensitive field masking** -- Fields whose names match patterns like `password`, `token`, `secret`, `credential`, `api_key`, or `private_key` are masked with the literal value `***MASKED***` in responses
- **Row limit caps** -- User-supplied `limit` parameters are capped at `MAX_ROW_LIMIT` (default 100, max 10000). If a larger value is requested, the limit is reduced and a warning is included in the response
- **Large table protection** -- Tables listed in `LARGE_TABLE_NAMES_CSV` require date-bounded filters in queries to prevent full-table scans
- **Write gating** -- All write operations (record_write tools and domain create/update tools) are blocked when `SERVICENOW_ENV` contains "prod" or "production". There is no override - use a sub-production instance for write operations
- **Query safety** -- Structured query validation with identifier checks and internal query limits
- **Standardized responses** -- Every tool returns a TOON-serialized envelope with `correlation_id`, `status`, and `data`, and may include `pagination` and `warnings` when applicable

---

## Example Prompts

Here are some real-world prompts you can use with an AI agent that has this MCP server connected:

> Describe the incident table and show me all the business rules that fire on it.
>
> List all P1 incidents from the last week and show me who resolved them.
>
> Trace the full lifecycle of INC0010042 -- show me every field change, comment, and log entry.
>
> Inspect update set "Q1 Release" and generate release notes. Flag any risky changes.
>
> Run the stale_automations investigation and explain the top findings.
>
> Find all scripts that reference the "cmdb_ci_server" table and check them for anti-patterns.
>
> Create a new incident with priority 1 and short description "Server outage". Show me a preview first.
>
> Show me the performance bottlenecks investigation and explain any slow transactions found.
>
> List all open change requests and show me the tasks for CHG0010023.
>
> Search the knowledge base for "VPN setup" and update the article with the new server address.
>
> Browse the service catalog for laptop requests and show me the available options.
>
> Check CMDB health and show me the relationships for our production database server.

---

## Development

```bash
# Clone the repository
git clone https://github.com/xerrion/servicenow-devtools-mcp.git
cd servicenow-devtools-mcp

# Install dependencies (including dev tools)
uv sync --group dev

# Run unit tests (~1165 tests)
uv run pytest

# Run integration tests (requires .env.local with real credentials)
uv run pytest -m integration

# Lint and format
uv run ruff check .
uv run ruff format .

# Type check
uv run mypy src/

# Run the server locally
uv run servicenow-devtools-mcp
```

---

## License

[MIT](LICENSE)
