openevidence-mcp
Health Pass
- License — License: Apache-2.0
- Description — Repository has a description
- Active repo — Last push 0 days ago
- Community trust — 16 GitHub stars
Code Warn
- network request — Outbound network request in src/citations.ts
- process.env — Environment variable access in src/config.ts
Permissions Pass
- Permissions — No dangerous permissions requested
This is an unofficial MCP server that lets AI clients interact with OpenEvidence using cookies exported from your browser. It fetches articles, asks questions, and exports citations in BibTeX format, relying entirely on your existing authenticated session.
Security Assessment
Overall risk: Medium. The tool requires you to provide a `cookies.json` file containing your active session tokens, meaning highly sensitive authentication data is being passed to and read by this application. It makes outbound network requests to the OpenEvidence API (to fetch articles and history) and to Crossref (for citation validation). There is no evidence of hardcoded secrets, and the tool does not execute arbitrary shell commands. However, because it handles active session cookies, you must fully trust the code not to leak or misuse those credentials.
Quality Assessment
The project is written in TypeScript and is actively maintained, with recent updates pushed by the developer. It uses the permissive Apache-2.0 license and clearly documents its features and limitations. While it has a modest community following with 16 GitHub stars, the README is transparent about the project being an unofficial, "use at your own risk" fork designed for local personal workflows.
Verdict
Use with caution — while the code appears safe and well-documented, passing active browser session cookies to any third-party tool inherently carries privacy and security risks that require user diligence.
Unofficial OpenEvidence MCP server with cookies.json auth, Claude/Codex/Gemini install helpers, BibTeX citation export, and Crossref validation.
OpenEvidence MCP (Cookie Auth Fork)
Use OpenEvidence from Claude Code, Codex CLI, Gemini CLI, Claude Desktop, Cursor, Cline, Continue, and any MCP-compatible client.
What It Does
This is an unofficial OpenEvidence MCP server that reuses cookies exported from your own logged-in OpenEvidence browser session. It does not launch a browser, does not install Playwright, and does not need an official OpenEvidence API key.
It is designed for local personal workflows where you already have lawful access to OpenEvidence. It does not bypass authentication, remove access controls, redistribute OpenEvidence content, or include OpenEvidence data in this repository.
Tools:
| Tool | Purpose |
|---|---|
oe_auth_status |
Check /api/auth/me with your cookie file |
oe_history_list |
Read OpenEvidence history |
oe_article_get |
Fetch an article by id and save artifacts |
oe_ask |
Ask a question, optionally wait, and save artifacts |
oe_ask and oe_article_get return BibTeX in the MCP response by default when artifacts are saved. Pass include_bibtex: false to keep the response smaller while still writing citations.bib to disk.
Saved artifacts:
| File | Purpose |
|---|---|
article.json |
Full OpenEvidence article payload |
answer.md |
Extracted markdown answer |
citations.json |
Parsed structured citations |
citations.bib |
BibTeX bibliography |
crossref-validation.json |
Post-hoc Crossref validation results |
Fast Install
git clone https://github.com/htlin222/openevidence-mcp.git
cd openevidence-mcp
npm install
npm run build
Export cookies from a logged-in https://www.openevidence.com browser session and put them here:
cp /path/to/browser-cookies.json ./cookies.json
npm run login
npm run smoke
The cookie file can be a browser-exported cookies array or a storage-state object with a cookies array.
Register With MCP Clients
Use one of these.
Claude Code
make install-claude-global
claude mcp get openevidence
What it registers:
node /ABSOLUTE/PATH/openevidence-mcp/dist/server.js
OE_MCP_COOKIES_PATH=/ABSOLUTE/PATH/openevidence-mcp/cookies.json
Codex CLI
make install-codex-global
codex mcp get openevidence
Equivalent manual command:
codex mcp add openevidence \
--env OE_MCP_COOKIES_PATH="$PWD/cookies.json" \
-- node "$PWD/dist/server.js"
Manual ~/.codex/config.toml:
[mcp_servers.openevidence]
command = "node"
args = ["/ABSOLUTE/PATH/openevidence-mcp/dist/server.js"]
startup_timeout_sec = 60
[mcp_servers.openevidence.env]
OE_MCP_COOKIES_PATH = "/ABSOLUTE/PATH/openevidence-mcp/cookies.json"
Gemini CLI
make install-gemini-global
gemini mcp list
Equivalent manual command:
gemini mcp add --scope user \
-e OE_MCP_COOKIES_PATH="$PWD/cookies.json" \
openevidence node "$PWD/dist/server.js"
Claude Desktop, Cursor, Cline, Continue
Use this mcpServers shape:
{
"mcpServers": {
"openevidence": {
"command": "node",
"args": ["/ABSOLUTE/PATH/openevidence-mcp/dist/server.js"],
"env": {
"OE_MCP_COOKIES_PATH": "/ABSOLUTE/PATH/openevidence-mcp/cookies.json"
}
}
}
}
Install Everywhere
make install-all
This registers the same local stdio server with Claude Code, Codex CLI, and Gemini CLI.
Verify
npm run check
npm test
npm run build
npm run smoke
Expected smoke result:
{
"ok": true,
"authenticated": true
}
MCP stdio servers normally start on demand when the client checks or uses them. They do not need to run as a separate daemon.
How To Ask Questions
After registration, ask your MCP client in plain English and mention OpenEvidence. The agent should call oe_ask automatically.
Example prompts:
Use OpenEvidence to answer: DLBCL frontline treatment landscape NCCN v3.2026. Include citations and BibTeX.
Use OpenEvidence to compare Pola-R-CHP vs R-CHOP in untreated DLBCL. Include trial citations and BibTeX.
Use OpenEvidence to review current evidence for SGLT2 inhibitors in HFpEF. Include citations and BibTeX.
Use OpenEvidence to find guideline-supported anticoagulation options for cancer-associated thrombosis.
The underlying MCP call looks like this:
{
"tool": "oe_ask",
"arguments": {
"question": "DLBCL frontline treatment landscape NCCN v3.2026",
"wait_for_completion": true,
"include_bibtex": true
}
}
oe_ask returns:
- the OpenEvidence article payload
article_id- extracted answer markdown as
extracted_answer_raw - artifact file paths
- inline BibTeX as
artifacts.bibtex - saved citation files under the artifact directory
To fetch BibTeX for a prior answer, ask:
Use OpenEvidence to fetch article <ARTICLE_ID> and show the BibTeX.
That maps to oe_article_get:
{
"article_id": "<ARTICLE_ID>",
"include_bibtex": true
}
If the response is too large, use include_bibtex: false; the server will still write citations.bib to disk.
Citation Artifacts
Completed oe_ask and oe_article_get calls save artifacts under:
/tmp/openevidence-mcp/<article_id>/
On macOS, Node may resolve /tmp to a path under /var/folders/.../T/.
Example output:
answer.md
article.json
citations.json
citations.bib
crossref-validation.json
Crossref validation behavior:
- DOI citations are validated directly with Crossref.
- Non-DOI citations use a bibliographic query and are marked as
candidate,not_found, orerror. - Low-similarity Crossref matches are not used to overwrite BibTeX metadata.
- Sources like NCCN guidelines may stay as local OpenEvidence metadata because Crossref often has no authoritative match.
Copyright, Trademark, And Medical Disclaimer
This project is unofficial and independent. It is not affiliated with, endorsed by, sponsored by, or approved by OpenEvidence or its owners. "OpenEvidence" and related names, logos, product names, and content remain the property of their respective owners.
This repository contains connector code only. It does not include OpenEvidence copyrighted content, proprietary datasets, model outputs, article payloads, session cookies, or account material. Your local use of this MCP server may create files such as answer.md, article.json, and citations.bib; those artifacts can contain content retrieved from or derived from your OpenEvidence account session. Treat those files as private unless you have the right to share them.
You are responsible for complying with OpenEvidence terms, institutional policies, copyright law, and any clinical data governance rules that apply to your use. Do not publish cookies, account tokens, saved article payloads, generated answers, screenshots, guideline text, or other protected/copyrighted content unless you have permission or another valid legal basis.
This software is not medical advice and is not a medical device. It is an integration tool for an MCP client. Clinicians and qualified users remain responsible for verifying outputs against authoritative sources and applying independent clinical judgment.
Cookie Refresh
If auth stops working:
cp /path/to/fresh-browser-cookies.json ./cookies.json
npm run login
Then restart or open a fresh MCP client session if the old stdio server process is still alive.
Make Targets
| Target | Purpose |
|---|---|
make deps |
Run npm install |
make build |
Compile TypeScript |
make check |
Type-check |
make test |
Run unit tests |
make smoke |
Validate auth and history access |
make import-cookies COOKIES=/path/to/cookies.json |
Import and verify cookies |
make install-claude-global |
Register with Claude Code user config |
make install-codex-global |
Register with Codex CLI |
make install-gemini-global |
Register with Gemini CLI user config |
make install-all |
Register with Claude Code, Codex CLI, and Gemini CLI |
Environment Variables
| Variable | Default | Purpose |
|---|---|---|
OE_MCP_BASE_URL |
https://www.openevidence.com |
OpenEvidence base URL |
OE_MCP_ROOT_DIR |
~/.openevidence-mcp |
Root for default auth paths |
OE_MCP_COOKIES_PATH |
./cookies.json if present, else ~/.openevidence-mcp/auth/cookies.json |
Cookie file |
OE_MCP_AUTH_STATE_PATH |
unset | Legacy alias for OE_MCP_COOKIES_PATH |
OE_MCP_ARTIFACT_DIR |
OS temp dir + openevidence-mcp |
Artifact output directory |
OE_MCP_CROSSREF_MAILTO |
unset | Optional Crossref polite-pool email |
OE_MCP_CROSSREF_VALIDATE |
1 |
Set 0 to skip Crossref validation |
OE_MCP_POLL_INTERVAL_MS |
1200 |
Poll interval for oe_ask |
OE_MCP_POLL_TIMEOUT_MS |
180000 |
Default poll timeout |
Project Files
- README.AI.md - agent install playbook
- examples/codex-config.toml - Codex MCP config
- examples/claude-desktop-config.json - JSON MCP config
- src/citations.ts - citation extraction, BibTeX, Crossref validation
- src/cookies.ts - cookie file parsing
- src/server.ts - MCP tools
- test/citations.test.ts - unit tests
License And Attribution
Apache-2.0. Keep LICENSE and NOTICE when redistributing.
Based on OpenEvidence MCP by Bakhtier Sizhaev: https://github.com/bakhtiersizhaev/openevidence-mcp
Reviews (0)
Sign in to leave a review.
Leave a reviewNo results found