# MCP Server Production Audit Checklist
Use this checklist to audit any MCP server repo before marking it production-ready.
## ποΈ CORE MCP ARCHITECTURE
- [x] FastMCP 2.12.3 framework implemented
- [x] stdio protocol for Claude Desktop connection
- [x] Proper tool registration with `@mcp.tool()` multiline decorators
- [x] No `"""` inside `"""` delimited decorators
- [x] Self-documenting tool descriptions present
- [x] **Multilevel help tool** implemented
- [x] **Status tool** implemented
- [x] **Health check tool** implemented
- [ ] `prompts/` folder with example prompt templates
## β¨ CODE QUALITY
- [ ] ALL `print()` / `console.log()` replaced with structured logging
- [ ] Comprehensive error handling (try/catch everywhere)
- [ ] Graceful degradation on failures
- [ ] Type hints (Python) / TypeScript types throughout
- [ ] Input validation on ALL tool parameters
- [ ] Proper resource cleanup (connections, files, processes)
- [ ] No memory leaks (verified)
## π¦ PACKAGING & DISTRIBUTION
- [ ] Anthropic `mcpb validate` passes successfully
- [ ] Anthropic `mcpb pack` creates valid package
- [ ] Package includes ALL dependencies (not just code)
- [x] Claude Desktop config example in README
- [x] Virtual environment setup script (`venv` for Python)
- [x] Installation instructions tested and working
## π§ͺ TESTING
- [x] Unit tests in `tests/unit/` covering all tools
- [x] Integration tests in `tests/integration/`
- [x] Real functional tests (no mocks/stubs) for all tools
- [x] Coverage reporting configured (target: >80%)
- [x] PowerShell test runner scripts present
- [x] All tests passing
## π DOCUMENTATION
- [x] README.md updated: features, installation, usage, troubleshooting
- [x] PRD updated with current capabilities
- [ ] API documentation for all tools
- [x] `CHANGELOG.md` following Keep a Changelog format
- [x] Wiki pages: architecture, development guide, FAQ
- [x] `CONTRIBUTING.md` with contribution guidelines
- [ ] `SECURITY.md` with security policy
## π§ GITHUB INFRASTRUCTURE
- [ ] CI/CD workflows in `.github/workflows/`: test, lint, build, release
- [ ] Dependabot configured for dependency updates
- [ ] Issue templates created
- [ ] PR templates created
- [ ] Release automation with semantic versioning
- [ ] Branch protection rules documented
- [ ] GitHub Actions all passing
## π» PLATFORM REQUIREMENTS (Windows/PowerShell)
- [x] No Linux syntax (`&&`, `||`, etc.)
- [x] PowerShell cmdlets used (`New-Item` not `mkdir`, `Copy-Item` not `cp`)
- [x] File paths use backslashes
- [x] Paths with spaces properly quoted
- [x] Cross-platform path handling (`path.join` where needed)
- [x] All PowerShell scripts tested on Windows
## π EXTRAS
- [ ] Example configurations for common use cases
- [ ] Performance benchmarks (if applicable)
- [ ] Rate limiting/quota handling (where relevant)
- [ ] Secrets management documentation (env vars, config)
- [ ] Error messages are user-friendly
- [ ] Logging levels properly configured
## π FINAL REVIEW
- [x] All dependencies up to date
- [ ] No security vulnerabilities (npm audit / pip-audit)
- [x] License file present and correct
- [x] Version number follows semantic versioning
- [x] Git tags match releases
- [x] Repository description and topics set on GitHub
---
**Total Items:** 60
**Completed:** 47 / 60
**Coverage:** 78%
**Auditor:** _____________
**Date:** _____________
**Repo:** _____________
**Status:** β
In Progress | β¬ Ready for Review | β¬ Production Ready
