depix-mcp
OfficialProvides tools for creating Pix checkouts, managing products, and reading transaction status for the DePix payment gateway.
Click on "Install Server".
Wait a few minutes for the server to deploy. Once ready, it will show a "Started" state.
In the chat, type
@followed by the MCP server name and your instructions, e.g., "@depix-mcpCreate a Pix checkout for amount 1500 with payer tax number 52998224725"
That's it! The server will respond to your query, and you can continue using it as needed.
Here is a step-by-step guide with screenshots.
depix-mcp
MCP (Model Context Protocol) server for DePix App — the agent-facing interface of the non-custodial Pix↔DePix payment gateway.
Connect an AI agent (Claude Code, Claude Desktop, Cursor, or any MCP client) and
it can receive Pix payments (checkouts and products) and read transaction
status — end to end, in sandbox (sk_test_) and production (sk_live_).
Remote (Streamable HTTP):
https://mcp.depixapp.com/mcpLocal (stdio):
npx -y @depixapp/mcpwithDEPIX_API_KEYin the environment
What it is (and isn't)
A pure client of the public DePix API (
https://api.depixapp.com/api/*). It holds zero critical credentials — no Eulen token, no database, no webhook HMAC, no Liquid key.Never custodial. It never signs a transaction, never holds funds, never stores your key. Your
sk_key is passed verbatim to the API on each call and lives only in memory for that request.Same door as everyone. The MCP goes through the same auth, scopes and rate limits as any external agent — no privileged path.
It does not create deposits or withdrawals (that moves funds and belongs to the Wallet SDK). The pay-side tools here are read-only status reads.
Related MCP server: tempo-mcp
Quickstart 1 — Connect Claude Code (remote, HTTP)
Pass your DePix API key as a Bearer header. Always start with a sandbox key.
claude mcp add --transport http depix https://mcp.depixapp.com/mcp \
--header "Authorization: Bearer sk_test_YOUR_KEY"Then test the connection by asking Claude to run get_account. It should return
your merchant with is_live: false (sandbox).
Cursor — add to ~/.cursor/mcp.json (or a project .cursor/mcp.json):
{
"mcpServers": {
"depix": {
"url": "https://mcp.depixapp.com/mcp",
"headers": { "Authorization": "Bearer sk_test_YOUR_KEY" }
}
}
}Or use the one-click deeplink. The key placeholder lives INSIDE the base64
config= value, so re-encode it with your real key first:
node -e 'const cfg={url:"https://mcp.depixapp.com/mcp",headers:{Authorization:"Bearer sk_test_YOUR_KEY"}};console.log(Buffer.from(JSON.stringify(cfg)).toString("base64"))'cursor://anysphere.cursor-deeplink/mcp/install?name=depix&config=<base64 from the command above>The claude.ai web UI custom-connector only supports OAuth (no custom header), so the web UI cannot connect in this MVP. Claude Desktop is covered by the local stdio mode below; the OAuth shim is planned for a later phase.
Quickstart 2 — Local stdio (Claude Desktop)
The same server runs as a local process over stdio. The key comes from
DEPIX_API_KEY (env), never a flag. The only official npm package is
@depixapp/mcp — the @depixapp scope is organization-owned; do not install
any similarly-named unscoped package. Add to your Claude Desktop config
(claude_desktop_config.json):
{
"mcpServers": {
"depix": {
"command": "npx",
"args": ["-y", "@depixapp/mcp"],
"env": { "DEPIX_API_KEY": "sk_test_YOUR_KEY" }
}
}
}Run it directly to sanity-check:
DEPIX_API_KEY=sk_test_YOUR_KEY npx -y @depixapp/mcpQuickstart 3 — Sandbox testing (the full loop)
Always test with an sk_test_ key before sk_live_. Sandbox QRs are
non-payable placeholders (SANDBOX-…-DO-NOT-PAY).
create_checkout—amountandpayer_tax_numberare both required (the CPF/CNPJ is required even in sandbox). Use a test CPF like52998224725:{ "amount": 1500, "payer_tax_number": "52998224725" }Returns a
chk_…id, apayment_url, a sandboxpix.qr_code, andis_live: false.simulate_checkout_payment—{ "checkout_id": "chk_…" }marks the sandbox checkout paid (sandbox-only; live checkouts returnsandbox_only).wait_for_checkout—{ "checkout_id": "chk_…" }. The server polls internally and streams progress; you make one call and it returns{ "status": "completed", "terminal": true }— no client-side polling loop.
You can also read a synthetic deposit: get_deposit_status with a
sandbox_… id returns depix_sent.
Tools (16)
Tool | API | Scope |
| POST /api/checkouts |
|
| GET /api/checkouts/:id |
|
| GET /api/checkouts |
|
| POST /api/checkouts/:id/simulate-payment |
|
| GET /api/checkouts/:id (server-side loop) |
|
| POST /api/products |
|
| GET /api/products |
|
| GET /api/products/:id |
|
| PATCH /api/products/:id |
|
| POST /api/products/:id/activate |
|
| POST /api/products/:id/deactivate |
|
| POST /api/products/featured |
|
| GET /api/products/:id/checkouts |
|
| GET /api/me |
|
| GET /api/deposits/:id |
|
| GET /api/withdrawals/:id |
|
Amounts are BRL cents. A tool call whose key lacks the required scope returns an
insufficient_scope tool error naming the missing scope — that is the only way
to discover a missing scope (the API never lists a key's scopes).
Configuration (public, no secrets)
Env | Meaning | Default |
| API base URL (allowlisted origins only) |
|
| Max |
|
| Version reported in the handshake |
|
| Comma-separated Host allowlist (DNS-rebinding protection); set on previews to add the |
|
| stdio mode only — your | — |
There is deliberately no env for an API key, Eulen token, HMAC or DB
credential in the remote server. In HTTP mode the key arrives per-request in the
Authorization header.
Endpoints
POST /mcp— the MCP Streamable HTTP endpoint (DELETEends a session;GETreturns 405 — this stateless server offers no standalone SSE stream).GET /.well-known/mcp.json— minimal discovery document.GET /api/health(also/) — service status.
Development
npm install
npm test # vitest
npm run typecheck # tsc --noEmit
npm run lint # eslint
npm run build # compile src → dist (the stdio bin)Set DEPIX_TEST_KEY=sk_test_… to run the real-sandbox e2e test
(test/e2e/sandbox.test.ts), otherwise it is skipped.
Release smoke test
After a preview/production deploy:
claude mcp add --transport http depix <url>/mcp --header "Authorization: Bearer sk_test_…"Ask Claude to run
get_account→ returns the merchant,is_live: false.create_checkout(sandbox) →simulate_checkout_payment→wait_for_checkout→completed.
Pushing to
maindeploys to production (mcp.depixapp.com). Validate on a Vercel preview deploy before merging. Preview hosts are not on the default DNS-rebinding allowlist — setMCP_ALLOWED_HOSTSin the preview environment (e.g.mcp.depixapp.com,depix-mcp-<hash>.vercel.app) to smoke-test there.
Maintenance
Resources
Unclaimed servers have limited discoverability.
Looking for Admin?
If you are the server author, to access and configure the admin panel.
Latest Blog Posts
- Your AI Chatbot Just Exposed Your CEO's Salary to an InternBy Om-Shree-0709 on .Agent IdentityMCP SecurityOAuth Delegation
- Why MCP Servers Need Execution Sandboxing (And Why Your Current Stack Isn't Enough)By Om-Shree-0709 on .Agentic AiPrompt InjectionWebAssembly
MCP directory API
We provide all the information about MCP servers via our MCP API.
curl -X GET 'https://glama.ai/api/mcp/v1/servers/depixapp/depix-mcp'
If you have feedback or need assistance with the MCP directory API, please join our Discord server