Simplenote MCP Server

A lightweight MCP server that integrates Simplenote with Claude Desktop using the MCP Python SDK.

This allows Claude Desktop to interact with your Simplenote notes as a memory backend or content source.

What's New (Unreleased)

26 Tools — Full Bear Parity + Simplenote Differentiators + Claude Companion Tools

Two new irreversible-deletion tools with mandatory safety guards:

permanent_delete_note: Permanently destroy a single note; requires confirm=true; dry-run preview by default
empty_trash: Permanently delete all trashed notes; defaults to dry_run=true (preview); requires dry_run=false AND confirm=true
1178 tests passing, 77% coverage, zero linting/type errors

v1.15.0

publish_note: Publish a note to a public URL — unique to Simplenote MCP; returns public_url
unpublish_note: Remove a note from public access; no-op if already unpublished

See the CHANGELOG for complete details.

🔧 Features

📝 Full Note Management: Read, create, update, and delete Simplenote notes
🔍 Advanced Search: Boolean operators, phrase matching, tag and date filters
⚡ High Performance: In-memory caching with background synchronization
🔐 Secure Authentication: Token-based authentication via environment variables
🧩 MCP Compatible: Works with Claude Desktop and other MCP clients
🐳 Docker Ready: Full containerization with multi-stage builds and security hardening
📊 Monitoring: Optional HTTP endpoints for health, readiness, and metrics
🧪 Robust Testing: Comprehensive test suite with 1135+ tests and continuous integration
🔒 Security Hardened: Regular security scanning with Bandit, pip-audit, and dependency checks

🚀 Quick Start

Prerequisites

Simplenote account (create one at simplenote.com)
Python 3.10+ (for non-Docker installs) or Docker

Option 1: Docker (Recommended)

The fastest way to get started is using our pre-built Docker image:

# Pull and run the latest image
docker run -d \
  --name simplenote-mcp \
  -e SIMPLENOTE_EMAIL=your.email@example.com \
  -e SIMPLENOTE_PASSWORD=your-password \
  -p 8000:8000 \
  docdyhr/simplenote-mcp-server:latest

Docker Health Checks: The container includes built-in health monitoring endpoints:

Health: http://localhost:8000/health
Readiness: http://localhost:8000/ready
Metrics: http://localhost:8000/metrics (Prometheus format)

Or use Docker Compose:

# Clone the repository for docker-compose.yml
git clone https://github.com/docdyhr/simplenote-mcp-server.git
cd simplenote-mcp-server

# Set environment variables
export SIMPLENOTE_EMAIL=your.email@example.com
export SIMPLENOTE_PASSWORD=your-password

# Run with Docker Compose
docker-compose up -d

Option 2: Smithery (One-click install)

Install automatically via Smithery:

npx -y @smithery/cli install @docdyhr/simplenote-mcp-server --client claude

This method automatically configures Claude Desktop with the MCP server.

Option 3: Traditional Python Install

git clone https://github.com/docdyhr/simplenote-mcp-server.git
cd simplenote-mcp-server
pip install -e .
simplenote-mcp-server

🗂 Documentation Map & Archives

Start with docs/DOCUMENTATION_GUIDE.md for a curated tour of user, developer, and operations docs plus maintenance checklists.
Historical project summaries now live under docs/archive/2025/, keeping the repository root focused on active roadmaps and guides.
Need something fast? Run rg "<topic>" docs/ or jump to docs/index.md for the MkDocs-style table of contents.

🐳 Docker Deployment

Container Features

Multi-stage builds for optimized image size
Security hardening with non-root user and minimal attack surface
Health monitoring endpoints built-in
Resource limits and proper signal handling
Volume support for persistent data

Using Pre-built Images

The easiest way to use the server is with our pre-built Docker images:

# Pull the latest image
docker pull docdyhr/simplenote-mcp-server:latest

# Run with Docker
docker run -d \
  -e SIMPLENOTE_EMAIL=your.email@example.com \
  -e SIMPLENOTE_PASSWORD=your-password \
  -p 8000:8000 \
  docdyhr/simplenote-mcp-server:latest

# Or use Docker Compose
docker-compose up -d

Available tags:

latest - Latest stable release
v1.15.0 - Specific version
main - Latest development build

Production Deployment

# Build and run the production container
docker-compose up -d

# Or build manually
docker build -t simplenote-mcp-server .
docker run -d \
  -e SIMPLENOTE_EMAIL=your.email@example.com \
  -e SIMPLENOTE_PASSWORD=your-password \
  -p 8000:8000 \
  simplenote-mcp-server

Development with Docker

# Use the development compose file for live code mounting
docker-compose -f docker-compose.dev.yml up

Docker Features

Multi-stage build for optimized image size (346MB)
Multi-platform support: linux/amd64 and linux/arm64
Security hardening: Non-root user, read-only filesystem, no new privileges
Health checks and automatic restart policies
Resource limits: 1 CPU, 512MB memory
Logging: Persistent log volumes
Environment-based configuration
CI/CD Pipeline: Automated builds and publishing to Docker Hub
Security scanning: Trivy vulnerability scanning on all images
Container signing: Sigstore cosign signatures for supply chain security
Kubernetes ready: Production-grade Helm chart with security hardening
Automated updates: Dependabot for dependencies, auto-versioning workflows
Health monitoring: Continuous health checks and alerting
Enterprise notifications: Slack and email integration for CI/CD status

☸️ Kubernetes Deployment

Using Helm (Recommended)

Deploy to Kubernetes with our production-ready Helm chart:

# Install from local chart
helm install my-simplenote ./helm/simplenote-mcp-server \
  --set simplenote.email="your-email@example.com" \
  --set simplenote.password="your-password"

# Or with external secrets (recommended for production)
helm install my-simplenote ./helm/simplenote-mcp-server \
  --set externalSecrets.enabled=true \
  --set externalSecrets.secretStore.name="vault-backend"

Kubernetes Features

Security hardening: Non-root user, read-only filesystem, dropped capabilities
Resource management: CPU/memory limits and requests configured
Auto-scaling: Horizontal Pod Autoscaler support
Health checks: Liveness and readiness probes
External secrets: Integration with external secret management
Service mesh ready: Compatible with Istio and other service meshes

Production Configuration

# values.yaml for production
replicaCount: 3
autoscaling:
  enabled: true
  minReplicas: 2
  maxReplicas: 10
resources:
  limits:
    cpu: 1000m
    memory: 512Mi
  requests:
    cpu: 500m
    memory: 256Mi

⚙️ Configuration

Environment Variables

Variable	Required	Default	Description
`SIMPLENOTE_EMAIL`	Yes	-	Your Simplenote account email
`SIMPLENOTE_PASSWORD`	Yes	-	Your Simplenote account password
`SYNC_INTERVAL_SECONDS`	No	120	Cache synchronization interval
`LOG_LEVEL`	No	INFO	Logging level (DEBUG, INFO, WARNING, ERROR)

Claude Desktop Integration

Add to your claude_desktop_config.json:

{
  "mcpServers": {
    "simplenote": {
      "description": "Access and manage your Simplenote notes",
      "command": "simplenote-mcp-server",
      "env": {
        "SIMPLENOTE_EMAIL": "your.email@example.com",
        "SIMPLENOTE_PASSWORD": "your-password"
      }
    }
  }
}

🔍 Advanced Search

Powerful search with boolean logic and filters:

# Boolean operators
project AND meeting AND NOT cancelled

# Phrase matching
"action items" AND project

# Tag filtering
meeting tag:work tag:important

# Date ranges
project from:2023-01-01 to:2023-12-31

# Combined query
"status update" AND project tag:work from:2023-01-01 NOT cancelled

🛠️ Available Tools

Tool	Description	Parameters
`create_note`	Create a new note	`content`, `tags` (optional)
`update_note`	Replace full note content (destructive)	`note_id`, `content`, `tags` (optional)
`delete_note`	Soft-delete: move note to Trash	`note_id`
`restore_note`	Untrash a note — move it back from Trash	`note_id`
`permanent_delete_note`	Irreversibly destroy a single note (requires `confirm=true`)	`note_id`, `confirm`
`empty_trash`	Permanently delete all trashed notes (dry-run by default)	`dry_run` (default `true`), `confirm` (default `false`)
`get_note`	Get a note by ID with full content and metadata	`note_id`
`add_text`	Append or prepend text without overwriting	`note_id`, `text`, `position` (`"end"` \| `"beginning"`)
`search_notes`	Full-text search with filters and pagination	`query`, `limit`, `offset`, `tags`, `from_date`, `to_date`, `created_after`, `modified_after`, `pinned`, `fuzzy`, `sort_by`
`add_tags`	Add tags to a note	`note_id`, `tags`
`remove_tags`	Remove specific tags from a note	`note_id`, `tags`
`replace_tags`	Replace all tags on a note	`note_id`, `tags`
`list_tags`	List all tags with note counts	`sort_by` (`"alpha"` \| `"count"`)
`rename_tag`	Rename a tag across all notes atomically	`old_tag`, `new_tag`, `dry_run` (optional)
`get_note_versions`	List version history for a note	`note_id`
`restore_version`	Roll back a note to a previous version	`note_id`, `version_number`
`get_or_create_note`	Atomic find-or-create by title	`title`, `tags` (optional), `default_content` (optional)
`append_to_daily_note`	Append a timestamped entry to today's note	`text`, `tags` (optional)
`replace_section`	Replace one Markdown section without touching others	`note_id`, `header`, `content`
`find_untagged_notes`	Find notes with no tags	`limit` (optional)
`bulk_tag`	Apply tags to multiple notes in one call	`note_ids`, `tags`
`export_notes`	Export notes to Markdown or JSON	`format`, `tags` (optional), `query` (optional)
`find_and_merge_duplicates`	Detect and merge duplicate notes	`dry_run` (optional), `similarity_threshold` (optional)
`get_server_info`	Server version, author, and runtime debug info	(no parameters)

📊 Performance & Caching

In-memory caching with background synchronization
Pagination support for large note collections
Indexed lookups for tags and content
Query result caching for repeated searches
Optimized API usage with minimal Simplenote calls

🎯 Recent Improvements

✅ January 2025 - Performance & Code Quality

Critical Bug Fix:

Fixed Claude Desktop timeout - Reduced startup time from 55+ seconds to < 1 second (98% improvement)
Implemented thread pool execution for blocking Simplenote API calls
Made cache initialization truly non-blocking with background loading
Resolved anyio.BrokenResourceError during shutdown

Code Refactoring - Phase 1 Complete:

Cache module complexity reduced: 5 high-complexity functions (CC >= 15) → 0 (100% reduction)
Maintainability improved: Cache MI from 12.7 → 16.2 (+28%)
Extracted 23 helper methods for better code organization
All 670 tests passing with 67% cache coverage maintained
See REFACTORING_PHASE1_COMPLETE.md for details

Documentation Enhancements:

Added comprehensive CHANGELOG.md with complete version history
Created TESTING_CLAUDE_DESKTOP.md for user testing guide
Added code complexity analysis tools (check_complexity.py)
Documented refactoring plan and completion reports

Quality Tools:

Integrated Radon for automated complexity analysis
Baseline metrics: 22 functions CC >= 15 (down from 28)
Average Maintainability Index: 57.9 (maintained)
Zero diagnostics errors, all quality gates passing

✅ September 2025 - Quality & Reliability Enhancements

✅ Quality & Reliability Enhancements

Test Suite Stabilization:

Fixed test isolation issues that caused intermittent failures
Improved test cleanup with proper timeout handling
Enhanced fixture management for better test reliability
Achieved consistent test results across individual and suite runs

CI/CD Pipeline Optimization:

Consolidated 28 workflows down to 16 active workflows
Implemented unified monitoring workflow combining security, health, and badge checks
Improved test coverage reporting with realistic 15.6% baseline
Enhanced Docker build validation and security scanning

Code Quality Improvements:

All linting (Ruff), formatting, and type checking (MyPy) now pass consistently
Zero high-severity security vulnerabilities (verified with Bandit, pip-audit, safety)
Standardized code formatting and pre-commit hooks configuration
Enhanced error handling and user-facing error messages

🔧 Developer Experience

Improved Testing:

724 comprehensive tests covering core functionality
Function-scoped fixtures for better test isolation
Realistic coverage baseline established (15.6%)
Streamlined test execution with proper cleanup

Enhanced Documentation:

Updated deployment guides with current Docker setup
Improved health monitoring endpoint documentation
Added troubleshooting guides for common issues
Current status and roadmap documentation

Container Improvements:

Multi-stage Docker builds for optimized image size
Built-in health monitoring endpoints (/health, /ready, /metrics)
Enhanced security hardening with non-root user
Improved signal handling and graceful shutdown

🧪 Testing & Evaluation

MCP Evaluations ✅

Status: ✅ WORKING - Complete mcp-evals integration with TypeScript wrapper!

This project includes comprehensive evaluations using mcp-evals to ensure reliability and performance:

# Setup evaluation environment
npm install
npm run validate:evals

# Run evaluation suites
npm run eval:smoke          # Quick smoke tests (2-3 minutes) ✅ VERIFIED
npm run eval:basic          # Standard evaluations (5-10 minutes)
npm run eval:comprehensive  # Full evaluation suite (15-30 minutes)

Latest Test Results: 4/5 tests passing excellently (avg 4.1/5):

Server Startup: 4.6/5 ⭐ (Excellent)
Authentication: 4.0/5 ⭐ (Good)
Note Operations: 3.8/5 ⭐ (Good)
Search: 5.0/5 ⭐ (Perfect)
Error Handling: 1.4/5 ⚠️ (Needs improvement)

Evaluation Types

Smoke Tests: Basic functionality validation
CRUD Operations: Note creation, reading, updating, deletion
Search & Filtering: Boolean search, tag filtering, date ranges
Error Handling: Authentication, network issues, edge cases
Performance: Large datasets, concurrent operations
Security: Input validation, authentication enforcement

Automated Testing

Evaluations run automatically on:

Pull Requests: Smoke + basic tests
Releases: Comprehensive evaluation suite
Manual Trigger: Full test matrix with detailed reporting

The evaluations use OpenAI's GPT models to assess:

Accuracy: Correctness of responses
Completeness: Thoroughness of results
Relevance: Response appropriateness
Clarity: Response readability
Performance: Operation efficiency

📁 See evals/README.md for detailed evaluation documentation.

Traditional Testing

# Python unit tests
pytest

# Code quality checks
ruff check .
mypy simplenote_mcp

🛡️ Security

Token-based authentication via environment variables
No hardcoded credentials in Docker images
Security-hardened containers with non-root users
Read-only filesystem in production containers
Resource limits to prevent abuse

🚨 Troubleshooting

Common Issues

Authentication Problems:

Verify SIMPLENOTE_EMAIL and SIMPLENOTE_PASSWORD are set correctly
Check for typos in credentials

Docker Issues:

# Check container logs
docker-compose logs

# Restart services
docker-compose restart

# Rebuild if needed
docker-compose up --build

Claude Desktop Connection:

# Verify tools are available
./simplenote_mcp/scripts/verify_tools.sh

# Monitor logs
./simplenote_mcp/scripts/watch_logs.sh

Diagnostic Commands

# Test connectivity
python simplenote_mcp/tests/test_mcp_client.py

# Check server status
./simplenote_mcp/scripts/check_server_pid.sh

# Clean up and restart
./simplenote_mcp/scripts/cleanup_servers.sh

📚 Development

Quick Setup with mcp-evals

# One-command setup including evaluations
./setup-dev-env-with-evals.sh

# Or manual setup
git clone https://github.com/docdyhr/simplenote-mcp-server.git
cd simplenote-mcp-server
pip install -e ".[dev,test]"
npm install  # For mcp-evals

Local Development

# Run the server
python simplenote_mcp_server.py

# Run Python tests
pytest

# Run mcp-evals
npm run eval:smoke    # Quick validation
npm run eval:basic    # Standard tests
npm run eval:all      # Full test suite

# Code quality
ruff check .
ruff format .
mypy simplenote_mcp

Development Environment

The setup script creates:

Python development environment with all dependencies
Node.js environment for mcp-evals
Example configuration files
Pre-commit hooks
Validation for all evaluation files

Testing Strategy

Unit Tests: Traditional Python pytest for core logic
Integration Tests: MCP protocol compliance testing
Smoke Tests: Quick validation of basic functionality
Evaluation Tests: LLM-based assessment of real-world usage
Performance Tests: Load and stress testing

Running MCP Evaluations

Docker Method (Recommended)

Due to potential permission issues with tsx, we recommend running MCP evaluations in Docker:

# Run smoke tests
./scripts/run-evals-docker.sh smoke

# Run basic evaluations
./scripts/run-evals-docker.sh basic

# Run comprehensive evaluations
./scripts/run-evals-docker.sh comprehensive

# Run all evaluations
./scripts/run-evals-docker.sh all

Direct Method (if permissions allow)

npm run eval:smoke
npm run eval:basic
npm run eval:comprehensive
npm run eval:all

Docker Development

# Development with live code reload
docker-compose -f docker-compose.dev.yml up

# Build and test
docker build -t simplenote-mcp-server:test .
docker run --rm simplenote-mcp-server:test --help

🤝 Contributing

Contributions are welcome! Please read CONTRIBUTING.md for guidelines.

📄 License

This project is licensed under the MIT License - see the LICENSE file for details.

🔗 Related Projects

⭐ Support the Project

If you find this project helpful, please consider giving it a star on GitHub! Your support helps:

🚀 Increase visibility for other developers who might benefit from this tool
💪 Motivate continued development and maintenance
📈 Build community around the Model Context Protocol ecosystem
🛡️ Validate trust through community engagement

⭐ Star this repository — it takes just one click and means a lot!

Version	Changes	Urgency	Date
v1.16.1	### Fixed - Three Claude Desktop deployment errors resolved: `psutil.cpu_percent()` called with renamed keyword argument (`interval` → positional), security alerter writing to a relative path that fails under read-only CWD (`/`), and opaque `TypeError` when Simplenote auth token is `None` (now raises a clear `AuthenticationError`) - Silent note eviction during server start-up: `cache.initialize()` now calls `_evict_if_needed()` after loading all notes, preventing data loss when note cou	High	5/11/2026
v1.16.0	### Added - `permanent_delete_note` tool: irreversibly destroy a single note; requires `confirm=true` to execute; returns a dry-run description when `confirm=false` (default) — operation cannot be undone - `empty_trash` tool: permanently delete all trashed notes in one operation; defaults to `dry_run=true` (lists trashed notes without deleting); requires `dry_run=false` AND `confirm=true` to execute — operation cannot be undone ### Fixed - `list_tags` returning empty results after startup: `_p	High	4/30/2026
v1.15.0	### Added - `publish_note` tool: publish a note to a public URL by setting the `published` system tag via `update_note`; returns `public_url`; idempotent if already published - `unpublish_note` tool: remove a note from public access by clearing the `published` system tag; no-op if not published ### Fixed - Broken `DOCKER_README.md` symlink replaced with real file (symlink target was deleted in doc cleanup, breaking the Docker Hub description CI step)	High	4/14/2026
v1.14.0	### Added - `get_server_info` tool: returns server name, version, author, registered tool count, and a debug block (Python version, platform, cache status, sync interval, log level, offline mode) ### Fixed - `log_monitor._process_log_file`: eliminated unawaited coroutine RuntimeWarning on Python 3.13+ by replacing `run_coroutine_threadsafe` with `loop.run_until_complete()` in background thread context ### Changed - Python runtime upgraded to 3.13.13 (pyenv); CI `PYTHON_VERSION` updated to mat	Medium	4/13/2026
v1.12.1	### Fixed - Replace deprecated `asyncio.get_event_loop()` with `asyncio.get_running_loop()` across `cache.py`, `security.py`, `middleware.py`, `memory_monitor.py`, `log_monitor.py`, and `server.py` — eliminates `DeprecationWarning` on Python 3.10+ - Fix memory leak in `SecurityValidator`: `failed_validation_attempts` buckets now capped at 500 entries per event type, preventing unbounded growth in long-running servers - Fix order-dependent test flake in `test_log_monitoring.py` via `reset_	High	4/8/2026
v1.12.0	## What's New ### Search Improvements - `sort_by` / `sort_direction` parameters on `search_notes` — Claude can now reliably find the most recently updated note on any topic (`sort_by='modifydate'`, `sort_direction='desc'`, `limit=1`) - Inverted word index — non-fuzzy searches pre-filter candidates before scanning, reducing O(n) linear scan to O(candidates) for most queries - Smart query cache invalidation — only cache entries containing a changed note are evicted on sync/update/dele	Medium	4/3/2026
v1.10.1	## 🔧 Patch Release: Security Fixes and Code Quality Improvements This patch release resolves all CodeQL security alerts and improves code quality through cyclic import fixes. ### Security - Resolved all CodeQL code scanning alerts (0 open alerts) - Fixed `py/cyclic-import` issues between error handling modules - Fixed `py/repeated-import` patterns across test files - Fixed `py/empty-except` patterns with proper documentation - Fixed `py/unnecessary-pass` and `py/unused-local-varia	Low	1/26/2026
v1.10.0	# Release v1.10.0: Security Release with Critical Vulnerability Fixes ## 🔒 Security Highlights This release addresses a critical security vulnerability in urllib3 (CVE-2026-21441) and includes comprehensive maintenance updates from the past two months. ### Critical Security Fix - Fixed CVE-2026-21441 in urllib3 dependency (2.6.2 → 2.6.3) - Addresses decompression bomb vulnerability in streaming API - Prevents excessive resource consumption from malicious servers - **No known vu	Low	1/8/2026
v1.8.0	# Changes in 1.8.0%0AReleased on 2025-08-26%0A%0A## ✨ Features%0A%0A- Complete Phase 3 Observability & Release Engineering for v1.7.0 ([93fdb33c](../../commit/93fdb33c06c7b544c382da71bf3e231e195d17c2))	Low	8/26/2025
v1.7.0	# Changes in version 1.7.0%0A%0A## Features%0A- fix: Add core dependencies to quick validation workflow%0A- feat: Implement comprehensive CI/CD pipeline improvements%0A- feat: Modernize test suite to align with current server architecture (#54)%0A- feat: Add reusable GitHub Actions for pipeline optimization%0A- feat: Improve CI pipeline resilience and test suite handling%0A- test: Add workflow trigger test file%0A- feat: Implement comprehensive CI/CD pipeline improvements%0A- docs: add comprehen	Low	8/26/2025