HAL (HTTP API Layer)

Transforms OpenAPI/Swagger specifications into dynamic HTTP tools with secret management and URL restrictions, enabling secure API integration through automatic tool generation from API documentation.

This MCP server provides HTTP API capabilities to Large Language Models through OpenAPI/Swagger integration, enabling dynamic tool generation from API specifications with comprehensive secrets management and URL restrictions. Built by Dean Ward using TypeScript with Zod validation, it offers standard HTTP methods (GET, POST, PUT, PATCH, DELETE, HEAD, OPTIONS) with secret substitution using {secrets.key} syntax, namespaced secrets with URL pattern restrictions for enhanced security, and automatic documentation search tools for API exploration. The implementation features intelligent secret loading from HAL_SECRET_ environment variables, URL validation against allowed patterns, OpenAPI spec parsing for automatic tool registration, and specialized presentation component support, making it valuable for integrating AI assistants with existing APIs, managing secure API credentials across multiple services, and building AI tools that need programmatic access to REST APIs without manual HTTP client configuration.