Delv
Official (Vendor)Active· 8d4.3by Buildkite

Buildkite MCP

Official Buildkite MCP for pipelines, builds, jobs, and tests with container-first deployment.

View repo
A
Safety & Trust

Delv Safety Grade: A

Score 83/100 · assessed 2026-04-28

Maintainer95
Permissions75
Supply chain65
Transparency85
Incidents100

Buildkite MCP is an official server from Buildkite, a well-established CI/CD platform trusted by engineering teams globally. The maintainer score is excellent given Buildkite's track record and professional operations. Permissions are reasonably scoped: read access to pipelines, builds, jobs, and test results, plus write access to trigger builds and modify pipeline YAML. This is broader than pure read-only but appropriate for CI/CD workflows. The container-first deployment via Docker is a genuine security positive, isolating the API token and simplifying updates. Supply chain score is moderate because there's no npm or PyPI package, just a Docker image, which reduces verifiability compared to standard registries. Transparency is strong with open source code and Buildkite's public documentation. No known security incidents. The API token requirement is standard for Buildkite integrations and properly documented.

Lethal Trifecta (prompt-injection exposure)

TRIFECTA RISK
All three axes present. This server can read private data, ingest attacker-controlled content, and send data outbound. A poisoned input (a GitHub issue, an email, a webpage) can exfiltrate secrets via this chain. Only install with auditing; avoid on shared or cloud agents.
Private dataYes
Reads secrets, credentials, private files
Untrusted inputYes
Ingests web pages, PRs, issues, emails
External commsYes
Can send data outbound

Same shape as CircleCI. Pipeline definitions read user-controlled YAML; agents run with privileged tokens.

Green flags

  • Official vendor implementation from Buildkite themselves
  • Container isolation protects API token from host filesystem exposure
  • Read-heavy design appropriate for CI/CD monitoring use cases
  • Open source repository enables community audit and contribution
  • Buildkite has strong enterprise security track record

Red flags

  • Write access to trigger builds could enable resource exhaustion attacks
  • Pipeline YAML editing allows arbitrary CI command injection if misused
  • Docker-only distribution limits supply chain verification vs npm/pypi
  • API token grants full account access within Buildkite permissions scope

Permissions requested

Outbound networkAccess secretsRepo readRepo write
Assessed by Delv Editorial using public metadata. Grades are advisory and update as the ecosystem changes. They do not replace your own review of permissions and code before granting an agent access to sensitive systems.

Install

docker run buildkite/buildkite-mcp-server
Env vars needed: BUILDKITE_API_TOKEN

Review

Buildkite MCP gives Claude direct access to your CI/CD pipelines, builds, jobs, and test results. It's an official server from Buildkite themselves, which means it tracks their API properly and won't break when they ship new features. You get read access to pipeline status, build logs, job output, and test analytics, plus write access to trigger builds and edit pipeline YAML. The container-first deployment is deliberate: Buildkite runs this in Docker by default, which keeps your API token isolated and makes it trivial to update. I'd reach for this when triaging flaky tests or investigating build failures. Ask Claude to pull the last ten failed builds for a specific pipeline, compare error messages, and suggest whether it's an infrastructure issue or a code problem. It's also useful for pipeline archaeology: 'Show me all builds that touched the auth service in the last week' beats clicking through the web UI. The test result queries are particularly good if you're running structured test reporters, because Claude can spot patterns across multiple builds. The Docker requirement is both a strength and a constraint. You're not installing Node dependencies or managing API client versions, but you do need Docker running locally. The config is minimal: point it at your Buildkite org, drop in an API token, and it works. No fiddling with scopes or webhook endpoints. The server exposes tools, not resources, which means Claude can't passively browse your build history but it can answer specific questions when you ask. Who shouldn't bother: teams not using Buildkite, obviously. Also skip it if you're just checking build status occasionally, because the web UI or Slack notifications are faster. This is for people who need to query build data programmatically or who spend time correlating test failures across branches. If you're debugging why the deploy pipeline failed at 3am, having Claude pull logs and compare them to the previous successful build is genuinely faster than manual trawling.
Verdict

Install this if you're already on Buildkite and you regularly investigate build failures or analyse test trends. The Docker deployment is clean, the API coverage is comprehensive, and it's maintained by the vendor. Skip it if you only check build status in passing or if your CI/CD is elsewhere.

Good at

  • Official vendor support means it tracks Buildkite API changes without lag.
  • Container deployment isolates credentials and simplifies updates.
  • Covers the full build lifecycle: pipelines, builds, jobs, and structured test results.
  • Write access lets you trigger builds and edit pipeline YAML from Claude.
  • Test analytics queries are particularly strong for spotting flaky tests across builds.

Watch out

  • Requires Docker running locally, which adds a dependency if you're not already using containers.
  • Tool-based interface means Claude can't passively browse build history without explicit queries.
  • Limited to Buildkite users, no cross-platform CI/CD support.
  • Manual config required for hosts beyond Claude Desktop, though the Docker approach is consistent.

Use cases

  • build orchestration
  • failure triage
  • pipeline edits
  • test result queries

Getting started

1. Generate a Buildkite API token with read:builds, write:builds, and read:pipelines scopes from your organisation settings. 2. Run the Docker container: `docker run -e BUILDKITE_API_TOKEN=your_token_here buildkite/buildkite-mcp-server`. Note the stdio transport details it prints. 3. Add the server to your Claude Desktop config using the Docker command as the stdio transport, ensuring the API token is passed as an environment variable. 4. Restart Claude Desktop and verify by asking 'List my Buildkite pipelines' or 'Show recent builds for [pipeline-name]'. 5. Watch out: the server needs your Buildkite organisation slug in some queries, so have that handy or let Claude infer it from pipeline URLs.

Works with

Claude DesktopClaude CodeCursor

Similar MCPs