medium-ops
Medium CLI + 23-tool MCP server. Hybrid official API + dashboard GraphQL. Your IDE drafts the responses — no AI API keys.
README
medium-ops
<!-- mcp-name: io.github.06ketan/medium-ops -->
Standalone Medium CLI + 22-tool MCP server. Your IDE drafts the replies. Zero AI API keys.
Stories, responses, claps, feed, profiles, stats, reply engine, MCP server. One Python install, one binary, MIT licensed. Sibling of substack-ops.
TL;DR — MCP-native (no API key, one command)
uvx medium-ops mcp install cursor # or claude-desktop, claude-code, print
# Restart your host. Then in chat:
# "list unanswered responses on post abc123def456"
# "draft a warm reply to response r1"
# "post that draft"
Your host's LLM (Cursor's, Claude's) does the drafting via the
propose_reply / confirm_reply tools. No ANTHROPIC_API_KEY /
OPENAI_API_KEY needed.
Why a hybrid
Medium exposes three usable surfaces and we use all of them:
- Public RSS (reads, no auth).
medium.com/feed/@{user}returns the author's ~10 most recent stories withbody_html,pubDate,tags, hero image, anddc:creator. Zero credentials, faster than GraphQL, stable. Used by default forlist_posts/get_post/get_post_content. Inspired by Portfolio_V2's blog page. - Dashboard GraphQL (authenticated reads).
medium.com/_/graphql+medium.com/_/api/*with thesidcookie. Used as a fallback when you ask for more than ~10 posts, when the post isn't in the RSS window, or for things RSS can't give you (responses, claps, feed, stats, search). - Official REST (writes).
api.medium.com/v1/*with an Integration Token. SupportscreatePost,createPostInPublication,getUser,getPublications. That's it.
Force a specific transport with --source rss|graphql|auto on posts list,
posts show, and posts content. The dashboard + GraphQL endpoints are
undocumented and Medium can change them at any time. See
Known gaps.
Setup (dev / from source)
git clone https://github.com/06ketan/medium-ops && cd medium-ops
uv sync
uv sync --extra mcp # mcp SDK for the MCP server (recommended)
uv sync --extra tui # textual for the TUI
Auth is read from ~/.cursor/mcp.json's mcpServers.medium-ops.env (or
medium-api / medium). Override with env or .env.
uv run medium-ops auth verify
uv run medium-ops quickstart
Command surface
Every write defaults to --dry-run. Flip with --no-dry-run. All writes
land in .cache/audit.jsonl and are dedup-checked against
.cache/actions.db.
Auth (3)
| Command | What it does |
|---|---|
auth verify |
Probe both integration token (/me) and sid cookie (GraphQL Viewer). |
auth test |
Same but exits non-zero on failure (CI-friendly). |
auth setup |
Interactive: paste token / sid / uid / username to .env. |
Read — Stories (5)
| Command | What it does |
|---|---|
posts list [--user] [--limit] |
Latest stories by a user (default: self). |
posts show <id_or_url> |
Story metadata (title, clap count, response count). |
posts content <id> [--md] |
Body HTML (or Markdown with --md). |
posts search <query> [--limit] |
Medium-side full-text search. |
| `posts publish -t "..." -f body.md [--pub] [--status draft | public |
Read + Write — Responses (3)
| Command | What it does |
|---|---|
responses list <post_id> [--limit] |
Top-level responses table. |
responses tree <post_id> [--out file.json] |
Full response + reply tree JSON. |
responses add <post_id> "body" [--parent <r_id>] [--no-dry-run] |
Post a response or reply. |
Read + Write — Claps (2)
| Command | What it does |
|---|---|
claps count <post_id> |
Total claps. |
claps give <post_id> [--claps N] [--no-dry-run] |
Clap 1-50 times. Dedup-protected. |
Read — Discovery + Profile (5)
| Command | What it does |
|---|---|
feed list [--tab home|following|tag-{slug}] [--limit] |
Reader feed. |
profile me |
Your full profile (GraphQL). |
profile get <username> |
Any user's public profile. |
profile stats [--days N] |
Per-post views / reads / fans (dashboard scrape). |
profile publications |
Publications you can publish to (integration token). |
Reply engine (3)
| Command | What it does |
|---|---|
reply template <post_id> --template thanks |
Rule-based replies (no LLM). |
reply bulk <post_id> --out drafts.json |
Draft every response to a file. |
reply bulk-send drafts.json [--no-dry-run] |
Post only action=approved rows. Dedup-checked. |
Operations + safety (2)
| Command | What it does |
|---|---|
audit search [--kind] [--target] [--status] [--since 7d] |
Query the JSONL audit log. |
audit dedup-status |
Counts in the dedup SQLite DB. |
MCP server (3)
| Command | What it does |
|---|---|
mcp install <cursor|claude-desktop|claude-code|print> [--dry-run] |
Auto-merge config into your host. |
mcp serve |
stdio MCP server (22 tools). |
mcp list-tools |
Print the tool registry. |
Other (1)
| Command | What it does |
|---|---|
quickstart |
Print a quickstart checklist. |
Reply modes
| Mode | What it does | Safety |
|---|---|---|
template |
YAML keyword rules under src/medium_ops/templates/*.yaml |
dry-run default |
bulk |
LLM drafts every response to drafts.json. Edit, set action: "approved" |
offline review, dedup-checked on send |
bulk-send |
Posts only items with action: "approved" |
dry-run default; dedup DB prevents dup replies |
MCP propose_reply → confirm_reply |
Host LLM drafts, you approve per-item, token-gated | 5-min token TTL, idempotent, no API key |
MCP server
medium-ops mcp install cursor # auto-add to ~/.cursor/mcp.json
medium-ops mcp install claude-desktop # auto-add to claude_desktop_config.json
medium-ops mcp install claude-code # uses `claude mcp add`
medium-ops mcp install print # print the snippet only
medium-ops mcp serve # stdio server
medium-ops mcp list-tools # 22 tools
Manual config snippet:
{
"mcpServers": {
"medium-ops": {
"command": "medium-ops",
"args": ["mcp", "serve"]
}
}
}
If the mcp SDK is not installed, the server falls back to a minimal
stdin/stdout JSON-line dispatcher:
echo '{"tool":"list_posts","args":{"limit":3}}' | medium-ops mcp serve
MCP-native draft loop (no API key)
The safety + drafting stack that makes the unattended mode safe:
| Tool | What it does |
|---|---|
get_unanswered_responses |
Worklist — responses where you haven't replied. |
propose_reply |
Dry-run only. Returns a token + payload preview. |
confirm_reply |
Posts the staged reply by token. Idempotent via dedup DB. Token TTL 5 min. |
bulk_draft_replies / send_approved_drafts |
File-based offline review loop. |
audit_search / dedup_status |
Read the audit log + dedup counts. |
LLM strategy
Two layers, both free:
- MCP-native (default). Host LLM drafts via
propose_reply/confirm_reply. No env vars, no API key. Use this for interactive replies. - Subprocess CLI (daemon path). For
reply bulkwhen no human is in the loop. Auto-detectsclaude(Claude Code),cursor-agent, orcodexon PATH. Override withMEDIUM_OPS_LLM_CMD.
There is no paid-API-key path.
Auth setup
Medium has two auth layers that map to different feature surfaces:
- Integration Token —
Authorization: Bearer <token>. Used againstapi.medium.com/v1/*. Gets you:publish_post,list_own_publications. Token generation at https://medium.com/me/settings → "Integration tokens". Note: Medium stopped issuing new tokens in 2023. If you never generated one, the write path will 401 and you'll have to use the sid-cookie response path for any writes. - sid cookie — from
medium.com(Application → Cookies →sid). Used againstmedium.com/_/graphqlandmedium.com/_/api/*. Gets you: all reads (stories, responses, claps, feed, stats, profile), plusclap_postandpost_response(fragile — undocumented).
medium-ops auth verify
medium-ops auth test
medium-ops auth setup
medium-ops auth har ./medium.har # ingest a Chrome devtools HAR export
Refreshing auth from a HAR
When cookies rotate or Medium changes a GraphQL schema, the fastest fix is:
- Open
medium.comin Chrome with devtools → Network panel. - Reproduce the failing action (publish a draft, post a response, etc.).
- Right-click any request → "Save all as HAR with content".
medium-ops auth har ./medium.har
This:
- merges fresh
sid,uid,xsrf,cf_clearancecookies into.env(preserving everything else) - writes a redacted snapshot to
.cache/har-snapshot.jsonlisting every Medium GraphQL operation observed plus its request-variable / response-data key shapes — useful for diffing against the queries hard-coded inclient.pyto spot schema drift before users hit it.
Env vars (or ~/.cursor/mcp.json → mcpServers.medium-ops.env):
MEDIUM_INTEGRATION_TOKEN=2fb00... # optional, for writes
MEDIUM_SID=1:... # optional, for reads
MEDIUM_UID=... # optional
MEDIUM_USERNAME=yourhandle # optional but recommended
Architecture
mcp.json | env → auth.py
│
MediumConfig (token? sid? uid? username?)
│
MediumClient (httpx)
┌───────┼──────────┐
▼ ▼ ▼
api.medium.com medium.com/ medium.com/_/
/v1/* (REST) _/graphql api/* (dashboard)
│ │ │
Bearer token sid cookie sid cookie
│
┌──────┬──────┬────────────┬──────┬────────┬──────────┐
▼ ▼ ▼ ▼ ▼ ▼ ▼
posts responses claps profile stats feed reply_engine
│
┌───────────────────┼───────────────┐
▼ ▼ ▼
template ai_bulk MCP propose/confirm
└───────────────────┬───────────────┘
▼
base.post_response
│
┌─────────┼─────────┐
▼ ▼ ▼
dedup audit dry_run
(SQLite) (jsonl)
mcp/server.py ──── 22 tools ─── all share MediumClient
Endpoints used
| Action | Method + URL |
|---|---|
| Auth: integration token | GET https://api.medium.com/v1/me |
| Auth: sid cookie | POST https://medium.com/_/graphql (Viewer) |
| User profile | POST /_/graphql (UserProfileQuery) |
| List stories | POST /_/graphql (UserStreamOverview) |
| Story metadata | POST /_/graphql (PostViewer) |
| Story body | POST /_/graphql (PostContent) |
| Story search | POST /_/graphql (SearchPosts) |
| Responses | POST /_/graphql (PostResponses) |
| Feed | POST /_/graphql (HomeFeed / FollowingFeed / TagFeed) |
| Publish story | POST https://api.medium.com/v1/users/{id}/posts |
| Publish to pub | POST https://api.medium.com/v1/publications/{pub_id}/posts |
| Own pubs | GET https://api.medium.com/v1/users/{id}/publications |
| Clap | POST https://medium.com/_/api/posts/{id}/clap (undocumented) |
| Post response | POST https://medium.com/_/api/posts (undocumented) |
| Stats | GET https://medium.com/@{username}/stats?count=... (undocumented) |
Tests
uv run pytest -q
Coverage: auth loading, client transports + XSSI stripping, dedup DB, audit log search, MCP tool registry + dispatcher, MCP install host-config merging, propose/confirm flow + token expiry, reply-engine template matching + dedup+audit flow, subprocess LLM detection.
Known gaps
- Medium stopped issuing new Integration Tokens in 2023. If you never
got one,
publish_post/list_own_publicationswill 401. The read + response + clap paths still work via sid. The RSS read path needs no credentials at all. - RSS is capped at ~10 posts and lacks clap/response counts and stats.
When you need more, pass
--source graphql(requires sid) or set--limit > 10and the client will auto-fall back to GraphQL. - GraphQL operation names and schemas change silently. The queries in
client.pymirror what the dashboard uses today — expect breakage every couple of months. Pin this package's version. post_responseuses GraphQLsavePostResponse(deltas: [Delta!]!, inResponseToPostId: ID!). Delta shape is{type: 1, index: N, paragraph: {type: 1, text, markups: []}}(type=1 means insert; paragraph.type=1 is P). Reverse-engineered from error messages.update_draft_contentuses dashboardPOST /p/{id}/deltaswith{baseRev, rev, deltas}. For a brand-new draft,baseRev=-1, rev=0. Subsequent edits should bump both.clap_poststill uses the undocumented/_/api/posts/{id}/clapshape; not yet re-validated against the new GraphQL surface. Dry-run first.- Members-only stories return a paywall preview unless the
sidbelongs to a paying member. - No "restack" equivalent. Medium doesn't have reshares; the closest is
a clap + a response. Use
clap_post+post_responsetogether for that. - No notes / short-form. Medium killed short-form in 2018.
- Chrome cookie auto-grab (the
auth_chromeflow from substack-ops) is not yet implemented. Paste yoursidinto.envfor now. - TUI not yet implemented; the extras pin is there for future work.
License
MIT. See LICENSE.
推荐服务器
Baidu Map
百度地图核心API现已全面兼容MCP协议,是国内首家兼容MCP协议的地图服务商。
Playwright MCP Server
一个模型上下文协议服务器,它使大型语言模型能够通过结构化的可访问性快照与网页进行交互,而无需视觉模型或屏幕截图。
Magic Component Platform (MCP)
一个由人工智能驱动的工具,可以从自然语言描述生成现代化的用户界面组件,并与流行的集成开发环境(IDE)集成,从而简化用户界面开发流程。
Audiense Insights MCP Server
通过模型上下文协议启用与 Audiense Insights 账户的交互,从而促进营销洞察和受众数据的提取和分析,包括人口统计信息、行为和影响者互动。
VeyraX
一个单一的 MCP 工具,连接你所有喜爱的工具:Gmail、日历以及其他 40 多个工具。
graphlit-mcp-server
模型上下文协议 (MCP) 服务器实现了 MCP 客户端与 Graphlit 服务之间的集成。 除了网络爬取之外,还可以将任何内容(从 Slack 到 Gmail 再到播客订阅源)导入到 Graphlit 项目中,然后从 MCP 客户端检索相关内容。
Kagi MCP Server
一个 MCP 服务器,集成了 Kagi 搜索功能和 Claude AI,使 Claude 能够在回答需要最新信息的问题时执行实时网络搜索。
e2b-mcp-server
使用 MCP 通过 e2b 运行代码。
Neon MCP Server
用于与 Neon 管理 API 和数据库交互的 MCP 服务器
Exa MCP Server
模型上下文协议(MCP)服务器允许像 Claude 这样的 AI 助手使用 Exa AI 搜索 API 进行网络搜索。这种设置允许 AI 模型以安全和受控的方式获取实时的网络信息。