Nequi

v0.2.0-alpha.1API Keyalpha

Colombian digital wallet by Bancolombia: push payments, QR codes, and P2P transfers. Your agent moves COP instantly via Nequi.

16 tools3 env vars🇨🇴 Colombiaalpha — pending validation

Install

terminal

$ npm install @codespar/mcp-nequi@alpha

Quickstart

Add this entry to your claude_desktop_config.json (or any MCP-compatible client config).

claude_desktop_config.json

{
  "mcpServers": {
    "nequi": {
      "command": "npx",
      "args": [
        "-y",
        "@codespar/mcp-nequi@alpha"
      ],
      "env": {
        "NEQUI_API_KEY": "<your_nequi_api_key>",
        "NEQUI_CLIENT_ID": "<your_nequi_client_id>",
        "NEQUI_CLIENT_SECRET": "<your_nequi_client_secret>"
      }
    }
  }
}

After restart, your agent can call any of the 16 tools below — try create_push_payment first.

Environment variables · 3

Required to authenticate the server. Stored encrypted when using CodeSpar managed hosting.

NEQUI_API_KEY

requiredsecret

API key for Nequi

NEQUI_CLIENT_ID

required

OAuth2 client ID

NEQUI_CLIENT_SECRET

requiredsecret

OAuth2 client secret

Available tools · 16

Each tool is independent — your agent loads only what it needs to reduce context and response time.

WRITEcreate_push_payment

Send a push payment notification to a Nequi user

WRITEget_payment_status

Check the status of a payment

WRITEcreate_qr_payment

Generate a QR code for payment

DELETEreverse_payment

Reverse a completed payment

READget_subscription

Get subscription details for a phone number

DELETEunsubscribe

Cancel a subscription

WRITEcreate_static_qr

Generate a static (reusable) Nequi QR code for a merchant

DELETEreverse_transaction

Reverse any Nequi transaction by transaction ID (refund flow)

Compatible frameworks

MCP is a protocol — any framework that speaks it can mount this server.

Claude Agent SDKAnthropic

OpenAI AgentsOpenAI

Vercel AI SDKVercel

LangChainLangChain

LlamaIndexLlamaIndex

CrewAICrewAI

MastraMastra

Any MCP clientProtocol

Frequently asked questions

All credentials are encrypted at rest in an isolated vault scoped per organization. OAuth2 tokens are automatically refreshed before expiry. Your agent code never sees raw secrets — it receives scoped, short-lived session tokens.