nextcrm-app
NextCRM is an open-source, MIT-licensed CRM platform built with Next.js 16 and React 19, featuring modules for contacts, accounts, opportunities, invoicing, projects, and document management. It includes AI-powered enrichment via E2B sandboxed agents, vector search, an MCP server for agent integration, and activity tracking with audit logs.
Key facts
Objective fields from the source. Values we can't verify are shown as “Unknown” rather than guessed.
| Field | Value |
|---|---|
| Repository | pdovhomilja/nextcrm-app |
| Owner | pdovhomilja |
| Primary language | TypeScript |
| License | MIT — OSI-approved |
| Stars | 646 |
| Forks | 234 |
| Open issues | 12 |
| Latest release | v0.12.3 (2026-06-13) |
| Last updated | 2026-06-21 |
| Source | https://github.com/pdovhomilja/nextcrm-app |
What nextcrm-app is
Full-stack TypeScript application using Next.js 16, React 19, PostgreSQL with Prisma 7 ORM, shadcn/ui components, and Tailwind CSS. Integrates OpenAI APIs, E2B sandboxed execution, Inngest for background jobs, Resend for email, and pgvector for semantic search. Server actions handle mutations with Zod validation; MCP server exposes 127 tools across 15 modules via HTTP and SSE transports.
Get the nextcrm-app source
Clone the repository and explore it locally.
git clone https://github.com/pdovhomilja/nextcrm-app.gitcd nextcrm-app# follow the project's README for install & configurationNeed it deployed, integrated, or customized instead? DEV.co ships production installs.
Best use cases
Implementation considerations
- PostgreSQL database setup and Prisma migrations must be run; environment variables for OpenAI, E2B, Inngest, and Resend keys required (but app includes 3-tier admin/user key management to defer initial setup).
- E2B sandbox execution incurs per-target costs and 5-minute timeouts; plan budget and alert strategy for enrichment features if used at scale.
- MCP server requires generating Bearer tokens; client configuration depends on your AI agent platform (Claude, Cursor, or custom HTTP client).
- No built-in multi-tenancy or role-based access control (RBAC) documented; single-tenant or custom RBAC extension required for team isolation.
- Audit log and soft-delete strategy means deleted records persist in database; archival and retention policies must be manually implemented.
When to avoid it — and what to weigh
- Enterprise-scale high-availability requirements — Project is at v0.12.3 (pre-v1.0) with active development but no production SLA guarantees, disaster recovery documentation, or multi-region HA setup guidance provided.
- Offline-first or lightweight deployments — Requires PostgreSQL, Node.js runtime, and external services (OpenAI, E2B, Inngest, Resend) to unlock key features; not suitable for air-gapped or minimal environments.
- Compliance-heavy regulated sectors without audit — While audit logs are present, no HIPAA, SOC 2, GDPR, or compliance certification is documented; requires custom security review before handling sensitive regulated data.
- Minimal customization tolerance — Mono-repo codebase with tightly integrated AI/MCP features; significant forking and maintenance burden if you need to disable or heavily modify core modules.
License & commercial use
MIT License (permissive OSI-approved license). Allows use, modification, and redistribution for any purpose (commercial, proprietary) with attribution. No copyleft restrictions; you may create closed-source derivatives.
MIT license permits commercial use without restriction. You may deploy NextCRM as a SaaS, embed it in a proprietary product, or modify and resell it. No license fee or commercial use clause. However, you assume all liability; no vendor indemnity or commercial support SLA is stated or implied by the license alone. Recommend legal review if bundling as part of a critical business offering.
DEV.co evaluation signals
Editorial assessment — not user reviews. Directional, with an explicit confidence level.
| Signal | Assessment |
|---|---|
| Maintenance | Active |
| Documentation | Adequate |
| License clarity | Clear |
| Deployment complexity | Moderate |
| DEV.co fit | Good |
| Assessment confidence | High |
No security audit or CVE history provided. API keys are encrypted at rest (AES-256-GCM) in admin panel; user tokens are SHA-256 hashed. However, no mention of: input validation depth, CSRF/XSS hardening, SQL injection prevention (Prisma mitigates but not audited), secrets rotation, or rate limiting. E2B sandbox provides process isolation for enrichment agents. MCP server Bearer token security depends on client. HTTPS and authentication enforcement assumed but not documented. Recommend security review before handling sensitive customer or financial data.
Alternatives to consider
Salesforce (closed-source SaaS)
Industry-standard, battle-tested, multi-tenant, enterprise RBAC, compliance certs (SOC 2, HIPAA); no self-host or customization without Apex; high cost.
HubSpot (closed-source SaaS)
Mid-market friendly, integrated CRM + marketing + sales, free tier available; limited self-host options; vendor lock-in; less AI-native.
Odoo (open-source ERP)
Broader ERP scope (accounting, inventory, HR), Python/PostgreSQL backend, self-hostable; larger codebase, longer implementation; less AI/vector search native.
Build on nextcrm-app with DEV.co software developers
Review the GitHub repo, spin up a demo environment, and assess integration needs with your AI platform or custom backend. Devco can help architect deployment, customize workflows, and integrate with your tech stack.
Talk to DEV.coRelated open-source tools
Surfaced by semantic similarity across the DEV.co open-source index.
Related on DEV.co
Explore the category and the services that help you build with it.
nextcrm-app FAQ
Can I deploy NextCRM on my own servers?
Do I need OpenAI, E2B, and Inngest to use NextCRM?
Is NextCRM production-ready?
Can my AI agent (Claude, Cursor) directly access NextCRM data?
Custom software development services
Adopting nextcrm-app is usually one piece of a larger software development effort. As a software development agency, DEV.co provides software development services and web development expertise — pairing senior software developers and web developers with your team to design, build, and operate open-source crm software in production.
Ready to evaluate NextCRM for your team?
Review the GitHub repo, spin up a demo environment, and assess integration needs with your AI platform or custom backend. Devco can help architect deployment, customize workflows, and integrate with your tech stack.