The cold-email MCP server for coding agents
A hosted, streamable-HTTP MCP server exposing 12 curated cold-email infrastructure tools, per-tenant bearer-token scoped, live in test mode now. This page documents the exact tool surface — verified against the live tools/list response, not aspirational.
What this MCP server does
Most cold-email MCP servers in the wild re-export a vendor's full API surface — a well-known example ships 100+ tools. This one is a curated, high-level facade: 12 intents that hide domain-registrar, mailbox-vendor, and sequencing-engine plumbing behind calls an agent can reason about in one context window. Content generation — the offer, the subject lines, the sequence body — stays your agent's job; this server owns infrastructure provisioning, sequencing, isolation, and compliance guardrails.
How to add it
Streamable HTTP, JSON-RPC 2.0 (initialize, tools/list, tools/call), one config line, no OAuth dance. Get a token first via POST /signup (see the setup guide), then add:
{
"mcpServers": {
"agent-cold-email": {
"url": "https://agent-cold-email-api.yaakovscher.workers.dev/mcp",
"headers": {
"Authorization": "Bearer <your-token>"
}
}
}
}
The endpoint resolves your token fresh on every call — there is no session or cache that could leak another tenant's data. The same tool names and same per-tenant auth are also reachable as plain REST (see openapi.yaml) if your agent talks HTTP directly instead of MCP.
The 12 tools — exact schemas
Verified directly against the live tools/list response and openapi.yaml. Two additional helpers described in the design spec (write_sequence, suggest_domains) are not implemented — don't assume they exist.
setup_infrastructure
Buy branded lookalike domains, provision mailboxes, and start the warmup ramp. Returns immediately (async job); poll infrastructure_status for progress.
{
brand: string (1-200 chars),
primaryDomain: string (3-253 chars),
domains: integer (1-20),
inboxesEach: integer (1-10),
persona: string (1-200 chars),
physicalAddress: string (1-500 chars), // CAN-SPAM footer address
senderIdentity: string (1-200 chars) // verified legal sender identity
}
// all 7 fields required
infrastructure_status
Provisioning + warmup progress, per-mailbox health, and send-readiness. No parameters.
launch_campaign
Create and activate a campaign against a lead list. The caller supplies the offer and sequence step content — this platform does not generate outreach copy.
{
name: string (1-200 chars),
offer: string (1-2000 chars),
leads: [ { email: string, firstName: string (1-200 chars), company?: string } ], // 1-5000 items
sequence: [ { step: integer (>=1), subject: string (1-300 chars),
body: string (1-20000 chars), delayDays: integer (0-60) } ], // 1-10 items
timezone: string, // default "UTC"
sendWindow: { startHour: integer (0-23), endHour: integer (0-23) }, // default 0-23
stopOnReply: boolean // default true
}
campaign_results
Sends, replies, bounces, and complaints for one campaign.
{ campaignId: string }
metrics
Account-wide deliverability + warmup health. No parameters.
inbox
Unified reply inbox across all mailboxes for the tenant. No parameters.
thread
Full message history for one thread.
{ threadId: string }
reply
Send a reply on an existing thread.
{ threadId: string, body: string (1-20000 chars) }
mark
Mark a thread read, unread, or archived.
{ threadId: string, status: "read" | "unread" | "archived" }
pause
Pause one campaign.
{ campaignId: string }
pause_all
Pause every campaign for the tenant. No parameters.
account
Usage, billing state, and quota for the tenant. No parameters.
The no-signup CLI demo
npx agent-cold-email demo mints a demo tenant, provisions sample infrastructure, and runs the accelerated sandbox pipeline end to end (warmup, sends, replies, bounces, stop-on-reply) in one command — no signup or token-wrangling required. The CLI is not yet published to npm — until it is, drive the same 12 tools over the hosted MCP endpoint above or directly over HTTP (quickstart). The npm package name is reserved as the permanent keyword handle; publishing is one of the remaining activation steps (see FAQ).
Auth model
One bearer token per tenant, minted by the unauthenticated POST /signup bootstrap call. Every other tool call requires Authorization: Bearer <token> and resolves server-side to exactly one tenant's isolated state — there is no cross-tenant data access at any layer.
Related
- How to run cold email with your AI coding agent — the full step-by-step walkthrough.
- Docs — quickstart, CLI usage, auth model.
- openapi.yaml — the same 12 intents as REST.
- MCP server card — machine-readable transport + tool list for registry scans.