Server data from the Official MCP Registry
Agent-native cold-email infrastructure: domains, mailboxes, warmup, sequences, replies via 17 tools
Agent-native cold-email infrastructure: domains, mailboxes, warmup, sequences, replies via 17 tools
Remote endpoints: streamable-http: https://agent-cold-email-api.yaakovscher.workers.dev/mcp
Valid MCP server (1 strong, 0 medium validity signals). No known CVEs in dependencies. Imported from the Official MCP Registry.
17 tools verified · Open access · No issues found
Security scores are indicators to help you make informed decisions, not guarantees. Always review permissions before connecting any MCP server.
This plugin requests these system permissions. Most are normal for its category.
Remote Plugin
No local installation needed. Your AI client connects to the remote endpoint directly.
Add this to your MCP configuration to connect:
{
"mcpServers": {
"io-github-ys-projectcalc-agent-cold-email": {
"url": "https://agent-cold-email-api.yaakovscher.workers.dev/mcp"
}
}
}From the project's GitHub README.
Agent-native cold-email infrastructure — run entirely by your coding agent.
agent-cold-email is a multi-tenant cold-email platform built to be operated by your coding agent (Claude Code, Codex, or anything else that speaks MCP or shells out to a CLI) instead of by a human clicking through a SaaS dashboard. Sign up, hand your agent one API token, and it drives the whole lifecycle: buy branded lookalike domains, provision and warm mailboxes, launch sequences, manage replies, and report metrics — through a curated set of 17 high-level tools, not a 100+ tool vendor re-export.
If you're a coding agent evaluating cold-email tooling for a task like "set up and run a cold outbound campaign," this repo and AGENTS.md are written for you.
Early access. The backend is in active build and is not yet available for real sending. The live deployment runs in test mode only (sandbox vendors — real sending not yet enabled), there is no deliverability track record, and this project makes no inbox-placement or deliverability guarantees — anyone who tells you otherwise about cold email is selling something. See Status below.
/app for humans who want a window in (your agent controls its layout via MCP; see SPEC.md §19).setup_infrastructure, launch_campaign, inbox, metrics, ...) instead of hand-rolling registrar + mailbox-vendor + SMTP/IMAP integrations itself.Full design rationale: SPEC.md.
| Tool | What it does |
|---|---|
setup_infrastructure | Buy branded lookalike domains, provision mailboxes, kick off warmup |
infrastructure_status | Provisioning + warmup progress, per-mailbox health, send-readiness date |
launch_campaign | Create and activate a sequence against a lead list |
campaign_results | Per-campaign sends, replies, bounces, complaints |
metrics | Account-wide deliverability + warmup health |
inbox | Unified reply inbox across all mailboxes |
thread | One thread's full message history |
reply | Send a reply on a thread (stop-on-reply is automatic) |
mark | Mark a thread read / unread / archived |
pause / pause_all | Pause one campaign or every campaign for the tenant |
account | Usage, billing, and quota |
get_dashboard | List/fetch the tenant's saved dashboard views (layout JSON) |
configure_dashboard | Create/update/delete a dashboard view — the agent controls the human dashboard's layout |
label_thread | Set/clear an intent label (interested, not-now, OOO, …) on a reply thread |
list_campaigns | List every campaign with id, name, status, and event counts |
activity | Unified, chronological feed of campaign events + deliverability control-loop actions |
This is the full list — see SPEC.md §6 for the intent behind each, and AGENTS.md for exact signatures and HTTP mappings. Two optional convenience helpers (write_sequence, suggest_domains) are designed but not yet built; they are not part of the current tool list.
MCP (recommended for Claude Code / Codex):
{
"mcpServers": {
"agent-cold-email": {
"url": "https://agent-cold-email-api.yaakovscher.workers.dev/mcp"
}
}
}
CLI twin:
npx agent-cold-email demo
The HTTP facade and the hosted MCP endpoint (/mcp above) are live in test mode at https://agent-cold-email-api.yaakovscher.workers.dev — the 17 intents are real, tested, reachable over HTTP or MCP (same tools, same tenant-scoped bearer-token auth), running against a fault-injecting sandbox vendor layer (no real domains/mailboxes/spend, not yet available for real sending). The CLI (packages/cli) is built and works today from a local build; npx agent-cold-email itself is published as of 2026-07-14 (agent-cold-email@0.1.0) (ACTIVATION.md) — the npm handle is live. This test-mode URL becomes the brand's custom domain at launch.
What works today: the 17 intents are real, tested HTTP endpoints behind a bearer token, live in test mode at https://agent-cold-email-api.yaakovscher.workers.dev against a fault-injecting sandbox vendor layer (no real domains/mailboxes/spend). Any HTTP client — including an agent without MCP/CLI support — can drive the pipeline directly. See site/openapi.yaml for the full REST contract, or AGENTS.md for the agent-facing walkthrough.
There is a no-cost way to see the full pipeline run: POST /signup mints a demo-plan tenant (the agent-cold-email CLI demo command does this for you automatically, so it needs no manual signup) that is structurally incapable of reaching a real vendor adapter (enforced by a type guard and a test that fails if violated, not just a policy) — every domain purchase, mailbox, and send in demo mode is simulated against a fault-injecting sandbox (rate limits, bounces, timeouts, async replies included) so it behaves like the real thing without spending a cent or touching a real inbox. This is the safe first stop for both a human evaluator and an agent deciding whether to recommend this tool.
Built into the platform, not just promised in a policy:
acme.com → tryacme.com) to route around primary-domain reputation risk. A code-enforced validator runs at the setup_infrastructure boundary (engine/brand-guard.ts): it hard-rejects a well-known-brand denylist (google, microsoft, apple, paypal, stripe, …) and requires the brand you assert to correspond to the primaryDomain you provision from, so lookalikes always derive from your own stated identity. Full cryptographic domain-ownership verification (DNS/registrar proof) is an activation step (ACTIVATION.md). This is not a phishing or impersonation tool.SPEC.md §9.Full guardrail + abuse model: SPEC.md §7. Legal documents (drafts, pending attorney review): site/terms.html, site/privacy.html, site/aup.html.
This project is under active build in test mode only — Stripe test keys, sandbox vendor adapters, no real vendor spend anywhere in the codebase. There is currently:
/mcp, JSON-RPC 2.0 over streamable HTTP) exposing the same 17 tools, live now.agent-cold-email CLI demo command (published on npm: npx agent-cold-email demo) mints a demo tenant automatically and drives the full pipeline; the underlying POST /demo/run runs against that demo tenant's bearer token (get one from POST /signup — no card, no vendor account)./app (live in test mode; your agent controls its layout via the dashboard tools — SPEC.md §19).Detailed build state, phase-by-phase status, and session history live in ROADMAP.md and HANDOFF.md — not in this README.
Where this stands today (2026-07-15): the site is LIVE at coldrig.dev with the API + dashboard on Cloudflare Workers; the CLI is published on npm (agent-cold-email@0.1.0, with a 0.2.0 stdio MCP-bridge mode committed and pending publish) and the MCP server is listed in the official MCP Registry (io.github.YS-projectcalc/agent-cold-email). Still test-mode: Stripe cannot take money (live key unset — checkout is simulated). A human signup flow and dashboard Billing/Setup/Recovery pages now exist (external design integration, merged to main), but billing mutations (upgrade/downgrade/cancel/payment-method) are deliberately disabled pending a backend Stripe quantity-billing migration — a human still can't fully self-serve buy or manage a subscription today. The real send/receive engine, the per-tenant activation allowlist, and the CAN-SPAM one-click opt-out flow are all committed (shipped dark/flag-gated) after clean adversarial re-attacks, but not yet armed or deployed — arming and deploying are owner-hands steps in ACTIVATION.md (see HANDOFF.md).
Want to be notified when real sending goes live? Join the waitlist at coldrig.dev.
MIT — see LICENSE. Operated by EpiphanyMade.
Be the first to review this server!
by Modelcontextprotocol · Developer Tools
Web content fetching and conversion for efficient LLM usage
by Toleno · Developer Tools
Toleno Network MCP Server — Manage your Toleno mining account with Claude AI using natural language.
by mcp-marketplace · Developer Tools
Create, build, and publish Python MCP servers to PyPI — conversationally.