Skip to main content
POST
/
mcp-hub
/
scan
/
hosted
curl --request POST \ --url https://api.enkryptai.com/mcp-hub/scan/hosted \ --header 'Content-Type: application/json' \ --header 'apikey: <api-key>' \ --data ' { "endpoint_url": "https://mcp.example.com/sse", "server_name": "Example MCP Server", "auth_config": { "auth_type": "bearer", "bearer_token": "your-token-here" } } '
{
  "job_id": "<string>",
  "endpoint_url": "<string>",
  "user_email": "<string>",
  "job_status": "<string>",
  "message": "<string>"
}

Authorizations

โ€‹
apikey
string
header
required

Body

application/json

Request body for scanning a live, hosted MCP server endpoint.

โ€‹
endpoint_url
string
required

URL of the hosted MCP server (e.g., https://mcp.example.com/sse)

Example:

"https://mcp.example.com/sse"

โ€‹
auth_config
MCPHubAuthConfig ยท object

Authentication configuration used by the scanner when connecting to the hosted MCP server

Example:
{
  "auth_type": "bearer",
  "bearer_token": "eyJhbGciOiJIUzI1NiIs..."
}
โ€‹
server_name
string | null

Display name for the server

Example:

"Example MCP Server"

โ€‹
expected_tools
string[] | null

List of expected tool names for shadow-tool detection

โ€‹
is_private
boolean
default:false

Mark this scan as private

Response

Hosted scan job accepted

Response returned when a hosted scan job is accepted.

โ€‹
job_id
string
required

Unique identifier for the scan job

โ€‹
endpoint_url
string
required
โ€‹
user_email
string
required
โ€‹
job_status
string
required
โ€‹
message
string
required

Human-readable status message