> ## Documentation Index
> Fetch the complete documentation index at: https://docs.enkryptai.com/llms.txt
> Use this file to discover all available pages before exploring further.

# Scan MCP Servers from Config JSON

> Parse an MCP config JSON (Claude/Cursor format with `mcpServers` key) and create one scan job per server entry. Each entry produces an independent hosted scan.



## OpenAPI

````yaml POST /mcp-hub/scan/hosted/config
openapi: 3.0.0
info:
  title: Enkrypt AI APIs
  version: 2.0.0
servers:
  - url: https://api.enkryptai.com
security:
  - apiKeyAuth: []
tags:
  - name: Guardrails
  - name: Code of Conduct
  - name: Endpoints
  - name: Datasets
  - name: Redteam
  - name: Deployments
  - name: AI Proxy
  - name: Leaderboard
  - name: Archived
  - name: MCP Hub
    description: >-
      MCP Hub vulnerability scanning APIs. Submitting scans (the POST endpoints)
      is open to all authenticated callers. The scan **retrieval** APIs — Get
      Scan Job Status, Get Complete Scan Results, List Scans, and Get MCP Hub
      Scan Statistics (the GET endpoints) — are an **enterprise data-license
      feature**: they require your organization to have MCP Hub API access
      enabled by Enkrypt, otherwise they return `403`. Contact us at
      support@enkryptai.com to enable access.
  - name: MCP Registry Servers
  - name: MCP Gateways
  - name: MCP Playground
paths:
  /mcp-hub/scan/hosted/config:
    post:
      tags:
        - MCP Hub
      summary: Scan MCP Servers from Config JSON
      description: >-
        Parse an MCP config JSON (Claude/Cursor format with `mcpServers` key)
        and create one scan job per server entry. Each entry produces an
        independent hosted scan.
      operationId: mcp_hub_create_hosted_scan_from_config
      requestBody:
        required: true
        content:
          application/json:
            schema:
              $ref: '#/components/schemas/MCPHubMCPConfigScanRequest'
            examples:
              claude-config:
                summary: Claude/Cursor-style config with one SSE server
                value:
                  mcp_config:
                    mcpServers:
                      example-server:
                        transport: sse
                        url: https://mcp.example.com/sse
                        headers:
                          Authorization: Bearer <token>
      responses:
        '202':
          description: Hosted scan jobs accepted (one per server entry)
          content:
            application/json:
              schema:
                type: array
                items:
                  $ref: '#/components/schemas/MCPHubHostedScanResponse'
        '401':
          $ref: '#/components/responses/MCPHubUnauthorized'
        '422':
          $ref: '#/components/responses/MCPHubValidationError'
components:
  schemas:
    MCPHubMCPConfigScanRequest:
      title: MCPHubMCPConfigScanRequest
      type: object
      required:
        - mcp_config
      description: >-
        Request body for scanning every server defined in a Claude/Cursor-style
        MCP config JSON.
      properties:
        mcp_config:
          type: object
          additionalProperties: true
          description: >-
            MCP config JSON with the standard `mcpServers` key (Claude/Cursor
            format)
          example:
            mcpServers:
              example-server:
                transport: sse
                url: https://mcp.example.com/sse
                headers:
                  Authorization: Bearer <token>
        is_private:
          type: boolean
          default: false
          description: Mark all child scans as private
    MCPHubHostedScanResponse:
      title: MCPHubHostedScanResponse
      type: object
      required:
        - job_id
        - endpoint_url
        - user_email
        - job_status
        - message
      description: Response returned when a hosted scan job is accepted.
      properties:
        job_id:
          type: string
          description: Unique identifier for the scan job
        endpoint_url:
          type: string
        user_email:
          type: string
        job_status:
          type: string
        message:
          type: string
          description: Human-readable status message
    MCPHubAuthErrorResponse:
      title: MCPHubAuthErrorResponse
      type: object
      description: Error envelope returned by the MCP Hub auth/permission failures.
      properties:
        detail:
          type: string
    MCPHubValidationError:
      title: MCPHubValidationError
      type: object
      description: FastAPI-style validation error response.
      properties:
        detail:
          type: array
          items:
            type: object
            required:
              - loc
              - msg
              - type
            properties:
              loc:
                type: array
                items:
                  oneOf:
                    - type: string
                    - type: integer
              msg:
                type: string
              type:
                type: string
  responses:
    MCPHubUnauthorized:
      description: Unauthorized — missing or invalid Authorization header
      content:
        application/json:
          schema:
            $ref: '#/components/schemas/MCPHubAuthErrorResponse'
    MCPHubValidationError:
      description: Validation error
      content:
        application/json:
          schema:
            $ref: '#/components/schemas/MCPHubValidationError'
  securitySchemes:
    apiKeyAuth:
      type: apiKey
      in: header
      name: apikey

````