Monroe
Sign inGet started

Documentation

Model Context Protocol (MCP)

Shipping in stages. The runtime IS an MCP client today — Monroe's agent loop can call any MCP server you wire it up to. The self-serve Dashboard → Connect apps → MCP form for adding a server URL + auth token, the pre-vetted catalog, and the in-dashboard IP allowlist editor described below are on the public roadmap for the next release. Enterprise customers can have an MCP server wired up today by emailing enterprise@getmonroe.com with the server URL + auth credentials.

MCP is an open standard for letting AI agents call tools. Monroe is a first-class MCP client: any MCP server you point Monroe at becomes part of its toolkit.

Why this matters

Native connectors (Drive, GitHub, HubSpot…) cover the major-vendor long tail. But what about:

  • Your internal Retool dashboards
  • Your custom-built CRM
  • That niche industry SaaS your team uses but no AI tool supports
  • A new tool that launched yesterday

If it has an MCP server, Monroe can use it tomorrow.

Adding an MCP server

Dashboard → Connect apps → MCP. Add the server URL + auth credentials:

https://your-internal-tool.example.com/mcp
Bearer your-internal-tool-token

Monroe validates the connection, reads the server's tool schema, and adds those tools to its toolkit. From the next conversation forward, Monroe can call them.

Building an MCP server

If the tool you want doesn't have an MCP server, we recommend:

1. Official servers: github.com/modelcontextprotocol/servers — 100+ pre-built including Postgres, Filesystem, Brave Search, etc.

2. FastMCP: Python framework for spinning one up in ~50 lines. See the FastMCP docs for an example template.

3. TypeScript MCP SDK: official SDK for Node/Bun servers.

Security

MCP servers run in your environment, not ours. We connect to them; we never proxy them through Monroe's infrastructure. If your server is behind a VPN, you'll need to expose it via your tunnel of choice (Tailscale, Cloudflare Tunnel, ngrok for testing).

For sensitive servers (anything touching prod data), set up:

  • Token-based auth (already required)
  • IP allowlisting (only allow connections from Monroe's egress IPs — list in Settings → MCP)
  • Audit logging on the server side

The catalog

We pre-vet a list of popular MCP servers and surface them in Settings → MCP with one-click install. Currently includes:

  • Postgres / MySQL / SQLite query
  • Brave Search / DuckDuckGo
  • Filesystem (sandboxed)
  • Slack / Discord (alternate connection)
  • GitHub (alternate connection)
  • Notion (alternate connection)
  • Linear / Plane / GitHub Projects
  • And ~30 more — list grows weekly

Next: audit log.