crawlfix.ai
Sign inRun free scan
crawlfix.ai
MCP Setup

Connect your AI coding agent

Give Cursor, Claude Code, Windsurf, or ChatGPT direct read access to your CrawlFix scans. Your AI reads the audit truth — evidence, fix recipes, acceptance criteria — and edits your repo itself.

Your API tokens

No tokens yet. Create one above to get started.

Claude Desktop / MCP-compatible client

Add this to your claude_desktop_config.json or Cursor MCP config. The endpoint speaks JSON-RPC 2.0 per the official MCP spec.

{
  "mcpServers": {
    "crawlfix": {
      "transport": {
        "type": "http",
        "url": "/api/mcp/rpc",
        "headers": {
          "Authorization": "Bearer YOUR_TOKEN_HERE"
        }
      }
    }
  }
}
Available tools: get_latest_scan, list_scans, get_scan, get_issues, get_issue_evidence, get_fix_recipe, create_scan, verify_fix_against_preview

JSON-RPC over HTTP (raw curl)

# tools/list
curl -X POST /api/mcp/rpc \
  -H "Authorization: Bearer YOUR_TOKEN_HERE" \
  -H "Content-Type: application/json" \
  -d '{"jsonrpc":"2.0","id":1,"method":"tools/list"}'

# tools/call → get latest scan for a domain
curl -X POST /api/mcp/rpc \
  -H "Authorization: Bearer YOUR_TOKEN_HERE" \
  -H "Content-Type: application/json" \
  -d '{"jsonrpc":"2.0","id":2,"method":"tools/call","params":{"name":"get_latest_scan","arguments":{"domain":"example.com"}}}'

Quick start — Cursor / Claude Code

Drop this into .cursorrules or CLAUDE.md:

Create a token above first.

Replace YOUR_TOKEN_HERE with your actual token.

Endpoint reference

GET
/api/mcp/scans?domain=example.com
List recent scans (filter by domain)
GET
/api/mcp/scans/latest?domain=example.com
Get latest scan for a domain (full result)
GET
/api/mcp/scans/{scan_id}
Get a scan by id
GET
/api/mcp/scans/{scan_id}/issues
Get issues with full evidence + fix recipes
GET
/api/mcp/fix-recipes/{issue_key}?framework=nextjs
Framework-specific recipe for an issue key
POST
/api/v1/scans
REST: create scan (bearer auth)
GET
/api/v1/scans/{id}/report
REST: full report JSON
GET
/api/v1/scans/{id}/screenshot
REST: rendered screenshot (JPEG)
POST
/api/scan
Create a new scan (public — no auth needed)
POST
/api/scan/{scan_id}/verify
Re-scan a preview URL and diff against original
All /mcp/* endpoints require Authorization: Bearer <token>.
Beta limitations: this MVP instance has no user accounts yet — any valid token can read any scan. Workspace isolation will land with auth + billing.