Attio MCP | OAuth Attio connector for AI agents

Tools your crm agent reaches for on Attio, scoped per user.

CALL ANY TOOL

Search records, manage contacts, update deals, and add notes. Same toolkit, every framework, no auth plumbing to maintain.

attio_add_to_list

List add to

Add a record (contact, company, deal, or custom object) to a specific Attio list. Returns the newly created list entry with its entry ID, which can be used to remove it later. If the record is already in the list, a new entry is created.

Parameters

Name

Type

Required

Description

list_id

string

Required

The UUID of the Attio list to add the record to. Use the List Lists tool (attio_list_lists) to retrieve available lists and their UUIDs.

parent_object

string

Required

The object type slug the record belongs to. Must match the object type the list is configured for — run attio_list_lists to check the list's parent object before adding.

parent_record_id

string

Required

The UUID of the record to add to the list. Must be a valid UUID — obtain this from search or list records results.

entry_values

object

Optional

Optional attribute values to set on the list entry itself (not the underlying record). Keys are attribute slugs, values are the data to set. Example: {"stage": "qualified"}

attio_create_attribute

Create Attribute

attio_create_comment

Create Comment

attio_create_company

Create Company

attio_create_deal

Create Deal

attio_create_list

List create

attio_create_note

Create Note

attio_create_object

Create Object

attio_create_person

Create Person

attio_create_record

Create Record

attio_create_task

Create Task

attio_delete_comment

Delete Comment

attio_delete_company

Delete Company

attio_delete_deal

Delete Deal

attio_delete_note

Delete Note

attio_delete_person

Delete Person

attio_delete_record

Delete Record

attio_delete_task

Delete Task

attio_delete_user_record

Delete User Record

attio_delete_webhook

Delete Webhook

attio_delete_workspace_record

Delete Workspace Record

attio_get_attribute

Get Attribute

attio_get_comment

Get Comment

attio_get_company

Get Company

attio_get_current_token_info

Get Current Token Info

attio_get_deal

Get Deal

attio_get_list

List get

attio_get_list_entry

Get List Entry

attio_get_note

Get Note

attio_get_object

Get Object

For more tools, view docs.

Build your Agent

Drop the toolkit in, point it at the user, and your agent can search Attio records, update deals, and log notes from the first run.

import { ScalekitClient } from "@scalekit-sdk/node";
import { DynamicStructuredTool } from "@langchain/core/tools";
import { createReactAgent } from "@langchain/langgraph/prebuilt";
import { z } from "zod";

const sk = new ScalekitClient(envUrl, clientId, clientSecret);

const { tools } = await sk.tools.listScopedTools("user_123", {
  filter: { connectionNames: ["attio"], toolNames: ["attio_records_search", "attio_record_get", "attio_record_update"] },
  pageSize: 100,
});

const lcTools = tools.map((t) => new DynamicStructuredTool({
  name: t.tool.definition.name,
  description: t.tool.definition.description,
  schema: z.object({}).passthrough(),
  func: async (args) => {
    const { data } = await sk.tools.executeTool({
      toolName: t.tool.definition.name,
      identifier: "user_123",
      params: args,
    });
    return JSON.stringify(data);
  },
}));

const agent = createReactAgent({ llm, tools: lcTools });

import { ScalekitClient } from "@scalekit-sdk/node";
import OpenAI from "openai";

const sk = new ScalekitClient(envUrl, clientId, clientSecret);
const openai = new OpenAI();

const { tools } = await sk.tools.listScopedTools("user_123", {
  filter: { connectionNames: ["attio"], toolNames: ["attio_records_search", "attio_record_get", "attio_record_update"] },
  pageSize: 100,
});

const llmTools = tools.map((t) => ({
  type: "function",
  function: {
    name: t.tool.definition.name,
    description: t.tool.definition.description,
    parameters: t.tool.definition.input_schema,
  },
}));

const resp = await openai.responses.create({
  model: "gpt-4o", input: prompt, tools: llmTools,
});

import { ScalekitClient } from "@scalekit-sdk/node";
import Anthropic from "@anthropic-ai/sdk";

const sk = new ScalekitClient(envUrl, clientId, clientSecret);
const anthropic = new Anthropic();

const { tools } = await sk.tools.listScopedTools("user_123", {
  filter: { connectionNames: ["attio"], toolNames: ["attio_records_search", "attio_record_get", "attio_record_update"] },
  pageSize: 100,
});

const llmTools = tools.map((t) => ({
  name: t.tool.definition.name,
  description: t.tool.definition.description,
  input_schema: t.tool.definition.input_schema,
}));

const msg = await anthropic.messages.create({
  model: "claude-sonnet-4-6", max_tokens: 1024,
  tools: llmTools,
  messages: [{ role: "user", content: prompt }],
});

import { Agent } from "@google/adk/agents";
import {
  MCPToolset, StreamableHTTPConnectionParams,
} from "@google/adk/tools/mcp";

const toolset = new MCPToolset({
  connectionParams: new StreamableHTTPConnectionParams({
    url: "https://mcp.scalekit.com/attio",
    headers: { Authorization: `Bearer ${userScopedToken}` },
  }),
});

const agent = new Agent({
  name: "agent", model: "gemini-2.0-flash",
  tools: await toolset.getTools(),
});

Try these prompts

Paste any prompt into your agent to start pulling CRM intelligence from Attio.

Search & recall

Copy the prompt

Copied

Find all contacts at [company name].

Copy the prompt

Copied

Show me all open deals over $50K.

Copy the prompt

Copied

Search for [person name] in Attio.

Copy the prompt

Copied

List all companies in the [industry] sector.

Action & updates

Copy the prompt

Copied

Update the deal stage for [company] to Proposal.

Copy the prompt

Copied

Add a note to [person]'s record: [note text].

Copy the prompt

Copied

Create a new contact: [name], [email], [company].

Copy the prompt

Copied

Update the close date on [deal name] to [date].

Pipeline & reporting

Copy the prompt

Copied

What deals are closing this month?

Copy the prompt

Copied

List all contacts added in the last 7 days.

Copy the prompt

Copied

Show me all tasks assigned to me in Attio.

Copy the prompt

Copied

What is the total pipeline value for Q4?

SEE HOW AUTH WORKS

Users authorize Attio once. Their workspace credentials stay vaulted, every call is checked, and every action is logged.

Authorize

Your user connects

Attio

once. We tie it to their identity and the meetings they approved — no shared bot account, no org-wide access

Who:

user ‘A’

when:

Once per user

access:

Limited to user

Store

Their

Attio

token lives in a vault scoped to them. User A's meetings are never reachable by an agent acting for user B, even on the same connection

vault:

encrypted

scope:

per-user

tokens:

auto-refreshed

Resolve

When your agent calls a

Attio

tool, we fetch the right token server-side. It never touches your agent, never appears in the LLM context, never shows up in your logs

speed:

~40ms

check:

before every call

seen by:

nobody

Audit

Every

Attio

tool call is logged — who triggered it, which meeting was fetched, what came back. 90 days of history, tied to the user who authorized it

history:

90 days

export:

SIEM-ready

logged:

every call

Test other agents

Same per-user auth pattern across other crm agents and MCP connectors. Working code, live demos, fork what fits.

SALES

Deal intelligence agent

Combine Gong, Attio, and Slack signals to surface deal risks and next-best actions. Updated after every call.

SALES

Sales call prep agent

Pull Granola notes and Attio contact history to draft a pre-call brief before every sales meeting. Zero rep input.

Granola

Attio

View agent

Why Scalekit

Secure your agent's access. Connectors ship in minutes

Other connector libraries treat auth as a demo afterthought. Scalekit starts with user identity, scope enforcement, and audit.

01.

CRM updates lose pipeline attribution

A shared Attio token looks fine in a demo. In production, every record update logs as a service account. List-level permissions collapse. Per-user pipeline visibility breaks. Scalekit resolves the credential of the actual BD or sales operator who triggered the agent, never a shared bot.

// shared bot token
token = "sk_attio_shared_xxx"
audit → bot_service_account
user_filter → broken

// scalekit · per-user
token = resolve(user_id)
audit → user_abc
scope → enforced ✓

02.

Authentication is not authorization

03.

Multi-tenancy is architectural

04.

Attio today. HubSpot, Salesforce, Apollo tomorrow.

“Our agents act across Salesforce, Gong, Google Drive, and more, on behalf of every customer. Scalekit behind the scenes meant we can keep adding tools without ever rebuilding how credentials or tool calling work.”

Venu Madhav Kattagoni

Head of Engineering / Von

FAQs

Frequently Asked Questions

Does the agent access Attio as the user or as a shared key?

As the user. Each workspace member authorizes once and Scalekit resolves their credential at request time. Audit logs attribute every action to that user, not a shared service account.

Where is the Attio oauth 2.0 stored?

In Scalekit's managed AES-256 token vault, namespaced per tenant. Refresh is automatic. Revocation is a single dashboard action. Tokens never appear in prompts, logs, or LLM context.

Can I limit what the agent is allowed to do in Attio?

Yes. Pass a tool name filter to listScopedTools so the CRM agent only sees the subset you authorize. Pre-API-call scope checks block out-of-policy actions before the request reaches Attio.

What happens when a user revokes Attio access?

The connection is invalidated on the next tool call. Subsequent requests for that user fail closed with a clear error. Other users in the tenant remain unaffected. The event is logged for audit.

Does the agent respect record-level permissions in Attio?

Yes. Read and write actions inherit the authorizing user's Attio role and record access. List visibility, object scope, and field-level restrictions all carry over to every agent call.

On this page

Tool and actions Framework Compatibility Starter Prompt Auth Lifecycle Try Other Agents Why Scalekit