ConnectorsClickUp

ClickUp

Live

OAUTH 2.0

PROJECT MANAGEMENT

Every task, list, and space your team manages lives in ClickUp. ClickUp MCP gives your agent authenticated access to projects scoped to the user who authorized it.

  • Acts as the user: Access and write actions stay tied to the ClickUp account that authorized the agent.
  • Credentials stay vaulted: AES-256, resolved at request time, never in LLM context.
  • Scoped before every call: User permissions enforced. 90-day audit trail.
Get Started free
View docs
ClickUp
agent · Acme Q3
Run
What tasks are blocked or have no assignee in our active sprint?
S
clickup_tasks_list
77ms
Project management agent
6 blocker tasks identified. 4 unassigned in active sprint: auth refactor, rate limiter, billing webhook, onboarding redesign. 2 blocked: API gateway (waiting on infra), SSO integration (vendor delay).
Sources: 6 tasks, active sprint list
clickupmcp
6 tasks
18:29
Message Claude...

Tools your project management agent reaches for on ClickUp, scoped per user.

CALL ANY TOOL
List tasks and spaces, create or update tasks, add comments, and track priority and status.
clickup_tasks_list
List tasks
List tasks in a list, space, or folder with status and assignee filters.
Parameters
Name
Type
Required
Description
list_id
string
Required
ClickUp list ID
statuses
array
Optional
Array of status names
assignees
array
Optional
Array of assignee user IDs
page
integer
Optional
Pagination page
clickup_task_get
Get task
clickup_task_create
Create task
clickup_task_update
Update task
clickup_spaces_list
List spaces
clickup_comment_create
Add comment
Build your Agent
Drop the toolkit in, point it at the user, and your project management agent can use ClickUp from the first run.
Langchain
Open AI
Anthropic
Google ADK
Copied
import { ScalekitClient } from "@scalekit-sdk/node";
import { DynamicStructuredTool } from "@langchain/core/tools";
import { createReactAgent } from "@langchain/langgraph/prebuilt";
import { z } from "zod";

const sk = new ScalekitClient(envUrl, clientId, clientSecret);

const { tools } = await sk.tools.listScopedTools("user_123", {
  filter: { connectionNames: ["clickup"], toolNames: ["clickup_tasks_list", "clickup_task_get", "clickup_task_create"] },
  pageSize: 100,
});

const lcTools = tools.map((t) => new DynamicStructuredTool({
  name: t.tool.definition.name,
  description: t.tool.definition.description,
  schema: z.object({}).passthrough(),
  func: async (args) => {
    const { data } = await sk.tools.executeTool({
      toolName: t.tool.definition.name,
      identifier: "user_123",
      params: args,
    });
    return JSON.stringify(data);
  },
}));

const agent = createReactAgent({ llm, tools: lcTools });
Copied
import { ScalekitClient } from "@scalekit-sdk/node";
import OpenAI from "openai";

const sk = new ScalekitClient(envUrl, clientId, clientSecret);
const openai = new OpenAI();

const { tools } = await sk.tools.listScopedTools("user_123", {
  filter: { connectionNames: ["clickup"], toolNames: ["clickup_tasks_list", "clickup_task_get", "clickup_task_create"] },
  pageSize: 100,
});

const llmTools = tools.map((t) => ({
  type: "function",
  function: {
    name: t.tool.definition.name,
    description: t.tool.definition.description,
    parameters: t.tool.definition.input_schema,
  },
}));

const resp = await openai.responses.create({
  model: "gpt-4o", input: prompt, tools: llmTools,
});
import { ScalekitClient } from "@scalekit-sdk/node";
import Anthropic from "@anthropic-ai/sdk";

const sk = new ScalekitClient(envUrl, clientId, clientSecret);
const anthropic = new Anthropic();

const { tools } = await sk.tools.listScopedTools("user_123", {
  filter: { connectionNames: ["clickup"], toolNames: ["clickup_tasks_list", "clickup_task_get", "clickup_task_create"] },
  pageSize: 100,
});

const llmTools = tools.map((t) => ({
  name: t.tool.definition.name,
  description: t.tool.definition.description,
  input_schema: t.tool.definition.input_schema,
}));

const msg = await anthropic.messages.create({
  model: "claude-sonnet-4-6", max_tokens: 1024,
  tools: llmTools,
  messages: [{ role: "user", content: prompt }],
});
Copied
import { Agent } from "@google/adk/agents";
import {
  MCPToolset, StreamableHTTPConnectionParams,
} from "@google/adk/tools/mcp";

const toolset = new MCPToolset({
  connectionParams: new StreamableHTTPConnectionParams({
    url: "https://mcp.scalekit.com/clickup",
    headers: { Authorization: `Bearer ${userScopedToken}` },
  }),
});

const agent = new Agent({
  name: "agent", model: "gemini-2.0-flash",
  tools: await toolset.getTools(),
});
Try these prompts
Paste any prompt into your agent to start using ClickUp.
Search & recall
Copy the prompt
Copied
List all tasks assigned to me in [list].
Copy the prompt
Copied
Show me overdue tasks in [space].
Copy the prompt
Copied
Find tasks with priority urgent.
Copy the prompt
Copied
What tasks have no assignee?
Action & creation
Copy the prompt
Copied
Create a task in [list]: [name], due [date], assignee [person].
Copy the prompt
Copied
Mark task [name] as complete.
Copy the prompt
Copied
Update priority of [task] to urgent.
Copy the prompt
Copied
Comment on [task]: [text].
Reporting & sprints
Copy the prompt
Copied
Which tasks shipped this week?
Copy the prompt
Copied
How many open tasks by status in [list]?
Copy the prompt
Copied
Show velocity for [team] this sprint.
Copy the prompt
Copied
Find tasks with no due date in [space].
SEE HOW AUTH WORKS
Users authorize ClickUp once. Their credentials stay vaulted, every call is checked, and every action is logged.
1
Authorize
Your user connects
ClickUp
once. We tie it to their identity and the meetings they approved — no shared bot account, no org-wide access
Who:
user ‘A’
when:
Once per user
access:
Limited to user
2
Store
Their
ClickUp
token lives in a vault scoped to them. User A's meetings are never reachable by an agent acting for user B, even on the same connection
vault:
encrypted
scope:
per-user
tokens:
auto-refreshed
3
Resolve
When your agent calls a
ClickUp
tool, we fetch the right token server-side. It never touches your agent, never appears in the LLM context, never shows up in your logs
speed:
~40ms
check:
before every call
seen by:
nobody
4
Audit
Every
ClickUp
tool call is logged — who triggered it, which meeting was fetched, what came back. 90 days of history, tied to the user who authorized it
history:
90 days
export:
SIEM-ready
logged:
every call
Test other agents
Same per-user auth pattern across other project management agents and MCP connectors. Working code, live demos, fork what fits.
ENGINEERING
DevOps assistant agent
Triage GitHub incidents, open Linear tickets, and notify the on-call channel in Slack with context already attached.
GitHub
Linear
Slack
View agent
ENGINEERING
Engineering standup agent
Aggregate GitHub and GitLab activity, link to Jira, and post a daily standup digest to Slack. No async updates.
GitHub
GitLab
Jira
Slack
View agent
Why Scalekit
Secure your agent's access. Connectors ship in minutes
Other connector libraries treat auth as a demo afterthought. Scalekit starts with user identity, scope enforcement, and audit.
01.
Task updates lose workspace attribution
A shared ClickUp token looks fine in a demo. In production, every task update, list write, and space change logs as the integration. Task ownership breaks. Workspace attribution breaks. Scalekit resolves the actual user's token so every ClickUp action is attributed to the right person.
// shared token
 audit → bot_service_account
 user_filter → broken

 // scalekit
 audit → user_abc
 scope → enforced ✓
02.
Authentication is not authorization
03.
Multi-tenancy is architectural
04.
ClickUp today. Asana, Jira, Linear tomorrow.
“Our agents act across Salesforce, Gong, Google Drive, and more, on behalf of every customer. Scalekit behind the scenes meant we can keep adding tools without ever rebuilding how credentials or tool calling work.”
Venu Madhav Kattagoni
Head of Engineering / Von
On this page
Tool and actionsFramework CompatibilityStarter PromptAuth LifecycleTry Other AgentsWhy Scalekit
Quick links
OverviewQuickstartAll connectors
Similar connectors
Jira
Linear
Asana
Slack
Frequently Asked Questions
Does the agent access ClickUp as the user or as a shared key?
As the user. Each workspace member authorizes once and Scalekit resolves their credential at request time. Audit logs attribute every action to that user, not a shared service account.
Where is the ClickUp oauth 2.0 stored?
Can I limit what the agent is allowed to do in ClickUp?
What happens when a user revokes ClickUp access?
Does the agent respect ClickUp workspace and space permissions?
Start in your coding agent
Up and running in one command
Install the Scalekit skill in your editor of choice. Connector, auth, tools, prompt, all wired up
Claude Code
Cursor
Codex
Copilot
Claude Code REPL
CopyCopied
/plugin marketplace add scalekit-inc/claude-code-authstack
/plugin install agentkit@scalekit-auth-stack
Cursor Code REPL
CopyCopied
# ~/.cursor/mcp.json
{
""mcpServers"": {
""clickup"": {
""url"": ""https://mcp.scalekit.com/clickup"",
""headers"": { ""Authorization"": ""Bearer $SCALEKIT_TOKEN"" }
}
}
}
Codex Code REPL
CopyCopied
# ~/.codex/config.toml
[mcp_servers.clickup]
url = ""https://mcp.scalekit.com/clickup""
auth_env = ""SCALEKIT_TOKEN""
Copilot Code REPL
CopyCopied
# .vscode/mcp.json
{
""servers"": {
""clickup"": {
""url"": ""https://mcp.scalekit.com/clickup"",
""type"": ""http""
}
}
}
The auth stack for agents.
hi@scalekit.com
Scalekit Inc
2261 Market Street, STE 86971
San Francisco, CA 94114
Join our community
AgentKit
QuickstartConnectorsAGENTKIT SDKCODE SAMPLESAgentKit Pricing
Auth for SaaS  
org and UserSSOSCIMMCP AUth
RBACPasswordlessAUTH FOR SAAS PRICING
Developers
DocsAPI ReferenceSDKsGitHubBlog
Company
LegalTrust centerCustomers
COMPLIANCE
Follow us on
All systems operational
© 2026 SCALEKIT, INC.

We use cookies, so things load fast, we learn what to fix, and you can always reach us on chat

Okay, got it!