@kaminari-ad/mcp
OfficialThis is an official MCP server for Kaminari Ad, an ad verification platform, exposing tools that let AI agents manage ad scans, campaigns, policies, alerts, webhooks, billing, and account settings.
Account & User Management
Get org details, list/invite/update/remove members, manage roles (including custom roles), transfer ownership, and manage API keys
Manage custom account labels for scan enrichment
Scanning
Create single or bulk scans by URL or ad-tag across multiple geographies and device emulators
List/filter scans by status, country, date range, tags, IAB/AI categories, and custom labels
Fetch scan details and screenshots (primary, creative, landing page) as base64 images
Cancel pending scans (with credit refund) and recheck completed scans after policy/rule updates
Campaign & Group Management
Create, update, archive/unarchive, cancel, and run campaigns on-demand or on a schedule
List campaigns and their runs with progress details
Organize campaigns into groups with full CRUD; pause, resume, run, or cancel entire groups at once
Tags & Custom Rules
Browse the full tag catalogue (system + custom) with severity and usage stats
Create, update, delete, and test custom tag-detection rules (regex, substring, IAB category, etc.)
List tags attached to specific scans
Custom Taxonomies
Create, update, delete, and restore custom classification taxonomies with hierarchical node trees
Preview-parse free-form text into a taxonomy tree before persisting
Policy Sets
Create, update, and delete named policy sets (violation rules based on tags, IAB V3 categories, brands, AI categories, custom taxonomy nodes)
Bind policy sets to campaigns for automated violation detection
Submit policy sets for public approval
Alerts & Notifications
List violation alerts, update alert lifecycle status (open → acknowledged → resolved/dismissed), and get aggregate alert statistics
Configure alert notification destinations (Slack, Telegram, email, webhooks) and set per-campaign routing overrides
Webhooks
Register, update, and delete webhook endpoints; list available event types
Test webhooks with synthetic payloads, rotate signing secrets, and replay individual or bulk deliveries
Billing & Invoicing
Get billing snapshot (balance, plan, usage counters, suspension state)
List per-scan usage rows, period usage summaries, and ledger transaction history
List invoices and download them as inline base64-encoded PDFs
Allows sending alerts to Slack based on scan results and campaign conditions via alert destinations.
Click on "Install Server".
Wait a few minutes for the server to deploy. Once ready, it will show a "Started" state.
In the chat, type
@followed by the MCP server name and your instructions, e.g., "@@kaminari-ad/mcplist my recent scans"
That's it! The server will respond to your query, and you can continue using it as needed.
Here is a step-by-step guide with screenshots.
@kaminari-ad/mcp
Official Model Context Protocol (MCP) server for Kaminari Ad — the ad verification platform from the team behind Kaminari Click.
Lets AI agents (Cursor, Claude Desktop, Cline, and any MCP-compatible client) launch scans, inspect results, manage campaigns and policies, and read alerts directly against your Kaminari Ad workspace via your API key.
Install (one click)
Cursor
Claude Desktop
Download kaminari-ad-mcp.mcpb → double-click to install. Claude Desktop shows a config form for your API key.
Claude Code (CLI)
claude mcp add kaminari-ad -- npx -y @kaminari-ad/mcp
export KAMINARI_AD_API_KEY=your-keyFull installation docs — see Quick start below.
Related MCP server: Kali Linux MCP Server
Quick start
1. Sign up & get an API key
Sign up at https://app.kaminari.ad/signup (free tier, no card required).
Once signed in, go to Settings → API Keys and generate a new key, OR have an existing AI assistant (with a temporary login) call the
create_api_keytool — both paths produce the same result.The key is shown once. Copy it. The full key is hashed server-side immediately.
Keys are opaque random strings — no required prefix or fixed length. Treat the whole value as a raw secret and paste it verbatim into your client config.
Tip for evaluators / Anthropic Software Directory reviewers: ask the team at hello@kaminari.ad for a sandboxed test account with seeded sample scans, campaigns, and alerts.
2a. Local install (stdio transport)
Add to your MCP client config (Cursor: ~/.cursor/mcp.json; Claude Desktop: ~/Library/Application Support/Claude/claude_desktop_config.json):
{
"mcpServers": {
"kaminari-ad": {
"command": "npx",
"args": ["-y", "@kaminari-ad/mcp"],
"env": {
"KAMINARI_AD_API_KEY": "<your-kaminari-ad-api-key>",
},
},
},
}Restart your client. You should see kaminari-ad in the MCP servers list with 83 tools exposed.
2b. Hosted HTTP transport (no install)
For cloud agents or clients without a local Node runtime, point at the hosted endpoint:
{
"mcpServers": {
"kaminari-ad": {
"url": "https://mcp.kaminari.ad/mcp",
"headers": {
"Authorization": "Bearer <your-kaminari-ad-api-key>",
},
},
},
}2c. OAuth 2.0 (Claude directory, third-party agents)
The hosted server publishes RFC 9728 protected-resource metadata at
https://mcp.kaminari.ad/.well-known/oauth-protected-resource
and points at the Kaminari Ad Authorization Server
(https://app.kaminari.ad). Any unauthenticated request to /mcp
returns a WWW-Authenticate: Bearer resource_metadata="…" header so
spec-compliant MCP clients (Claude.ai, Claude Code, third-party
agents) can complete an OAuth 2.0 authorization-code flow with PKCE
S256 + Dynamic Client Registration (RFC 7591).
# Discovery — works without any credential
curl -sk https://mcp.kaminari.ad/.well-known/oauth-protected-resource
# Triggering the WWW-Authenticate hint
curl -isk https://mcp.kaminari.ad/mcp -X POST \
-H 'content-type: application/json' \
-d '{"jsonrpc":"2.0","method":"tools/list","id":1}'API keys remain the recommended path for CLIs and one-off
scripting — OAuth is only for interactive agents that want per-app
consent and per-app revocation. Both Bearer flavours hit the same
/mcp endpoint; the server forwards the token verbatim to the API,
which decides which credential type minted it.
Tools
83 tools mirroring most of the public /api/v1 surface of Kaminari Ad. Every tool carries MCP behaviour annotations (title, readOnlyHint, destructiveHint, idempotentHint, openWorldHint) so MCP clients can warn before destructive actions. Highlights:
Account (11) —
get_account,update_org,list_org_users,invite_user,update_user_role,remove_user,transfer_ownership,list_org_roles,list_api_keys,create_api_key,revoke_api_keyScans (6) —
list_scans,get_scan,create_scan,create_bulk_scans,recheck_scans,cancel_scanCampaigns (10) —
list_campaigns,list_campaigns_picker,get_campaign,create_campaign,update_campaign,archive_campaign,unarchive_campaign,cancel_campaign,run_campaign,list_campaign_runsCampaign groups (10) — list/get/create/update/run/cancel/archive/unarchive +
pause_campaign_group_schedule,resume_campaign_group_scheduleRuns (3) —
get_run,list_run_scans,cancel_run(uselist_campaign_runsto enumerate runs of a campaign — the API has no standalone/runsindex)Tags (5) —
list_tags,get_tag_definition,update_tag_definition,delete_tag_definition,list_scan_tagsCustom rules (6) —
list_custom_rules,get_custom_rule,create_custom_rule,update_custom_rule,delete_custom_rule,test_custom_rulePolicy sets (6) —
list_policy_sets,get_policy_set,create_policy_set,update_policy_set,delete_policy_set,request_policy_set_approvalAlerts (3) —
list_alerts,update_alert_status,get_alert_statsWebhooks (11) —
list_webhooks,get_webhook,create_webhook,update_webhook,delete_webhook,list_webhook_event_types,list_webhook_deliveries,test_webhook,rotate_webhook_secret,replay_webhook_delivery,bulk_replay_webhookBilling (4) —
get_billing_summary,list_usage,get_usage_summary,list_balance_historyInvoicing (1) —
list_invoicesAlert notifications (5) —
list_alert_destinations,delete_alert_destination,set_alert_destination_version,get_campaign_alert_overrides,set_campaign_alert_overridesReference data (2) —
list_geos,list_emulators
Not exposed (intentionally): binary scan-screenshot fetchers, invoice PDF, and the public marketing forms (/contact, /demo-inquiries). Open an issue if you need one of those.
Example agent prompts
These three prompts each exercise a different cross-section of tools and demonstrate the typical agent workflow:
"Scan https://news.example.com/article-promo across US, UK, DE on mobile profiles, flag anything that redirects to a paywall." Touches
list_emulators→create_bulk_scans→ wait →list_scans(status=completed) →get_scan→list_scan_tags."Create a campaign that re-checks the homepage of brand-x.com every hour from JP and US; alert me on Slack if it ever shows a malware tag." Touches
list_emulators→list_policy_sets(find one withmalware) →create_campaign(schedule_enabled=true) →list_alert_destinations→set_campaign_alert_overrides."What did I spend on ad verification last month, and which campaigns drove the cost?" Touches
get_usage_summary→list_usage(with date_from/date_to) → group byscan_id→get_scan→get_campaignfor attribution.
Full machine-readable tool listing is exposed by the server itself — connect with any MCP client and call tools/list.
Security & tenant isolation
The hosted HTTP endpoint serves many organizations from a single process. We take cross-tenant isolation very seriously:
The MCP server is a strict, stateless, per-request pass-through. It forwards your
Authorizationheader to the Kaminari Ad API verbatim and stores no per-tenant state between requests.No caches, no in-memory data indexed by anything tenant-related.
KAMINARI_AD_API_KEYenv var is rejected on startup in HTTP mode (stdio only) — no default fallback token exists.Session IDs are bound to the SHA-256 of the Bearer that initialized them; reuse with a different Bearer is rejected.
Bearers are never logged. Only their 8-character hash prefix is recorded for correlation.
See
tests/isolation/for the regression suite that enforces every rule above on each CI run.
To report a security issue, see SECURITY.md.
Development
The Docker path (no local Node required for the build, but see CONTRIBUTING for the host-side commit hooks):
make check # lint + format-check + typecheck + arch-gates + test-cov
make test # full test suite
make test-unit # unit only
make test-isolation # tenant-isolation suiteOr directly with npm if you have Node >=22.19.0 on the host (matches engines.node; .nvmrc pins the minor for dev parity with CI). The package gates strictly at 22.19.0 because undici@8.x requires markAsUncloneable from node:worker_threads (Node 22.19+).
npm ci --legacy-peer-deps
npm run lint && npm run typecheck && npm testSee CONTRIBUTING.md for the development workflow and how to add a tool.
The maintainers run the full development gate (integration tests, deploy automation, prod smoke) on a private GitLab instance and mirror the repo to GitHub. The public CI on GitHub Actions (
.github/workflows/ci.yml) runs lint + typecheck + unit tests + build + bundle-size check on every community PR, so contributors get fast green/red feedback without needing access to the internal infra. Tag pushes (v*.*.*) trigger.github/workflows/release.yml, which publishes the package to npm with OIDC provenance and creates the GitHub Release.
Stability
The public surface of this package is:
The CLI binary
kaminari-ad-mcpand its--transport stdio|httpflag, the env vars documented in.env.example, and the exit codes (0 / 1 fatal / 2 invalid config).The MCP wire protocol as implemented by every registered tool (tool names, input schemas, output shapes, annotations). Tools deprecated in a future major version will keep working for at least one minor version with a console warning.
Everything else — the TypeScript types exported from dist/bin.d.ts, deep imports, internal class shapes — is not part of the public contract and may change in any release. Treat this package as a CLI, not a library.
We follow Semantic Versioning for the two items above. See CHANGELOG.md for the per-release record.
Privacy
Data collected by the MCP server itself: none beyond the
Authorizationheader it forwards. The HTTP transport is stateless — no sessions are persisted; each request is authenticated independently by its own Bearer. The only in-memory state is the leaky-bucket rate limiter keyed bysha256(bearer).Data forwarded to Kaminari Ad: every tool call is a thin pass-through to
/api/v1over HTTPS. The Kaminari Ad privacy policy applies: https://kaminari.ad/legal/privacy.Logs: structured pino output, JSON in HTTP mode. The full Bearer token is redacted; only
bearer_hash = sha256(token).slice(0,8)makes it into a log line, alongsiderequest_id,tool_name,api_status,elapsed_ms. Tool inputs (which may contain customer scan IDs / URLs) are NOT logged.Telemetry: none. The OSS build ships a
NoopErrorReporter. We do not bundle Sentry, OpenTelemetry exporters, or PostHog.
To report a security or privacy issue, see SECURITY.md.
License
MIT — see LICENSE.
Maintenance
Resources
Unclaimed servers have limited discoverability.
Looking for Admin?
If you are the server author, to access and configure the admin panel.
Latest Blog Posts
- Your AI Chatbot Just Exposed Your CEO's Salary to an InternBy Om-Shree-0709 on .Agent IdentityMCP SecurityOAuth Delegation
- Why MCP Servers Need Execution Sandboxing (And Why Your Current Stack Isn't Enough)By Om-Shree-0709 on .Agentic AiPrompt InjectionWebAssembly
MCP directory API
We provide all the information about MCP servers via our MCP API.
curl -X GET 'https://glama.ai/api/mcp/v1/servers/kaminari-ad/mcp'
If you have feedback or need assistance with the MCP directory API, please join our Discord server