The Model Context Protocol (MCP) is an open standard that lets AI assistants call external tools over HTTP. Probo exposes an MCP server so that AI agents — including Claude Desktop, Cursor, and any other MCP-compatible client — can read and write compliance data on your behalf.
With MCP you can ask an AI to list all open risks, create a vendor record from a meeting note, or check which controls still need evidence, and the agent will call Probo directly rather than asking you to do it manually.
Endpoint https://your-probo-instance/api/mcp/v1
Authentication All MCP requests require an API key passed as a Bearer token. Generate one in Probo under Settings → Access → API keys (see API keys ).
Connecting Claude Desktop
Generate an API key
In Probo, go to Settings → Access → API keys and create a new key. Copy the value — you will not be able to see it again.
Open the Claude Desktop config file
The configuration file is at: ~/Library/Application Support/Claude/claude_desktop_config.json
Add the Probo MCP server
Add a mcpServers entry with your instance URL and API key: claude_desktop_config.json
{ "mcpServers" : { "probo" : { "url" : "https://your-probo-instance/api/mcp/v1" , "headers" : { "Authorization" : "Bearer YOUR_API_KEY" } } } }
Restart Claude Desktop
Quit and reopen Claude Desktop. The Probo tools should appear in the tools list (hammer icon).
Replace your-probo-instance with the actual hostname of your Probo deployment, for example app.getprobo.com.
The Probo MCP server exposes the following tools. Any MCP-compatible agent can call them.
Organizations Tool Description listOrganizationsList all organizations the authenticated user has access to
Vendors Tool Description listVendorsList all vendors for the organization addVendorAdd a new vendor to the organization updateVendorUpdate an existing vendor deleteVendorDelete a vendor listVendorRiskAssessmentsList all risk assessments for a vendor addVendorRiskAssessmentAdd a new risk assessment for a vendor
Users Tool Description listUsersList all users for the organization getUserGet a user by ID createUserCreate a new user in the organization inviteUserInvite an existing user profile to the organization updateUserUpdate an existing user profile updateMembershipUpdate a membership role removeUserRemove a user from the organization
Risks Tool Description listRisksList all risks for the organization getRiskGet a risk by ID addRiskAdd a new risk to the organization updateRiskUpdate an existing risk deleteRiskDelete a risk listRiskObligationsList obligations linked to a risk linkRiskLink a risk to a resource (document, measure, or obligation) unlinkRiskUnlink a risk from a resource
Measures Tool Description listMeasuresList all measures for the organization getMeasureGet a measure by ID addMeasureAdd a new measure to the organization updateMeasureUpdate an existing measure deleteMeasureDelete a measure linkMeasureLink a measure to a resource (control or risk) unlinkMeasureUnlink a measure from a resource listMeasureRisksList risks linked to a measure listMeasureControlsList controls linked to a measure listMeasureTasksList tasks linked to a measure listMeasureEvidencesList evidences linked to a measure
Frameworks Tool Description listFrameworksList all frameworks for the organization getFrameworkGet a framework by ID addFrameworkAdd a new framework to the organization updateFrameworkUpdate an existing framework
Controls Tool Description listControlsList all controls for the organization or framework getControlGet a control by ID addControlAdd a new control to a framework updateControlUpdate an existing control linkControlLink a resource to a control (measure, document, audit, snapshot, or obligation) unlinkControlUnlink a resource from a control listControlMeasuresList measures linked to a control listControlDocumentsList documents linked to a control listControlAuditsList audits linked to a control listControlObligationsList obligations linked to a control listControlSnapshotsList snapshots linked to a control
Assets Tool Description listAssetsList all assets for the organization getAssetGet an asset by ID addAssetAdd a new asset to the organization updateAssetUpdate an existing asset
Data Tool Description listDataList all data records for the organization getDatumGet a data record by ID addDatumAdd a new data record to the organization updateDatumUpdate an existing data record
Findings Tool Description listFindingsList all findings (nonconformities, observations, exceptions) for the organization getFindingGet a finding by ID addFindingAdd a new finding to the organization updateFindingUpdate an existing finding deleteFindingDelete a finding linkFindingAuditLink a finding to an audit with a reference ID unlinkFindingAuditUnlink a finding from an audit listFindingAuditsList audits linked to a finding
Obligations Tool Description listObligationsList all obligations for the organization getObligationGet an obligation by ID addObligationAdd a new obligation to the organization updateObligationUpdate an existing obligation
Tasks Tool Description listTasksList all tasks for the organization or measure getTaskGet a task by ID addTaskAdd a new task to the organization updateTaskUpdate an existing task assignTaskAssign a task to a person unassignTaskUnassign a task from a person deleteTaskDelete a task
Audits Tool Description listAuditsList all audits for the organization getAuditGet an audit by ID addAuditAdd a new audit to the organization updateAuditUpdate an existing audit getAuditReportUrlGet a presigned download URL for an audit report (valid 15 minutes)
Documents Tool Description listDocumentsList all documents for the organization getDocumentGet a document by ID addDocumentAdd a new document to the organization updateDocumentUpdate an existing document archiveDocumentArchive a document unarchiveDocumentUnarchive a document listDocumentVersionsList all versions of a document
Snapshots Tool Description listSnapshotsList all snapshots for the organization getSnapshotGet a snapshot by ID takeSnapshotTake a snapshot of a collection (risks, vendors, assets, data, findings, obligations, or processing activities)
GDPR Tool Description listProcessingActivitiesList all processing activities for the organization getProcessingActivityGet a processing activity by ID addProcessingActivityAdd a new processing activity updateProcessingActivityUpdate an existing processing activity deleteProcessingActivityDelete a processing activity listDataProtectionImpactAssessmentsList all DPIAs for the organization getDataProtectionImpactAssessmentGet a DPIA by ID addDataProtectionImpactAssessmentAdd a new DPIA for a processing activity updateDataProtectionImpactAssessmentUpdate an existing DPIA deleteDataProtectionImpactAssessmentDelete a DPIA listTransferImpactAssessmentsList all transfer impact assessments (TIAs) for the organization getTransferImpactAssessmentGet a TIA by ID addTransferImpactAssessmentAdd a new TIA for a processing activity updateTransferImpactAssessmentUpdate an existing TIA deleteTransferImpactAssessmentDelete a TIA
Use cases AI-assisted risk identification — Ask an AI assistant to review a description of a new system and suggest risks. It can then call addRisk to record them directly in Probo.Automated vendor assessment — When onboarding a new tool, ask the agent to call addVendor and addVendorRiskAssessment with values it extracts from the vendor’s security documentation.Evidence gathering — Ask the agent to list controls that still need evidence (listControls, listMeasureEvidences) and draft a collection plan, then assign tasks (addTask, assignTask) to the responsible people.Compliance gap analysis — Ask the agent to pull all open findings (listFindings) and map them to controls (listControlMeasures), producing a prioritized remediation list without leaving the chat.
API keys Generate and manage API keys for MCP authentication.
CLI (prb) Use the command-line interface to manage Probo resources.
