Summary
Connects to Zendesk Support to manage tickets, macros, users, and views through the Zendesk API. You'll reach for this when you want an LLM to triage support queues, apply macros to batch-update tickets, or pull customer context without switching tabs. Part of Mindstone's 35-connector collection, all published under the @mindstone npm scope with host-orchestrated auth patterns where applicable. The repo enforces a 7-day npm release cool-down and pins all GitHub Actions to commit SHAs, so supply-chain hardening is baked in. If you're building support workflows or need programmatic ticket access from Claude Desktop or Cursor, this gives you the Zendesk primitives without writing your own REST client.
Keep your Mac awake while Claude Code and 40+ AI agents run. Sleeps when they're idle.
One time payment $9 →
Integrate web data into your AI product. One API to scrape website & brand data.
Get API Key Now →
Agent, run crypto. Access onchain data & trade routes via 1inch.
Install now →
On Capafy, your Skill runs online 24/7 as an agent product, and you get paid every time someone uses it.
Start earning →
Tools
Public tool metadata for what this MCP can expose to an agent.
16 tools
ZENDESK_COUNT_ZENDESK_ORGANIZATIONSCount the number of organizations in Zendesk.
Count the number of organizations in Zendesk.
No parameter schema in public metadata yet.
ZENDESK_CREATE_ZENDESK_ORGANIZATIONTool to create a Zendesk organization. Use when you need to group end users under a shared company profile. Use after confirming the organization name is unique.2 params
Tool to create a Zendesk organization. Use when you need to group end users under a shared company profile. Use after confirming the organization name is unique.
Parameters* required
namestringUnique organization name. Leading/trailing whitespace is trimmed by Zendesk.
external_idstringOptional unique external identifier for this organization. Comparison is case-insensitive; use to sync with external systems.
ZENDESK_CREATE_ZENDESK_TICKETCreate a ticket in Zendesk.5 params
Create a ticket in Zendesk.
Parameters* required
subjectstringShort summary of the issue. Keep it concise (e.g. 'Cannot log in').
prioritystringZendesk priority. Must be one of: 'urgent', 'high', 'normal', 'low'.one of
urgent · high · normal · lowdefault: normaldescriptionstringLong-form description / steps to reproduce.
requester_namestringName of the requester. If you supply this, you MUST also supply `requester_email`. Leave both blank to default to the authenticated user.
requester_emailstringEmail of the requester. Must accompany `requester_name`.
ZENDESK_CREATE_ZENDESK_USERTool to create a new user in Zendesk. Use when you need to onboard a user with specific details.2 params
Tool to create a new user in Zendesk. Use when you need to onboard a user with specific details.
Parameters* required
userobjectUser object containing all attributes to create
skip_verify_emailbooleanIf true, do not send a verification email upon creationdefault: false
ZENDESK_DELETE_ZENDESK_ORGANIZATIONDelete an organization in Zendesk.1 params
Delete an organization in Zendesk.
Parameters* required
organization_idstringID of the organization to delete
ZENDESK_DELETE_ZENDESK_TICKETDelete a ticket in Zendesk.1 params
Delete a ticket in Zendesk.
Parameters* required
ticket_idintegerID of the ticket to delete
ZENDESK_DESTROY_MANY_ORGANIZATIONSTool to bulk delete Zendesk organizations. Use when cleaning up test data or removing obsolete organizations in one call. Returns a job_status payload to track progress.2 params
Tool to bulk delete Zendesk organizations. Use when cleaning up test data or removing obsolete organizations in one call. Returns a job_status payload to track progress.
Parameters* required
idsstringComma-separated list of Zendesk organization IDs to delete (max 100). Required if external_ids is not provided.
external_idsstringComma-separated list of Zendesk external organization IDs to delete (max 100). Required if ids is not provided.
ZENDESK_GET_ABOUT_MEGet information about the owner account in Zendesk.
Get information about the owner account in Zendesk.
No parameter schema in public metadata yet.
ZENDESK_GET_ALL_ZENDESK_ORGANIZATIONSGet all organizations in Zendesk.
Get all organizations in Zendesk.
No parameter schema in public metadata yet.
ZENDESK_GET_ZENDESK_ORGANIZATIONGet information about a specific organization in Zendesk.1 params
Get information about a specific organization in Zendesk.
Parameters* required
organization_idintegerNumeric ID of the organization to retrieve (e.g. 123456).
ZENDESK_GET_ZENDESK_TICKET_BY_IDGet ticket details from Zendesk.1 params
Get ticket details from Zendesk.
Parameters* required
ticket_idintegerID of the ticket to get details for.
ZENDESK_LIST_ZENDESK_TICKETSList Zendesk tickets with pagination and filtering.5 params
List Zendesk tickets with pagination and filtering.
Parameters* required
pageintegerPage number for offset pagination (starts at 1)
sort_bystringField to sort by: 'assignee', 'assignee.name', 'created_at', 'group', 'id', 'requester', 'requester.name', 'status', 'subject', 'updated_at'
per_pageintegerNumber of tickets per page (max 100)
sort_orderstringSort order: 'asc' or 'desc'one of
asc · descexternal_idstringFilter tickets by external ID
ZENDESK_REPLY_ZENDESK_TICKETAction to reply to a Zendesk ticket by adding a comment.3 params
Action to reply to a Zendesk ticket by adding a comment.
Parameters* required
bodystringComment contentdefault:
publicbooleanWhether the comment is public or internaldefault: true
ticket_idintegerID of the ticket to reply to
ZENDESK_SEARCH_ZENDESK_USERSTool to search Zendesk users by email or name. Use after confirming user identity before ticket creation.4 params
Tool to search Zendesk users by email or name. Use after confirming user identity before ticket creation.
Parameters* required
namestringFull or partial name to search for. For phrase searches, enclose in quotes.
pageintegerPage number for offset pagination (starts at 1).
emailstringEmail address to search for. Exact match (e.g., 'jdoe@example.com').
per_pageintegerNumber of users per page (max 100).
ZENDESK_UPDATE_ZENDESK_ORGANIZATIONUpdate an organization in Zendesk.2 params
Update an organization in Zendesk.
Parameters* required
dataobjectNew data for the organization
organization_idintegerID of the organization to update
ZENDESK_UPDATE_ZENDESK_TICKETTool to update a ticket in Zendesk. Use when you need to modify ticket fields like status, priority, or subject after confirming the ticket ID.21 params
Tool to update a ticket in Zendesk. Use when you need to modify ticket fields like status, priority, or subject after confirming the ticket ID.
Parameters* required
dataobjectOptional raw ticket update object. Provide this to send fields under the 'ticket' wrapper directly. Alternatively, use the un-nested fields above.
tagsarrayTags to set on the ticket. Using tags here replaces all existing tags.
due_atstringDue date/time for task-type tickets (ISO 8601).
statusstringTicket status to set. If your account uses custom statuses, use custom_status_id via other endpoints.
subjectstringTicket subject/title to set during update.
metadataobjectCustom metadata to attach to this update's audit (approximately up to 1 KB).
prioritystringTicket priority. Allowed values: urgent, high, normal, low.one of
urgent · high · normal · lowemail_ccsarrayEmail CCs to add/remove. Each object includes user_id or user_email, optional user_name, and action ('put'|'delete').
followersarrayFollowers to add/remove. Each object should include user_id or user_email, with optional action ('put'|'delete').
ticket_idintegerID of the ticket to update.
safe_updatebooleanEnable optimistic locking to prevent overwrites during collisions.
comment_bodystringText body of the comment to add.
collaboratorsarrayCollaborators to set (replaces existing). Accepts user IDs, emails, or {name, email} objects.
custom_fieldsarrayList of custom field values. Each item: {id: number, value: any}.
updated_stampstringLast-known updated_at timestamp (ISO 8601) used together with safe_update.
comment_publicbooleanWhether the added comment is public (visible to requester) or internal.
comment_uploadsarrayUpload tokens to attach files to the comment.
collaborator_idsarrayCollaborator user IDs to set (replaces existing).
comment_author_idintegerAuthor ID for the comment, if different from the authenticated user.
comment_html_bodystringHTML body of the comment to add.
additional_collaboratorsarrayAdd collaborators without removing existing ones.
mcp-servers
Source-available MCP servers by Mindstone. Works with any MCP host — Claude Desktop, Cursor, Rebel, and others.
Browse all 35 connectors with their version, auth model, and tool count at the catalogue site (regenerated from each connector's STATUS.json on every push).
Connectors
| Connector | Description |
|---|---|
| apple-shortcuts | Run and list Apple Shortcuts on macOS via the shortcuts CLI |
| browser-automation | Headless browser control via accessibility snapshots — navigate, fill forms, click, and screenshot pages via the agent-browser CLI |
| elevenlabs | Generate speech, music, and sound effects, browse voices, and transcribe audio via the ElevenLabs API |
| email-imap | Read, search, send, and manage emails through IMAP and SMTP |
| fathom | List and search meetings, view details, read transcripts, and manage teams via Fathom AI |
| freshdesk | Manage helpdesk tickets, search support requests, reply to customers, and add internal notes |
| gamma | Create AI-powered presentations, documents, webpages, and social posts via Gamma |
| google-analytics | Discover GA4 accounts and properties, explore the live schema, and run reports via the Google Analytics API |
| google-workspace | Read, search, and send across Gmail, Calendar, Drive, Docs, Sheets, Slides, Contacts, and Comments with host-orchestrated OAuth and per-account on-disk credentials |
| hubspot | Manage HubSpot CRM — contacts, companies, deals, tickets, leads, tasks, notes, properties, lists, workflows, knowledge base, and files — with multi-account, host-orchestrated OAuth |
| humaans | Query employee profiles, job roles, time-away requests, and company info via Humaans HR |
| kling | Generate AI videos from text descriptions or images via Kling AI |
| microsoft-calendar | List, create, update, and respond to Outlook calendar events, check free/busy, and list calendars; reuses the cohort's host-orchestrated Microsoft 365 OAuth surface |
| microsoft-files | List, search, upload, download, share, and read OneDrive files via Microsoft Graph; reuses the cohort's host-orchestrated Microsoft 365 OAuth surface |
| microsoft-mail | List, search, read, send, reply, forward, draft, move, and delete Outlook email; owns the cohort's host-orchestrated Microsoft 365 OAuth surface |
| microsoft-sharepoint | Discover sites, browse libraries, read pages and lists, search content, and mutate SharePoint files/lists with incremental Sites.Read.All consent |
| microsoft-teams | List and read Teams chats, send chat messages, list teams and channels, and read presence; reuses the cohort's host-orchestrated Microsoft 365 OAuth surface |
| mixmax | Manage sequences, send tracked emails, use templates, and monitor engagement via Mixmax |
| nano-banana | Generate and edit images using Google Gemini's AI capabilities |
| napkin | Generate professional visuals — diagrams, infographics, and illustrations — from text via Napkin AI |
| office | Read and edit Word documents, Excel workbooks, and PowerPoint presentations from desktop Microsoft 365 via an Office Add-in sidecar |
| openai-image | Generate and edit images via OpenAI's gpt-image-2 — sharp text rendering, multilingual support, and four quality levels |
| outreach | Manage prospects, sequences, accounts, tasks, and mailings via the Outreach sales engagement API |
| pandadoc | Create, send, and manage documents, templates, and e-signatures via PandaDoc |
| quickbooks | Manage invoices, bills, customers, vendors, employees, and accounts in QuickBooks Online |
| replit-ssh | Read, write, list, and check files on Replit projects over SSH/SFTP, with one-shot SSH key + config setup on the operator's machine |
| retell-ai | Place voice-agent phone calls, manage agents and LLM prompts, and discover voices via the Retell AI API |
| runway | Generate AI video, images, audio, speech, and sound effects via Runway ML |
| salesforce | Manage accounts, contacts, opportunities, leads, tasks, users, and custom objects via the Salesforce API |
| servicenow | Manage incidents, change requests, users, and knowledge base articles in ServiceNow |
| slack | Multi-workspace Slack — channels, messages, threads, reactions, users, files, bookmarks, and scheduled messages via the Slack Web API, with host-orchestrated OAuth |
| talentlms | Manage users, courses, groups, branches, enrolments, and assessments in TalentLMS |
| vanta | Read and manage compliance posture in Vanta — vulnerabilities, tests, controls, evidence, resources, people, vendors, documents, and compliance summary |
| workday | Query workers, profiles, and organizations in Workday HCM |
| zendesk | Manage tickets, macros, users, and views in Zendesk Support |
Quick Start
Each server builds independently:
cd connectors/<name>
npm install
npm run build
Or run directly via npx (once published):
npx -y @mindstone/mcp-server-zendesk
Moving from
@mindstone-engineering/? Every server has been republished under the shorter@mindstone/npm scope. The legacy@mindstone-engineering/mcp-server-*packages still install but are marked deprecated. See MIGRATION.md for the consumer one-liner and the deprecation timeline.
See each server's README for configuration and host setup instructions. Some connectors require additional environment variables to opt into specific behaviour (e.g. QB_ALLOW_PROD_WRITES for QuickBooks production writes, MCP_WORKSPACE_PATH for sandboxed file reads, BROWSER_AUTOMATION_ALLOW_EVAL for browser-automation script eval) — see the per-connector READMEs for the full list.
Security & Hardening
This monorepo follows a defence-in-depth posture for tool-call hosts. Highlights include:
- Workflow safety. GitHub Actions workflows are env-fy'd against script injection (CWE-94), every action is pinned to a commit SHA (kept current by Dependabot), and each job is granted a least-privilege
permissions:block. Publish is split into a build job (does the install/test/pack with no publish credentials) and a publish job (downloads the packed tarball, runs onlynpm publish --ignore-scripts --provenanceunder OIDC trusted publishing, gated by thenpm-publishenvironment). The publish job invokes NO third-party JS —tsc,vitest, lifecycle scripts, etc. all run upstream, away fromid-token: write. See docs/security/AUDIT_FOX-3319_tanstack_supply_chain.md for the supply-chain threat model and docs/security/BRANCH_PROTECTION.md for required GitHub settings. - Release-age cool-down. The repo-level
.npmrcsetsmin-release-age=7(days), so CI refuses to install dependency versions published in the last week. This blocks the "same-day malicious re-publish" path that ships post-npm audit-clean PRs into a release tag. - Provenance-attested releases. Releases are published by CI (
.github/workflows/release.yml) under the@mindstone/npm scope via Trusted Publishing OIDC — no long-lived npm token exists anywhere — with--provenanceSigstore attestations consumers can verify vianpm audit signatures. Every publishable release commit must carry aRelease-Gatetrailer pointing at its pre-release security review, and every publish posts an alert; the full gate chain is in docs/PUBLISH_APPROVAL_PROCESS.md. (Only a brand-new connector's first publish is manual and WebAuthn-gated; those tarballs carry no provenance attestation but remain shasum-verifiable — check out the release commit and runnpm pack; see MIGRATION.md.) - OpenSSF Scorecard. The repo runs the OpenSSF Scorecard weekly via
.github/workflows/scorecard.yml. The report is generated by a third party from the source tree, so every claim above (action pinning, branch protection, token usage, dependency hygiene) is independently checked rather than just asserted here. The current score is shown by the badge at the top of this README.
Recommendations for consumers
These connectors are published as plain npm packages. The strongest single thing you can do to protect yourself from a future supply-chain compromise of any npm package (these or otherwise) is to use a client that does not run lifecycle scripts by default:
- pnpm (
pnpm install/pnpm dlx) — does not executepostinstall/preparehooks unless explicitly allowlisted viaonlyBuiltDependencies. pnpm v11+ also defaults to a 24-hourminimumReleaseAgecool-down. - bun (
bunx) — same default, no lifecycle scripts unless allowlisted. - npm — if you must use npm, set
min-release-age=7andignore-scripts=truein your global~/.npmrc. Requires npm v11.10+ formin-release-age.
None of our published packages need postinstall to function, so disabling lifecycle scripts in your installer of choice is safe.
- Untrusted-content envelopes. External content from email, helpdesk, and ticketing systems (email-imap, freshdesk, zendesk) is wrapped in
<untrusted-content source="...">envelopes with close-tag breakout escaping, so an LLM host can recognise and refuse instruction-injection attempts. - Workspace sandboxing. File-uploading connectors (nano-banana, pandadoc, elevenlabs) constrain reads to
MCP_WORKSPACE_PATH(oros.tmpdir()) with canonical-prefix containment that handles symlinked roots like/tmp→/private/tmp. - Secure-by-default writes. Production-impacting writes (QuickBooks invoices/bills/customers/vendors) require an explicit
QB_ALLOW_PROD_WRITES=1opt-in env var; outreach prospect-enrolment and mixmax sequence-recipient tools carrydestructiveHint: trueso hosts surface confirmation prompts. - SSRF & path traversal. Download connectors (napkin, runway) enforce host allow-lists, manual-redirect handling, and symlink-safe write paths under a configurable root.
- Loopback OAuth bind. Connectors with local OAuth callback servers (salesforce, outreach) hard-code 127.0.0.1, ignoring any
MCP_OAUTH_BIND_HOSToverride. - E.164 validation. Outbound phone-call tools (retell-ai) reject non-E.164 numbers before any upstream API call.
For per-connector security notes, see each connector's README.
To report a vulnerability, please see SECURITY.md.
The Mindstone open-source family
This repo is one of several open-source projects from Mindstone:
- Rebel — the AI workspace desktop app that ships these connectors out of the box (source release in progress).
- Super-MCP — a proxy MCP router that loads only the tools you actually need, saving your context window.
- rebel-system — the public Rebel system: skills, prompts, operators, help docs, and templates.
- meeting-note-recorder — meeting detection, recording, and live transcripts (the Rebel note-taker).
Licence
Each connector is licensed under FSL-1.1-MIT — see the LICENSE file in each connector directory for details.
Featured
Keep your Mac awake while Claude Code and 40+ AI agents run. Sleeps when they're idle.
One time payment $9 →Integrate web data into your AI product. One API to scrape website & brand data.
Get API Key Now →Agent, run crypto. Access onchain data & trade routes via 1inch.
Install now →On Capafy, your Skill runs online 24/7 as an agent product, and you get paid every time someone uses it.
Start earning →Configuration
ZENDESK_CONFIG_PATHdefault: ~/.mcp/zendeskPath to the config directory containing accounts.json and credentials/
ZENDESK_CLIENT_IDOptional OAuth client ID for legacy token refresh flows
ZENDESK_CLIENT_SECRETsecretOptional OAuth client secret for legacy token refresh flows
Registryactive
Package@mindstone/mcp-server-zendesk
TransportSTDIO
AuthRequired
UpdatedMay 21, 2026