# How to integrate Securitytrails MCP with OpenAI Agents SDK ```json { "title": "How to integrate Securitytrails MCP with OpenAI Agents SDK", "toolkit": "Securitytrails", "toolkit_slug": "securitytrails", "framework": "OpenAI Agents SDK", "framework_slug": "open-ai-agents-sdk", "url": "https://composio.dev/toolkits/securitytrails/framework/open-ai-agents-sdk", "markdown_url": "https://composio.dev/toolkits/securitytrails/framework/open-ai-agents-sdk.md", "updated_at": "2026-05-12T10:25:01.338Z" } ``` ## Introduction This guide walks you through connecting Securitytrails to the OpenAI Agents SDK using the Composio tool router. By the end, you'll have a working Securitytrails agent that can show all ips linked to acme.com, fetch ssl certificate history for example.com, run sql query for hosts in 192.168.0.0/16 through natural language commands. This guide will help you understand how to give your OpenAI Agents SDK agent real control over a Securitytrails account through Composio's Securitytrails MCP server. Before we dive in, let's take a quick look at the key ideas and tools involved. ## Also integrate Securitytrails with - [Claude Agent SDK](https://composio.dev/toolkits/securitytrails/framework/claude-agents-sdk) - [Claude Code](https://composio.dev/toolkits/securitytrails/framework/claude-code) - [Claude Cowork](https://composio.dev/toolkits/securitytrails/framework/claude-cowork) - [Codex](https://composio.dev/toolkits/securitytrails/framework/codex) - [OpenClaw](https://composio.dev/toolkits/securitytrails/framework/openclaw) - [Hermes](https://composio.dev/toolkits/securitytrails/framework/hermes-agent) - [CLI](https://composio.dev/toolkits/securitytrails/framework/cli) - [Google ADK](https://composio.dev/toolkits/securitytrails/framework/google-adk) - [LangChain](https://composio.dev/toolkits/securitytrails/framework/langchain) - [Vercel AI SDK](https://composio.dev/toolkits/securitytrails/framework/ai-sdk) - [Mastra AI](https://composio.dev/toolkits/securitytrails/framework/mastra-ai) - [LlamaIndex](https://composio.dev/toolkits/securitytrails/framework/llama-index) - [CrewAI](https://composio.dev/toolkits/securitytrails/framework/crew-ai) ## TL;DR Here's what you'll learn: - Get and set up your OpenAI and Composio API keys - Install the necessary dependencies - Initialize Composio and create a Tool Router session for Securitytrails - Configure an AI agent that can use Securitytrails as a tool - Run a live chat session where you can ask the agent to perform Securitytrails operations ## What is OpenAI Agents SDK? The OpenAI Agents SDK is a lightweight framework for building AI agents that can use tools and maintain conversation state. It provides a simple interface for creating agents with hosted MCP tool support. Key features include: - Hosted MCP Tools: Connect to external services through hosted MCP endpoints - SQLite Sessions: Persist conversation history across interactions - Simple API: Clean interface with Agent, Runner, and tool configuration - Streaming Support: Real-time response streaming for interactive applications ## What is the Securitytrails MCP server, and what's possible with it? The Securitytrails MCP server is an implementation of the Model Context Protocol that connects your AI agent and assistants like Claude, Cursor, etc directly to your Securitytrails account. It provides structured and secure access to domain and IP intelligence data, so your agent can perform actions like retrieving domain details, analyzing IP associations, running custom SQL queries, and managing static asset rules on your behalf. - Domain and DNS intelligence: Instantly fetch detailed information about any domain, including current DNS record statistics and associated data for robust cybersecurity analysis. - SSL certificate retrieval: Access current and historical SSL certificate details for any hostname, helping you track certificate changes or potential vulnerabilities over time. - IP and company association search: Discover all IP addresses linked to a specific company domain, or run advanced IP searches using custom DSL queries for threat hunting and investigation. - Automated SQL-powered investigations: Execute SQL queries across hosts and IPs to extract targeted intelligence and spot trends or anomalies in your attack surface data. - Bulk static asset management: Add, update, or remove up to 1000 static asset rules at once to quickly adapt your security policies across projects. ## Supported Tools | Tool slug | Name | Description | |---|---|---| | `SECURITYTRAILS_BULK_STATIC_ASSET_RULES` | Bulk Static Asset Rules | Bulk add or remove static asset rules for a SecurityTrails ASI project. Static asset rules define which domains/IPs are included or excluded from the project's monitoring scope. This operation processes up to 1000 rules (combined add + remove) per request. The API processes rules asynchronously, waiting up to 2 seconds for completion. If processing takes longer, task_ids are returned for status polling. Note: Requires a valid project_id from the List Projects endpoint. Use the Get Static Assets endpoint to verify changes after bulk operations complete. | | `SECURITYTRAILS_GET_COMPANY_ASSOCIATED_IPS` | Get Company Associated IPs | Tool to retrieve IPs associated with a company domain. Use when you need to find all IP addresses linked to an organization's domain name. | | `SECURITYTRAILS_GET_DOMAIN` | Get Domain Details | Retrieves comprehensive domain information from SecurityTrails including current DNS records, infrastructure details, and statistics. This tool fetches detailed DNS data (A, AAAA, MX, NS, SOA, TXT records) along with metadata about when records were first seen, which organizations own the infrastructure, and how many other domains share the same servers. Useful for domain reconnaissance, infrastructure mapping, security analysis, and understanding domain configurations. Returns structured data with typed fields for easy programmatic access by AI agents. | | `SECURITYTRAILS_GET_DOMAIN_SSL` | Get Domain SSL | Tool to fetch current and historical SSL certificate details for a hostname. Use when you need to retrieve SSL data after identifying the domain. Coverage limited to certificates indexed by SecurityTrails; private, internally-issued, or very recently issued certificates may be absent. | | `SECURITYTRAILS_IP_SEARCH_STATISTICS` | IP Search Statistics | Fetch aggregated statistics for IP addresses matching a DSL query. Returns top open ports by frequency, common reverse DNS patterns, and total count. Useful for analyzing IP infrastructure patterns, port distributions, and PTR records across specific IP ranges or reverse DNS domains. | | `SECURITYTRAILS_LIST_PROJECTS` | List ASI Projects | Tool to list ASI projects available to the account. Use when you need project IDs for subsequent ASI operations. | | `SECURITYTRAILS_PING` | Ping | Tool to test authentication and connectivity with the SecurityTrails API. Use after configuring API key. | | `SECURITYTRAILS_SCROLL` | Scroll Results | Tool to continue scrolling through DSL search results. Use after receiving a scroll_id from SECURITYTRAILS_SEARCH_IPS or SECURITYTRAILS_SQL_API_EXECUTE_QUERY to fetch the next batch of data. Call iteratively until no scroll_id is returned to retrieve all pages. | | `SECURITYTRAILS_SEARCH_IPS` | Search IPs | Tool to search IP addresses via SecurityTrails DSL. Use when you need to filter IPs with custom DSL queries. Results are paginated; use SecurityTrails scroll mechanisms for large result sets to avoid missing assets. | | `SECURITYTRAILS_SQL_API_EXECUTE_QUERY` | SQL API Execute Query | Execute SQL-like queries against SecurityTrails data. Query the 'hosts' table for domain/DNS information or the 'ips' table for IP address/ASN/port data. Returns up to 100 records per request with a scroll ID for pagination. Supports standard SQL syntax (SELECT, WHERE, AND, OR, IN, IS NULL) but does NOT support LIMIT clause. | | `SECURITYTRAILS_SQL_API_SCROLL_RESULTS` | SQL API Scroll Results | Tool to fetch next page of SQL query results. Use after obtaining scroll_id from initial SQL API response. | | `SECURITYTRAILS_TEMP_SCRAPE_SECURITYTRAILS_USAGE` | Temp Scrape Securitytrails Usage | Retrieve account usage information from the SecurityTrails API. This action fetches the current monthly usage and allowed monthly usage limits for your SecurityTrails API account. Use this to monitor your API quota consumption. Returns: On success (200): - current_monthly_usage: Your current API usage for the month - allowed_monthly_usage: Your total allowed monthly API quota On error: - status_code: HTTP status code - response_text: Error message from API | ## Supported Triggers None listed. ## Creating MCP Server - Stand-alone vs Composio SDK The Securitytrails MCP server is an implementation of the Model Context Protocol that connects your AI agent to Securitytrails. It provides structured and secure access so your agent can perform Securitytrails operations on your behalf through a secure, permission-based interface. With Composio's managed implementation, you don't have to create your own developer app. For production, if you're building an end product, we recommend using your own credentials. The managed server helps you prototype fast and go from 0-1 faster. ## Step-by-step Guide ### 1. Prerequisites Before starting, make sure you have: - Composio API Key and OpenAI API Key - Primary know-how of OpenAI Agents SDK - A live Securitytrails project - Some knowledge of Python or Typescript ### 1. Getting API Keys for OpenAI and Composio OpenAI API Key - Go to the [OpenAI dashboard](https://platform.openai.com/settings/organization/api-keys) and create an API key. You'll need credits to use the models, or you can connect to another model provider. - Keep the API key safe. Composio API Key - Log in to the [Composio dashboard](https://dashboard.composio.dev?utm_source=toolkits&utm_medium=framework_docs). - Go to Settings and copy your API key. ### 2. Install dependencies Install the Composio SDK and the OpenAI Agents SDK. ```python pip install composio_openai_agents openai-agents python-dotenv ``` ```typescript npm install @composio/openai-agents @openai/agents dotenv ``` ### 3. Set up environment variables Create a .env file and add your OpenAI and Composio API keys. ```bash OPENAI_API_KEY=sk-...your-api-key COMPOSIO_API_KEY=your-api-key USER_ID=composio_user@gmail.com ``` ### 4. Import dependencies What's happening: - You're importing all necessary libraries. - The Composio and OpenAIAgentsProvider classes are imported to connect your OpenAI agent to Composio tools like Securitytrails. ```python import asyncio import os from dotenv import load_dotenv from composio import Composio from composio_openai_agents import OpenAIAgentsProvider from agents import Agent, Runner, HostedMCPTool, SQLiteSession ``` ```typescript import 'dotenv/config'; import { Composio } from '@composio/core'; import { OpenAIAgentsProvider } from '@composio/openai-agents'; import { Agent, hostedMcpTool, run, OpenAIConversationsSession } from '@openai/agents'; import * as readline from 'readline'; ``` ### 5. Set up the Composio instance No description provided. ```python load_dotenv() api_key = os.getenv("COMPOSIO_API_KEY") user_id = os.getenv("USER_ID") if not api_key: raise RuntimeError("COMPOSIO_API_KEY is not set. Create a .env file with COMPOSIO_API_KEY=your_key") # Initialize Composio composio = Composio(api_key=api_key, provider=OpenAIAgentsProvider()) ``` ```typescript dotenv.config(); const composioApiKey = process.env.COMPOSIO_API_KEY; const userId = process.env.USER_ID; if (!composioApiKey) { throw new Error('COMPOSIO_API_KEY is not set. Create a .env file with COMPOSIO_API_KEY=your_key'); } if (!userId) { throw new Error('USER_ID is not set'); } // Initialize Composio const composio = new Composio({ apiKey: composioApiKey, provider: new OpenAIAgentsProvider(), }); ``` ### 6. Create a Tool Router session What is happening: - You give the Tool Router the user id and the toolkits you want available. Here, it is only securitytrails. - The router checks the user's Securitytrails connection and prepares the MCP endpoint. - The returned session.mcp.url is the MCP URL that your agent will use to access Securitytrails. - This approach keeps things lightweight and lets the agent request Securitytrails tools only when needed during the conversation. ```python # Create a Securitytrails Tool Router session session = composio.create( user_id=user_id, toolkits=["securitytrails"] ) mcp_url = session.mcp.url ``` ```typescript // Create Tool Router session for Securitytrails const session = await composio.create(userId as string, { toolkits: ['securitytrails'], }); const mcpUrl = session.mcp.url; ``` ### 7. Configure the agent No description provided. ```python # Configure agent with MCP tool agent = Agent( name="Assistant", model="gpt-5", instructions=( "You are a helpful assistant that can access Securitytrails. " "Help users perform Securitytrails operations through natural language." ), tools=[ HostedMCPTool( tool_config={ "type": "mcp", "server_label": "tool_router", "server_url": mcp_url, "headers": {"x-api-key": api_key}, "require_approval": "never", } ) ], ) ``` ```typescript // Configure agent with MCP tool const agent = new Agent({ name: 'Assistant', model: 'gpt-5', instructions: 'You are a helpful assistant that can access Securitytrails. Help users perform Securitytrails operations through natural language.', tools: [ hostedMcpTool({ serverLabel: 'tool_router', serverUrl: mcpUrl, headers: { 'x-api-key': composioApiKey }, requireApproval: 'never', }), ], }); ``` ### 8. Start chat loop and handle conversation No description provided. ```python print("\nComposio Tool Router session created.") chat_session = SQLiteSession("conversation_openai_toolrouter") print("\nChat started. Type your requests below.") print("Commands: 'exit', 'quit', or 'q' to end\n") async def main(): try: result = await Runner.run( agent, "What can you help me with?", session=chat_session ) print(f"Assistant: {result.final_output}\n") except Exception as e: print(f"Error: {e}\n") while True: user_input = input("You: ").strip() if user_input.lower() in {"exit", "quit", "q"}: print("Goodbye!") break result = await Runner.run( agent, user_input, session=chat_session ) print(f"Assistant: {result.final_output}\n") asyncio.run(main()) ``` ```typescript // Keep conversation state across turns const conversationSession = new OpenAIConversationsSession(); // Simple CLI const rl = readline.createInterface({ input: process.stdin, output: process.stdout, prompt: 'You: ', }); console.log('\nComposio Tool Router session created.'); console.log('\nChat started. Type your requests below.'); console.log("Commands: 'exit', 'quit', or 'q' to end\n"); try { const first = await run(agent, 'What can you help me with?', { session: conversationSession }); console.log(`Assistant: ${first.finalOutput}\n`); } catch (e) { console.error('Error:', e instanceof Error ? e.message : e, '\n'); } rl.prompt(); rl.on('line', async (userInput) => { const text = userInput.trim(); if (['exit', 'quit', 'q'].includes(text.toLowerCase())) { console.log('Goodbye!'); rl.close(); process.exit(0); } if (!text) { rl.prompt(); return; } try { const result = await run(agent, text, { session: conversationSession }); console.log(`\nAssistant: ${result.finalOutput}\n`); } catch (e) { console.error('Error:', e instanceof Error ? e.message : e, '\n'); } rl.prompt(); }); rl.on('close', () => { console.log('\n👋 Session ended.'); process.exit(0); }); ``` ## Complete Code ```python import asyncio import os from dotenv import load_dotenv from composio import Composio from composio_openai_agents import OpenAIAgentsProvider from agents import Agent, Runner, HostedMCPTool, SQLiteSession load_dotenv() api_key = os.getenv("COMPOSIO_API_KEY") user_id = os.getenv("USER_ID") if not api_key: raise RuntimeError("COMPOSIO_API_KEY is not set. Create a .env file with COMPOSIO_API_KEY=your_key") # Initialize Composio composio = Composio(api_key=api_key, provider=OpenAIAgentsProvider()) # Create Tool Router session session = composio.create( user_id=user_id, toolkits=["securitytrails"] ) mcp_url = session.mcp.url # Configure agent with MCP tool agent = Agent( name="Assistant", model="gpt-5", instructions=( "You are a helpful assistant that can access Securitytrails. " "Help users perform Securitytrails operations through natural language." ), tools=[ HostedMCPTool( tool_config={ "type": "mcp", "server_label": "tool_router", "server_url": mcp_url, "headers": {"x-api-key": api_key}, "require_approval": "never", } ) ], ) print("\nComposio Tool Router session created.") chat_session = SQLiteSession("conversation_openai_toolrouter") print("\nChat started. Type your requests below.") print("Commands: 'exit', 'quit', or 'q' to end\n") async def main(): try: result = await Runner.run( agent, "What can you help me with?", session=chat_session ) print(f"Assistant: {result.final_output}\n") except Exception as e: print(f"Error: {e}\n") while True: user_input = input("You: ").strip() if user_input.lower() in {"exit", "quit", "q"}: print("Goodbye!") break result = await Runner.run( agent, user_input, session=chat_session ) print(f"Assistant: {result.final_output}\n") asyncio.run(main()) ``` ```typescript import 'dotenv/config'; import { Composio } from '@composio/core'; import { OpenAIAgentsProvider } from '@composio/openai-agents'; import { Agent, hostedMcpTool, run, OpenAIConversationsSession } from '@openai/agents'; import * as readline from 'readline'; const composioApiKey = process.env.COMPOSIO_API_KEY; const userId = process.env.USER_ID; if (!composioApiKey) { throw new Error('COMPOSIO_API_KEY is not set. Create a .env file with COMPOSIO_API_KEY=your_key'); } if (!userId) { throw new Error('USER_ID is not set'); } // Initialize Composio const composio = new Composio({ apiKey: composioApiKey, provider: new OpenAIAgentsProvider(), }); async function main() { // Create Tool Router session const session = await composio.create(userId as string, { toolkits: ['securitytrails'], }); const mcpUrl = session.mcp.url; // Configure agent with MCP tool const agent = new Agent({ name: 'Assistant', model: 'gpt-5', instructions: 'You are a helpful assistant that can access Securitytrails. Help users perform Securitytrails operations through natural language.', tools: [ hostedMcpTool({ serverLabel: 'tool_router', serverUrl: mcpUrl, headers: { 'x-api-key': composioApiKey }, requireApproval: 'never', }), ], }); // Keep conversation state across turns const conversationSession = new OpenAIConversationsSession(); // Simple CLI const rl = readline.createInterface({ input: process.stdin, output: process.stdout, prompt: 'You: ', }); console.log('\nComposio Tool Router session created.'); console.log('\nChat started. Type your requests below.'); console.log("Commands: 'exit', 'quit', or 'q' to end\n"); try { const first = await run(agent, 'What can you help me with?', { session: conversationSession }); console.log(`Assistant: ${first.finalOutput}\n`); } catch (e) { console.error('Error:', e instanceof Error ? e.message : e, '\n'); } rl.prompt(); rl.on('line', async (userInput) => { const text = userInput.trim(); if (['exit', 'quit', 'q'].includes(text.toLowerCase())) { console.log('Goodbye!'); rl.close(); process.exit(0); } if (!text) { rl.prompt(); return; } try { const result = await run(agent, text, { session: conversationSession }); console.log(`\nAssistant: ${result.finalOutput}\n`); } catch (e) { console.error('Error:', e instanceof Error ? e.message : e, '\n'); } rl.prompt(); }); rl.on('close', () => { console.log('\nSession ended.'); process.exit(0); }); } main().catch((err) => { console.error('Fatal error:', err); process.exit(1); }); ``` ## Conclusion This was a starter code for integrating Securitytrails MCP with OpenAI Agents SDK to build a functional AI agent that can interact with Securitytrails. Key features: - Hosted MCP tool integration through Composio's Tool Router - SQLite session persistence for conversation history - Simple async chat loop for interactive testing You can extend this by adding more toolkits, implementing custom business logic, or building a web interface around the agent. ## How to build Securitytrails MCP Agent with another framework - [Claude Agent SDK](https://composio.dev/toolkits/securitytrails/framework/claude-agents-sdk) - [Claude Code](https://composio.dev/toolkits/securitytrails/framework/claude-code) - [Claude Cowork](https://composio.dev/toolkits/securitytrails/framework/claude-cowork) - [Codex](https://composio.dev/toolkits/securitytrails/framework/codex) - [OpenClaw](https://composio.dev/toolkits/securitytrails/framework/openclaw) - [Hermes](https://composio.dev/toolkits/securitytrails/framework/hermes-agent) - [CLI](https://composio.dev/toolkits/securitytrails/framework/cli) - [Google ADK](https://composio.dev/toolkits/securitytrails/framework/google-adk) - [LangChain](https://composio.dev/toolkits/securitytrails/framework/langchain) - [Vercel AI SDK](https://composio.dev/toolkits/securitytrails/framework/ai-sdk) - [Mastra AI](https://composio.dev/toolkits/securitytrails/framework/mastra-ai) - [LlamaIndex](https://composio.dev/toolkits/securitytrails/framework/llama-index) - [CrewAI](https://composio.dev/toolkits/securitytrails/framework/crew-ai) ## Related Toolkits - [Excel](https://composio.dev/toolkits/excel) - Microsoft Excel is a robust spreadsheet application for organizing, analyzing, and visualizing data. It's the go-to tool for calculations, reporting, and flexible data management. - [21risk](https://composio.dev/toolkits/_21risk) - 21RISK is a web app built for easy checklist, audit, and compliance management. It streamlines risk processes so teams can focus on what matters. - [Abstract](https://composio.dev/toolkits/abstract) - Abstract provides a suite of APIs for automating data validation and enrichment tasks. It helps developers streamline workflows and ensure data quality with minimal effort. - [Addressfinder](https://composio.dev/toolkits/addressfinder) - Addressfinder is a data quality platform for verifying addresses, emails, and phone numbers. It helps you ensure accurate customer and contact data every time. - [Agenty](https://composio.dev/toolkits/agenty) - Agenty is a web scraping and automation platform for extracting data and automating browser tasks—no coding needed. It streamlines data collection, monitoring, and repetitive online actions. - [Ambee](https://composio.dev/toolkits/ambee) - Ambee is an environmental data platform providing real-time, hyperlocal APIs for air quality, weather, and pollen. Get precise environmental insights to power smarter decisions in your apps and workflows. - [Ambient weather](https://composio.dev/toolkits/ambient_weather) - Ambient Weather is a platform for personal weather stations with a robust API for accessing local, real-time, and historical weather data. Get detailed environmental insights directly from your own sensors for smarter apps and automations. - [Anonyflow](https://composio.dev/toolkits/anonyflow) - Anonyflow is a service for encryption-based data anonymization and secure data sharing. It helps organizations meet GDPR, CCPA, and HIPAA data privacy compliance requirements. - [Api ninjas](https://composio.dev/toolkits/api_ninjas) - Api ninjas offers 120+ public APIs spanning categories like weather, finance, sports, and more. Developers use it to supercharge apps with real-time data and actionable endpoints. - [Api sports](https://composio.dev/toolkits/api_sports) - Api sports is a comprehensive sports data platform covering 2,000+ competitions with live scores and 15+ years of stats. Instantly access up-to-date sports information for analysis, apps, or chatbots. - [Apify](https://composio.dev/toolkits/apify) - Apify is a cloud platform for building, deploying, and managing web scraping and automation tools called Actors. It lets you automate data extraction and workflow tasks at scale—no infrastructure headaches. - [Autom](https://composio.dev/toolkits/autom) - Autom is a lightning-fast search engine results data platform for Google, Bing, and Brave. Developers use it to access fresh, low-latency SERP data on demand. - [Beaconchain](https://composio.dev/toolkits/beaconchain) - Beaconchain is a real-time analytics platform for Ethereum 2.0's Beacon Chain. It provides detailed insights into validators, blocks, and overall network performance. - [Big data cloud](https://composio.dev/toolkits/big_data_cloud) - BigDataCloud provides APIs for geolocation, reverse geocoding, and address validation. Instantly access reliable location intelligence to enhance your applications and workflows. - [Bigpicture io](https://composio.dev/toolkits/bigpicture_io) - BigPicture.io offers APIs for accessing detailed company and profile data. Instantly enrich your applications with up-to-date insights on 20M+ businesses. - [Bitquery](https://composio.dev/toolkits/bitquery) - Bitquery is a blockchain data platform offering indexed, real-time, and historical data from 40+ blockchains via GraphQL APIs. Get unified, reliable access to complex on-chain data for analytics, trading, and research. - [Brightdata](https://composio.dev/toolkits/brightdata) - Brightdata is a leading web data platform offering advanced scraping, SERP APIs, and anti-bot tools. It lets you collect public web data at scale, bypassing blocks and friction. - [Builtwith](https://composio.dev/toolkits/builtwith) - BuiltWith is a web technology profiler that uncovers the technologies powering any website. Gain actionable insights into analytics, hosting, and content management stacks for smarter research and lead generation. - [Byteforms](https://composio.dev/toolkits/byteforms) - Byteforms is an all-in-one platform for creating forms, managing submissions, and integrating data. It streamlines workflows by centralizing form data collection and automation. - [Cabinpanda](https://composio.dev/toolkits/cabinpanda) - Cabinpanda is a data collection platform for building and managing online forms. It helps streamline how you gather, organize, and analyze responses. ## Frequently Asked Questions ### What are the differences in Tool Router MCP and Securitytrails MCP? With a standalone Securitytrails MCP server, the agents and LLMs can only access a fixed set of Securitytrails tools tied to that server. However, with the Composio Tool Router, agents can dynamically load tools from Securitytrails and many other apps based on the task at hand, all through a single MCP endpoint. ### Can I use Tool Router MCP with OpenAI Agents SDK? Yes, you can. OpenAI Agents SDK fully supports MCP integration. You get structured tool calling, message history handling, and model orchestration while Tool Router takes care of discovering and serving the right Securitytrails tools. ### Can I manage the permissions and scopes for Securitytrails while using Tool Router? Yes, absolutely. You can configure which Securitytrails scopes and actions are allowed when connecting your account to Composio. You can also bring your own OAuth credentials or API configuration so you keep full control over what the agent can do. ### How safe is my data with Composio Tool Router? All sensitive data such as tokens, keys, and configuration is fully encrypted at rest and in transit. Composio is SOC 2 Type 2 compliant and follows strict security practices so your Securitytrails data and credentials are handled as safely as possible. --- [See all toolkits](https://composio.dev/toolkits) · [Composio docs](https://docs.composio.dev/llms.txt)