# How to connect Signpath to Claude Cowork

```json
{
  "title": "How to connect Signpath to Claude Cowork",
  "toolkit": "Signpath",
  "toolkit_slug": "signpath",
  "framework": "Claude Cowork",
  "framework_slug": "claude-cowork",
  "url": "https://composio.dev/toolkits/signpath/framework/claude-cowork",
  "markdown_url": "https://composio.dev/toolkits/signpath/framework/claude-cowork.md",
  "updated_at": "2026-05-12T10:26:12.005Z"
}
```

## Introduction

Cowork is Anthropic's AI agent for knowledge work. Think of it as Claude Code for everything else. It works autonomously with your computer, local files, and applications to accomplish complex tasks.
This guide walks you through the easiest and most secure way to connect your Signpath account to Cowork via Composio Connect, enabling it to list all available code signing certificates, show all projects for your organization, get details of current signing policies, and more such actions on your behalf without compromising your account security.

## Also integrate Signpath with

- [OpenAI Agents SDK](https://composio.dev/toolkits/signpath/framework/open-ai-agents-sdk)
- [Claude Agent SDK](https://composio.dev/toolkits/signpath/framework/claude-agents-sdk)
- [Claude Code](https://composio.dev/toolkits/signpath/framework/claude-code)
- [Codex](https://composio.dev/toolkits/signpath/framework/codex)
- [OpenClaw](https://composio.dev/toolkits/signpath/framework/openclaw)
- [Hermes](https://composio.dev/toolkits/signpath/framework/hermes-agent)
- [CLI](https://composio.dev/toolkits/signpath/framework/cli)
- [Google ADK](https://composio.dev/toolkits/signpath/framework/google-adk)
- [LangChain](https://composio.dev/toolkits/signpath/framework/langchain)
- [Vercel AI SDK](https://composio.dev/toolkits/signpath/framework/ai-sdk)
- [Mastra AI](https://composio.dev/toolkits/signpath/framework/mastra-ai)
- [LlamaIndex](https://composio.dev/toolkits/signpath/framework/llama-index)
- [CrewAI](https://composio.dev/toolkits/signpath/framework/crew-ai)

## Connect Signpath to Claude Cowork

### Connecting Signpath to Claude Cowork
1. Open Customize
In Claude Desktop, click Customize in the left sidebar, then select Connectors and click the + icon at the top.
2. Add the Composio MCP server
Click Add custom connector and paste in the Composio MCP server URL:

```bash
https://connect.composio.dev/mcp
```

## What is Claude Cowork?

Claude Cowork is Anthropic's agent for general knowledge work. It can use your computer, files, and connected applications to complete longer-running tasks across your work tools.
With Composio Connect, Cowork can securely access apps like Signpath through MCP without you sharing account credentials directly with the agent.

## What is the Signpath MCP server, and what's possible with it?

The Signpath MCP server is an implementation of the Model Context Protocol that connects your AI agent and assistants like Claude, Cursor, etc directly to your Signpath account. It provides structured and secure access to your code signing workflows, so your agent can list certificates, retrieve project details, access signing policies, and check system metadata automatically on your behalf.
- Certificate management and discovery: Quickly list all available code signing certificates within your organization, making it easy for your agent to select the right certificate for each workflow.
- Automated project listing and tracking: Let your agent fetch and paginate through all Signpath projects, helping you organize, monitor, and automate signing across multiple software projects.
- Signing policy insights and selection: Effortlessly retrieve detailed information about your organization’s signing policies, so your agent can ensure every artifact is signed according to security best practices.
- System information and environment awareness: Instantly access Signpath system details, including product info, API version, and environment metadata, to keep your agent up to date with the latest platform capabilities.

## Supported Tools

| Tool slug | Name | Description |
|---|---|---|
| `SIGNPATH_GET_HEALTH_CHECK` | Get Health Check | Tool to check if the SignPath API is healthy and operational. Use this to verify API availability before performing other operations. |
| `SIGNPATH_LIST_CERTIFICATES` | List Certificates | Retrieve all certificates available in a SignPath organization. Use this to discover certificate IDs needed for signing operations. Requires a valid organization_id which can be obtained from your SignPath account settings. |
| `SIGNPATH_LIST_PROJECTS` | List Projects | Tool to list all projects for an organization. Use after confirming the organization ID to retrieve and paginate project records. |
| `SIGNPATH_RETRIEVE_SIGNING_POLICY_DETAILS` | Retrieve Signing Policy Details | Retrieve signing policy details for code signing operations. Returns certificate info, RSA key parameters, and policy metadata for the authenticated user's accessible signing policies. Without filters, returns all policies where the user is assigned as Submitter. |
| `SIGNPATH_RETRIEVE_SYSTEM_INFO` | Retrieve System Info | Retrieves SignPath system information including the application version and the web UI base URL. Use this tool to verify the SignPath installation version or to obtain the web interface URL. |

## Supported Triggers

None listed.

## Creating MCP Server - Stand-alone vs Composio SDK

The Signpath MCP server connects Claude Cowork to your Signpath account through Composio. Once connected, Cowork can use the available Signpath tools and triggers to complete tasks on your behalf.

## Complete Code

None listed.

## How to build Signpath MCP Agent with another framework

- [OpenAI Agents SDK](https://composio.dev/toolkits/signpath/framework/open-ai-agents-sdk)
- [Claude Agent SDK](https://composio.dev/toolkits/signpath/framework/claude-agents-sdk)
- [Claude Code](https://composio.dev/toolkits/signpath/framework/claude-code)
- [Codex](https://composio.dev/toolkits/signpath/framework/codex)
- [OpenClaw](https://composio.dev/toolkits/signpath/framework/openclaw)
- [Hermes](https://composio.dev/toolkits/signpath/framework/hermes-agent)
- [CLI](https://composio.dev/toolkits/signpath/framework/cli)
- [Google ADK](https://composio.dev/toolkits/signpath/framework/google-adk)
- [LangChain](https://composio.dev/toolkits/signpath/framework/langchain)
- [Vercel AI SDK](https://composio.dev/toolkits/signpath/framework/ai-sdk)
- [Mastra AI](https://composio.dev/toolkits/signpath/framework/mastra-ai)
- [LlamaIndex](https://composio.dev/toolkits/signpath/framework/llama-index)
- [CrewAI](https://composio.dev/toolkits/signpath/framework/crew-ai)

## Related Toolkits

- [Supabase](https://composio.dev/toolkits/supabase) - Supabase is an open-source backend platform offering scalable Postgres databases, authentication, storage, and real-time APIs. It lets developers build modern apps without managing infrastructure.
- [Codeinterpreter](https://composio.dev/toolkits/codeinterpreter) - Codeinterpreter is a Python-based coding environment with built-in data analysis and visualization. It lets you instantly run scripts, plot results, and prototype solutions inside supported platforms.
- [GitHub](https://composio.dev/toolkits/github) - GitHub is a code hosting platform for version control and collaborative software development. It streamlines project management, code review, and team workflows in one place.
- [Ably](https://composio.dev/toolkits/ably) - Ably is a real-time messaging platform for live chat and data sync in modern apps. It offers global scale and rock-solid reliability for seamless, instant experiences.
- [Abuselpdb](https://composio.dev/toolkits/abuselpdb) - Abuselpdb is a central database for reporting and checking IPs linked to malicious online activity. Use it to quickly identify and report suspicious or abusive IP addresses.
- [Alchemy](https://composio.dev/toolkits/alchemy) - Alchemy is a blockchain development platform offering APIs and tools for Ethereum apps. It simplifies building and scaling Web3 projects with robust infrastructure.
- [Algolia](https://composio.dev/toolkits/algolia) - Algolia is a hosted search API that powers lightning-fast, relevant search experiences for web and mobile apps. It helps developers deliver instant, typo-tolerant, and scalable search without complex infrastructure.
- [Anchor browser](https://composio.dev/toolkits/anchor_browser) - Anchor browser is a developer platform for AI-powered web automation. It transforms complex browser actions into easy API endpoints for streamlined web interaction.
- [Apiflash](https://composio.dev/toolkits/apiflash) - Apiflash is a website screenshot API for programmatically capturing web pages. It delivers high-quality screenshots on demand for automation, monitoring, or reporting.
- [Apiverve](https://composio.dev/toolkits/apiverve) - Apiverve delivers a suite of powerful APIs that simplify integration for developers. It's designed for reliability and scalability so you can build faster, smarter applications without the integration headache.
- [Appcircle](https://composio.dev/toolkits/appcircle) - Appcircle is an enterprise-grade mobile CI/CD platform for building, testing, and publishing mobile apps. It streamlines mobile DevOps so teams ship faster and with more confidence.
- [Appdrag](https://composio.dev/toolkits/appdrag) - Appdrag is a cloud platform for building websites, APIs, and databases with drag-and-drop tools and code editing. It accelerates development and iteration by combining hosting, database management, and low-code features in one place.
- [Appveyor](https://composio.dev/toolkits/appveyor) - AppVeyor is a cloud-based continuous integration service for building, testing, and deploying applications. It helps developers automate and streamline their software delivery pipelines.
- [Backendless](https://composio.dev/toolkits/backendless) - Backendless is a backend-as-a-service platform for mobile and web apps, offering database, file storage, user authentication, and APIs. It helps developers ship scalable applications faster without managing server infrastructure.
- [Baserow](https://composio.dev/toolkits/baserow) - Baserow is an open-source no-code database platform for building collaborative data apps. It makes it easy for teams to organize data and automate workflows without writing code.
- [Bench](https://composio.dev/toolkits/bench) - Bench is a benchmarking tool for automated performance measurement and analysis. It helps you quickly evaluate, compare, and track your systems or workflows.
- [Better stack](https://composio.dev/toolkits/better_stack) - Better Stack is a monitoring, logging, and incident management solution for apps and services. It helps teams ensure application reliability and performance with real-time insights.
- [Bitbucket](https://composio.dev/toolkits/bitbucket) - Bitbucket is a Git-based code hosting and collaboration platform for teams. It enables secure repository management and streamlined code reviews.
- [Blazemeter](https://composio.dev/toolkits/blazemeter) - Blazemeter is a continuous testing platform for web and mobile app performance. It empowers teams to automate and analyze large-scale tests with ease.
- [Blocknative](https://composio.dev/toolkits/blocknative) - Blocknative delivers real-time mempool monitoring and transaction management for public blockchains. Instantly track pending transactions and optimize blockchain interactions with live data.

## Frequently Asked Questions

### What are the differences in Tool Router MCP and Signpath MCP?

With a standalone Signpath MCP server, the agents and LLMs can only access a fixed set of Signpath tools tied to that server. However, with the Composio Tool Router, agents can dynamically load tools from Signpath and many other apps based on the task at hand, all through a single MCP endpoint.

### Can I use Tool Router MCP with Claude Cowork?

Yes, you can. Claude Cowork fully supports MCP integration. You get structured tool calling, message history handling, and model orchestration while Tool Router takes care of discovering and serving the right Signpath tools.

### Can I manage the permissions and scopes for Signpath while using Tool Router?

Yes, absolutely. You can configure which Signpath scopes and actions are allowed when connecting your account to Composio. You can also bring your own OAuth credentials or API configuration so you keep full control over what the agent can do.

### How safe is my data with Composio Tool Router?

All sensitive data such as tokens, keys, and configuration is fully encrypted at rest and in transit. Composio is SOC 2 Type 2 compliant and follows strict security practices so your Signpath data and credentials are handled as safely as possible.

---
[See all toolkits](https://composio.dev/toolkits) · [Composio docs](https://docs.composio.dev/llms.txt)