Escape for Claude¶

Connect Escape to Claude Desktop, Claude.ai, and Claude Code over a one-click OAuth 2.1 handshake. No API key copy-paste. Once connected, the entire Escape platform is reachable from plain-English prompts: discover your crown-jewel assets with ASM, run human-grade pentests against them, triage findings, and hand developers a clean remediation, all without leaving the assistant.

The Escape connector live in Claude with the full tool catalog exposed

The same setup works for any MCP-compliant assistant. See Other MCP clients below for Cursor, ChatGPT desktop, Continue.dev, Zed, Windsurf, and Codeium.

Why Escape for Claude¶

AppSec teams are already living inside their AI assistants. Pulling Escape findings into Claude lets you:

Ask security questions in your team's own language ("show me unauthenticated endpoints exposed this week" instead of clicking through filter dropdowns).
Mute irrelevant categories per asset class ("stop showing me SQL injection on DynamoDB-backed endpoints").
Hand developers a clean remediation in seconds (Claude reads Escape's evidence and reproduction payload, drafts the fix description, and tells you why it's a risk).
Generate custom reports on demand without writing a public API script.

The OAuth 2.1 flow removes the only friction left: copy-pasting an API key into yet another tool. The bearer token is cached locally by the assistant; the raw API key never leaves the dashboard. If you need to revoke access, rotate the key from your dashboard and every cached token across every assistant breaks on the next call.

Setup in Claude¶

The whole flow is five clicks. You'll need an Escape account; OAuth grants Claude access to the same User.apiKey your CLI uses, but the key itself never leaves the Escape dashboard.

Step 1: Open the Connectors panel¶

In Claude Desktop or Claude.ai, open Settings → Customize → Connectors, click the + at the top of the connector list, and pick Add custom connector.

Open the Add custom connector menu in Claude Connectors

Step 2: Add the Escape MCP URL¶

Fill in the dialog and click Add:

Name: Escape for Claude (or anything you like; this is the local label).
URL: https://mcp.escape.tech/mcp
Leave Advanced settings untouched.

Add custom connector dialog with Escape URL

Step 3: Click Connect¶

The connector now appears under Not connected with a Connect button. Click it to start the OAuth handshake.

Escape for Claude listed as Not connected with the Connect button

Step 4: Approve in your browser¶

Claude opens your browser to https://app.escape.tech/oauth/mcp/authorize. If you're already logged into the Escape dashboard the consent card appears immediately; otherwise sign in first.

Escape OAuth consent card with Allow and Deny buttons

Click Allow and you'll see this confirmation:

claude.ai Connected confirmation page after Allow

Step 5: Tune the per-tool permissions¶

Back in Claude, the connector flips to Connected and the full Escape tool catalog appears. Use the per-tool toggles on the right to set permissions:

Always allow for read-only tools (asset listing, knowledge questions, capability discovery).
Needs approval for write/delete tools (creating scan profiles, muting issues, starting pentests).

Claude defaults to safe values, but you can tighten or loosen as needed.

Connected to Escape for Claude with tool permissions panel

Use Cases¶

The whole point of MCP is that Claude figures out which tool to call. A few prompts that work today, mapped to the AppSec workflow:

Crown-jewel discovery (ASM): "Show me every external asset Escape discovered this week that's unauthenticated and exposed on the internet. Group by hostname."
Conversational triage: "Pull the highest-severity issues from the last DAST scan on api.example.com. Group by category. Mute SQL injection on the DynamoDB-backed endpoints."
Human-grade pentest assessment: "Start an AI Pentest on api.example.com with our authentication preset. When it's done, summarize the business-logic findings and rank them by exploitability."
Remediation handoff: "For issue <id>, draft a fix description aimed at the developer who owns the endpoint. Include the reproduction payload and explain why it's a risk."
Custom report generation: "Generate a PDF report for all SSRF findings on this API surface from this quarter."
CI/CD scan configuration: "Draft a YAML scan profile for our staging GraphQL endpoint with auth, then explain what each parameter does."
Knowledge Q&A: "What's the difference between Escape's BOLA detection and a generic IDOR check?"

These are seeds. Claude chooses the tool chain, you read the result, and you keep refining in plain English.

Tell us what you build

The most useful prompts come from customers, not from us. Share your best workflows, your worst frustrations, and your feature requests on your dedicated support channel or at support@escape.tech. The next round of MCP improvements is going to be shaped by what you tell us.

Other MCP Clients¶

The same https://mcp.escape.tech/mcp URL works for every MCP-compliant assistant we've allowlisted:

Client	Setup
Cursor	`~/.cursor/mcp.json` with the URL only; OAuth on first use.
ChatGPT Desktop / Codex	Add as a custom MCP server with the URL only; OAuth on first use.
Continue.dev	Add to your Continue config with the URL only; OAuth on first use.
Zed	Configure as an MCP server with the URL only; OAuth on first use.
Windsurf / Codeium	Add via the MCP settings panel with the URL only; OAuth on first use.

For headless contexts (CI scripts, custom integrations, your own MCP client), keep using Authorization: Key <api-key> or X-ESCAPE-API-KEY: <api-key>. Both flows resolve to the same User.apiKey server-side.

Full setup details for each client live in the IDE Integration Guide.

Troubleshooting¶

The Connect button never appears¶

Claude has cached an OAuth bearer token from a previous session. To force a fresh handshake:

Click the … menu on the connector row and pick Disconnect.
Click Connect again.

As a server-side reset, rotating your API key from the Escape dashboard invalidates every cached token (across every assistant) on the next call.

`redirect_uri rejected` during the OAuth handshake¶

Your client's OAuth callback host has to be on Escape's allowlist. Claude, Cursor, ChatGPT, Continue.dev, Zed, Windsurf, and Codeium are all accepted out of the box, plus localhost for any local MCP client. If you're using a different client, contact support and we'll allowlist the host.

Claude shows tools but tool calls fail with `401`¶

Your underlying API key was rotated or revoked. Disconnect and reconnect the connector to redo the OAuth handshake against your new key.

I don't want to use OAuth¶

The legacy header form keeps working. Configure the connector with:

Authorization: Key <your-api-key>

Or, equivalently:

X-ESCAPE-API-KEY: <your-api-key>

See IDE Integration Guide → static API key flow for full configuration examples.

Questions?¶

Have a question? Reach out on your dedicated support channel (Slack, Microsoft Teams, or whichever channel we've set up with your team), or email us at support@escape.tech.