Connect Signpath to AI agents

Connect Signpath to Claude, Codex, Cursor, or other AI agents for your entire team. Metorial security, governance, observability, and gives your team a unified Magic MCP url to connect.

Supported Tools

get_certificate

Get Certificate

Retrieve detailed metadata for a specific certificate by its slug, or retrieve the certificate associated with a specific project's signing policy. Use certificateSlug for direct lookup, or projectSlug + signingPolicySlug to get the certificate linked to a signing policy.

get_signing_request

Get Signing Request

Retrieve the status and details of a signing request by its ID. Returns the current status, project info, signing policy info, artifact links, origin data, and parameters. Use this to check whether a signing request has completed, is waiting for approval, or has failed.

get_project

Get Project

Retrieve detailed information about a specific project by its slug. Returns the project's signing policies, artifact configurations, and other settings.

approve_deny_signing_request

Approve or Deny Signing Request

Approve or deny a signing request that is waiting for approval. This is typically used for release-signing workflows that require manual approval before processing. The signing request must be in the **WaitingForApproval** status.

resubmit_signing_request

Resubmit Signing Request

Resubmit an existing signing request with a different signing policy. Useful for release candidates where you want to postpone the release decision. Origin verification is evaluated based on the original request's origin data, preserving integrity even when fully detached from the build process.

get_signing_policies

Get Signing Policies

Retrieve signing policy information including the associated X.509 certificate and RSA key parameters. Filter by project and/or signing policy slug. If no filters are provided, returns all signing policies where the authenticated user is assigned as Submitter.

submit_signing_request

Submit Signing Request

Submit a new code signing request to SignPath. Provide the project, signing policy, and optionally an artifact configuration. Supports fast signing requests for hash data that return results immediately without queuing. User-defined parameters can be passed as key-value pairs.

list_projects

List Projects

List all projects in the organization. Returns project details including their signing policies and artifact configurations. Use this to discover available projects and their slugs for signing request submission.

get_audit_log

Get Audit Log

Retrieve audit log events from SignPath. Choose between general events (administrative changes to users, certificates, projects, signing policies, artifact configurations) or signing request events specifically. This API is in preview.

list_certificates

List Certificates

List all certificates in the organization. Returns certificate metadata including name, thumbprint, active status, and certificate chain information.

More integrations teams use with Signpath

GitHub

Manage repositories, issues, and pull requests. Create and configure branches, star repositories, review code, and merge changes. Automate CI/CD workflows with GitHub Actions, manage workflow runs, secrets, and artifacts. Track issues with labels, milestones, and assignees. Search across code, repositories, issues, and users. Manage organizations, teams, and memberships. Create and manage projects, gists, packages, deployments, and environments. Access security alerts including code scanning, secret scanning, and Dependabot alerts. Read and write file contents in repositories. Manage webhooks, notifications, and codespaces.

Sharepoint

Manage SharePoint sites, document libraries, lists, and files. Create, read, update, and delete lists and list items with custom columns. Upload, download, move, copy, and version files in document libraries. Search across sites, files, folders, lists, and list items using Microsoft Search. Manage permissions at site, list, and item levels with granular access control. Define and manage content types and site columns. Subscribe to webhooks for list and library change notifications. Retrieve site properties and search for sites across Microsoft 365.

Salesforce

Manage CRM data including Accounts, Contacts, Leads, Opportunities, Cases, and custom objects. Create, read, update, and delete records. Query data using SOQL and search across objects using SOSL. Perform bulk data operations for large-scale imports, exports, and migrations. Execute composite requests to batch multiple operations in a single API call. Access analytics, reports, and dashboards. Manage files and attachments associated with records. Interact with Chatter feeds, posts, and groups for social collaboration. Subscribe to real-time change events via Change Data Capture and Platform Events. Manage org metadata including custom objects, fields, layouts, and workflows. Query data using GraphQL for precise data retrieval across related objects.

Airtable

Create, read, update, and delete records in Airtable bases and tables. Manage base schemas including creating tables and fields. Filter records using formulas, sort by fields, and scope queries to specific views. Upsert records to find, create, or update in a single call. Upload attachments to records, read and write record comments, list accessible bases, and receive real-time base change events through webhooks.

Bitbucket

Manage Git repositories, pull requests, and CI/CD pipelines on Bitbucket Cloud. Create, fork, and configure repositories within workspaces and projects. Create, review, approve, merge, and decline pull requests with inline code comments. Browse source code, list commits, and manage branches and tags. Track issues with the built-in issue tracker. Trigger, monitor, and manage Bitbucket Pipelines. List workspace members, configure repository default reviewers and branch restrictions, create and manage repository webhooks, and search code across repositories.

Heroku

Deploy, manage, and scale applications on Heroku's cloud platform. Create and configure apps, scale dynos, provision add-ons (databases, caching, etc.), manage configuration variables, build and release code, add custom domains and SSL certificates, manage collaborators and team permissions, configure pipelines for continuous delivery, set up log drains, and sync data with Salesforce via Heroku Connect. Subscribe to webhooks for real-time notifications on app changes, builds, releases, dyno lifecycle events, and more.

Technical notes for Signpath

Submit, manage, and track code signing requests for software artifacts (e.g., Authenticode, Java, macOS, Docker, Office macros). Approve or deny signing requests, resubmit requests with different signing policies, and retrieve signed artifacts. Manage projects, signing policies, artifact configurations, and certificates. Download X.509 certificates and GPG public keys. Query audit logs for signing and administrative changes. Receive webhook notifications on signing request status changes (completed, failed, denied, canceled).

Connect Signpath to production AI agents

See how Metorial gives Signpath access the governance, tracing, and security controls teams need.

Frequently asked questions

Common questions about connecting Signpath to AI agents with Metorial.

  1. Can Metorial connect Signpath to AI agents?
    Yes. Metorial connects AI agents to Signpath through a governed integration layer, so teams can use the provider while keeping access controlled and observable.
  2. Metorial is MCP compatible and lets teams expose approved provider tools to MCP-capable agents and clients through a controlled access layer.
  3. Metorial applies policies across users, groups, providers, agents, and individual tools, then records the context around every agent interaction.
  4. Yes. Metorial records provider activity so teams can inspect tool calls, troubleshoot integrations, and give security teams the visibility they need.