Mailgun integration

Mailgun integration for AI agents.

Mailgun integration for AI agents with secure authentication and server-side credential injection. Open Connector runs the OAuth, seals the token in an encrypted vault, and serves Mailgun tools to your agent over MCP or a typed API — credentials injected server-side, every call audited, nothing leaving your infrastructure. Open source (AGPL-3.0) and self-hostable.

What your agents can do

Real Mailgun actions, managed and audited.

Your user connects Mailgun once; your agent can then use Mailgun APIs to send and track email, manage domains, mailing lists, suppressions, routes, webhooks, email validation, deliverability, and pre-send inspection — scoped to the OAuth permissions you grant and the tool allowlist you configure. Every action is least-privilege and written to a tamper-evident audit trail.

  1. 1

    Your user grants Mailgun access once (OAuth) — the token lands in the vault.

  2. 2

    Your agent calls a tool over MCP or the typed API; Open Connector injects the credential server-side.

  3. 3

    Every routed call appends a hash-chained audit record — nothing leaves your infra.

Available tools

Mailgun tool surface.

The following managed tool groups are exposed by this integration. Each item is surfaced as tool metadata so agents can discover safe actions and build reliable workflows.

Mailgun tools
Use Mailgun APIs to send and track email, manage domains, mailing lists, suppressions, routes, webhooks, email validation, deliverability, and pre-send inspection.
FAQ

Mailgun integration, answered

How do AI agents use Mailgun through Open Connector?
Your user connects Mailgun once with one of its cataloged authentication methods. Open Connector stores the credential in an encrypted vault and exposes Mailgun tools to your agent over MCP or a typed API, with credentials injected server-side on each call.
Is this a Mailgun MCP server?
Yes. Open Connector can serve Mailgun as a named MCP server with a scoped allowlist and a per-user connection URL, so any MCP client can call Mailgun actions with credentials injected server-side.
Where do Mailgun credentials live?
In your own infrastructure. Open Connector keeps credentials in its own vault and injects them at call time, so they never leave your environment.

Give your agents Mailgun — keep the keys.

Open source, self-hostable, with Mailgun credentials that never leave your infrastructure. Run it from source today.