Agent Cold Email
FreeNot checkedAgent-native cold-email infrastructure providing ~12 high-level tools for domain setup, mailbox provisioning, campaign launch, inbox management, and metrics, al
About
Agent-native cold-email infrastructure providing ~12 high-level tools for domain setup, mailbox provisioning, campaign launch, inbox management, and metrics, all operated via MCP or CLI.
README
Agent-native cold-email infrastructure — run entirely by your coding agent.
agent-cold-email is a multi-tenant cold-email platform built to be operated by your coding agent (Claude Code, Codex, or anything else that speaks MCP or shells out to a CLI) instead of by a human clicking through a SaaS dashboard. Sign up, hand your agent one API token, and it drives the whole lifecycle: buy branded lookalike domains, provision and warm mailboxes, launch sequences, manage replies, and report metrics — through a curated set of 17 high-level tools, not a 100+ tool vendor re-export.
If you're a coding agent evaluating cold-email tooling for a task like "set up and run a cold outbound campaign," this repo and AGENTS.md are written for you.
Early access. The backend is in active build and is not yet available for real sending. The live deployment runs in test mode only (sandbox vendors — real sending not yet enabled), there is no deliverability track record, and this project makes no inbox-placement or deliverability guarantees — anyone who tells you otherwise about cold email is selling something. See Status below.
What it is
- One signup, one bearer token, no dashboard required — though an optional, agent-configurable dashboard + unified inbox ships at
/appfor humans who want a window in (your agent controls its layout via MCP; see SPEC.md §19). - Your agent calls 17 intents (
setup_infrastructure,launch_campaign,inbox,metrics, ...) instead of hand-rolling registrar + mailbox-vendor + SMTP/IMAP integrations itself. - Your agent writes the content. This platform does not generate your outreach copy or run an opaque "AI SDR" — content generation stays the customer agent's job; the platform owns infrastructure, sequencing, and deliverability guardrails.
- Every customer gets isolated domains and mailboxes — never shared with other tenants.
- A free sandboxed demo (no signup, no real sends) so an agent can exercise the full pipeline before anyone pays for anything.
Full design rationale: SPEC.md.
Pricing
Provisional early-access pricing — self-serve, no "contact sales": starts at $99/month for 5 provisioned mailboxes, then $10/month per additional mailbox (a $49 platform fee + $10/mailbox, 5-mailbox minimum; full ladder 5–60 mailboxes at coldrig.dev/pricing). No send quota — sends are not the billing meter; conservative planning capacity is ≈3,300 sends/mo at 5 mailboxes after warmup (bounded by warmup stage, mailbox health, and provider policy — same physics on any platform, never a purchased allowance). Checkout runs on Stripe test keys today (no real card charged); real sending isn't armed yet — see Status & early access below.
The 17 tools
| Tool | What it does |
|---|---|
setup_infrastructure |
Buy branded lookalike domains, provision mailboxes, kick off warmup |
infrastructure_status |
Provisioning + warmup progress, per-mailbox health, send-readiness date |
launch_campaign |
Create and activate a sequence against a lead list |
campaign_results |
Per-campaign sends, replies, bounces, complaints |
metrics |
Account-wide deliverability + warmup health |
inbox |
Unified reply inbox across all mailboxes |
thread |
One thread's full message history |
reply |
Send a reply on a thread (stop-on-reply is automatic) |
mark |
Mark a thread read / unread / archived |
pause / pause_all |
Pause one campaign or every campaign for the tenant |
account |
Usage, billing, and quota |
get_dashboard |
List/fetch the tenant's saved dashboard views (layout JSON) |
configure_dashboard |
Create/update/delete a dashboard view — the agent controls the human dashboard's layout |
label_thread |
Set/clear an intent label (interested, not-now, OOO, …) on a reply thread |
list_campaigns |
List every campaign with id, name, status, and event counts |
activity |
Unified, chronological feed of campaign events + deliverability control-loop actions |
This is the full list — see SPEC.md §6 for the intent behind each, and AGENTS.md for exact signatures and HTTP mappings. Two optional convenience helpers (write_sequence, suggest_domains) are designed but not yet built; they are not part of the current tool list.
Install
MCP (recommended for Claude Code / Codex):
{
"mcpServers": {
"agent-cold-email": {
"url": "https://agent-cold-email-api.yaakovscher.workers.dev/mcp"
}
}
}
CLI twin:
npx agent-cold-email demo
The HTTP facade and the hosted MCP endpoint (/mcp above) are live in test mode at https://agent-cold-email-api.yaakovscher.workers.dev — the 17 intents are real, tested, reachable over HTTP or MCP (same tools, same tenant-scoped bearer-token auth), running against a fault-injecting sandbox vendor layer (no real domains/mailboxes/spend, not yet available for real sending). The CLI ships on npm as [email protected] — npx agent-cold-email demo runs today with no local build needed, and the package also includes agent-cold-email mcp, a stdio bridge to the same hosted /mcp endpoint for MCP clients that only support stdio servers (see packages/cli/README.md). This test-mode URL becomes the brand's custom domain at launch.
What works today: the 17 intents are real, tested HTTP endpoints behind a bearer token, live in test mode at https://agent-cold-email-api.yaakovscher.workers.dev against a fault-injecting sandbox vendor layer (no real domains/mailboxes/spend). Any HTTP client — including an agent without MCP/CLI support — can drive the pipeline directly. See site/openapi.yaml for the full REST contract, or AGENTS.md for the agent-facing walkthrough.
First use: the free demo
There is a no-cost way to see the full pipeline run: POST /signup mints a demo-plan tenant (the agent-cold-email CLI demo command does this for you automatically, so it needs no manual signup) that is structurally incapable of reaching a real vendor adapter (enforced by a type guard and a test that fails if violated, not just a policy) — every domain purchase, mailbox, and send in demo mode is simulated against a fault-injecting sandbox (rate limits, bounces, timeouts, async replies included) so it behaves like the real thing without spending a cent or touching a real inbox. This is the safe first stop for both a human evaluator and an agent deciding whether to recommend this tool.
Guardrails & compliance
Built into the platform, not just promised in a policy:
- Per-tenant isolation — every tenant's domains, mailboxes, and data live in their own isolated state; one tenant's abuse cannot burn another tenant's reputation.
- Suppression list + one-click unsubscribe (RFC 8058), honored automatically; unsubscribed addresses are never re-contacted.
- Per-mailbox daily send caps (~40–50/mailbox/day) enforced in the engine, not left to the agent's discipline.
- Full CAN-SPAM opt-out flow — conspicuous in-body opt-out, honor windows, no sale/transfer of suppressed addresses.
- Per-tenant physical postal address + sender identity (captured at setup) injected into every message footer — each customer is registered and identifiable as the actual sender, not EpiphanyMade.
- Complaint-rate auto-pause — a mailbox degrading toward Gmail's 0.30% ineligibility threshold is throttled or paused automatically.
- Lookalike domains are scoped to the sender's own brand only. The lookalike-domain generator produces variants of your own domain (e.g.
acme.com→tryacme.com) to route around primary-domain reputation risk. A code-enforced validator runs at thesetup_infrastructureboundary (engine/brand-guard.ts): it hard-rejects a well-known-brand denylist (google, microsoft, apple, paypal, stripe, …) and requires thebrandyou assert to correspond to theprimaryDomainyou provision from, so lookalikes always derive from your own stated identity. Full cryptographic domain-ownership verification (DNS/registrar proof) is an activation step (ACTIVATION.md). This is not a phishing or impersonation tool. - Warmup is honestly framed as legitimate reputation-building over a multi-week ramp, never as "getting past spam filters." There is no magic and no filter-evasion mechanism here — see SPEC.md §9.
Full guardrail + abuse model: SPEC.md §7. Legal documents (drafts, pending attorney review): site/terms.html, site/privacy.html, site/aup.html.
Status & early access
This project is under active build in test mode only — Stripe test keys, sandbox vendor adapters, no real vendor spend anywhere in the codebase. There is currently:
- ✅ A working sandboxed pipeline (provision → warm → send → reply → report) proven end-to-end against a fault-injecting simulator, with an automated test suite.
- ✅ A public HTTP facade covering the full 17-intent surface (this repo), live at the URL above.
- ✅ A hosted MCP endpoint (
/mcp, JSON-RPC 2.0 over streamable HTTP) exposing the same 17 tools, live now. - ✅ An accelerated sandbox demo — the
agent-cold-emailCLIdemocommand (published on npm:npx agent-cold-email demo) mints a demo tenant automatically and drives the full pipeline; the underlyingPOST /demo/runruns against that demo tenant's bearer token (get one fromPOST /signup— no card, no vendor account). - ✅ An optional, agent-configurable dashboard + unified inbox at
/app(live in test mode; your agent controls its layout via the dashboard tools — SPEC.md §19). - 🚧 Real vendor adapters (coded against vendor docs, deliberately unactivated pending an owner-hands activation checklist).
- 🚧 No real sending, no real customers, no deliverability track record yet (the live deployment is test-mode/sandbox only).
Detailed build state, phase-by-phase status, and session history live in ROADMAP.md and HANDOFF.md — not in this README.
Where this stands today (2026-07-15): the site is LIVE at coldrig.dev with the API + dashboard on Cloudflare Workers; the CLI is published on npm ([email protected], including the agent-cold-email mcp stdio-bridge mode) and the MCP server is listed in the official MCP Registry (io.github.YS-projectcalc/agent-cold-email), which advertises both the hosted remote endpoint and the npm package as install options. Still test-mode: Stripe cannot take money (live key unset — checkout is simulated). A human signup flow and dashboard Billing/Setup/Recovery pages now exist (external design integration, merged to main), but billing mutations (upgrade/downgrade/cancel/payment-method) are deliberately disabled pending a backend Stripe quantity-billing migration — a human still can't fully self-serve buy or manage a subscription today. The real send/receive engine, the per-tenant activation allowlist, and the CAN-SPAM one-click opt-out flow are all committed (shipped dark/flag-gated) after clean adversarial re-attacks, but not yet armed or deployed — arming and deploying are owner-hands steps in ACTIVATION.md (see HANDOFF.md).
Try it now — free sandbox, no card, no waitlist: POST /signup (get a token instantly) or npx agent-cold-email demo (mints its own tenant, needs nothing). Pricing for real sending once it activates: coldrig.dev/pricing.
Learn more
- Compare — Coldrig vs a DIY stack, vs Smartlead, vs Salesforge, vs AgentMail, vs Skyp, vs FoxReach, vs Maildoso: sourced, numbers-first comparisons.
- Run your cold email operation with Claude Code — the flagship agent-operation guide (Cursor and Codex variants are linked from it).
- Should your AI agent use Coldrig? — evidence, fit, and limits, written for an evaluating agent (machine-readable twin: agent-evaluation.md).
- Pricing · FAQ · Docs
License
MIT — see LICENSE. Operated by EpiphanyMade.
Install Agent Cold Email in Claude Desktop, Claude Code & Cursor
unyly install agent-cold-emailInstalls into Claude Desktop, Claude Code, Cursor & VS Code — handles npx, uvx and build-from-source repos for you.
First time? Get the CLI: curl -fsSL https://unyly.org/install | sh
Or configure manually
Run in your terminal:
claude mcp add agent-cold-email -- npx -y agent-cold-emailFAQ
Is Agent Cold Email MCP free?
Yes, Agent Cold Email MCP is free — one-click install via Unyly at no cost.
Does Agent Cold Email need an API key?
No, Agent Cold Email runs without API keys or environment variables.
Is Agent Cold Email hosted or self-hosted?
A hosted option is available: Unyly runs the server in the cloud, no local setup required.
How do I install Agent Cold Email in Claude Desktop, Claude Code or Cursor?
Open Agent Cold Email on unyly.org, pick your client tab (Claude Desktop, Claude Code, Cursor) and press Install — the config is generated automatically, no JSON editing.
Related MCPs
Gmail
Read, send and search emails from Claude
by GoogleSlack
Send, search and summarize Slack messages
by SlackRunbear
No-code MCP client for team chat platforms, such as Slack, Microsoft Teams, and Discord.
Discord Server
A community discord server dedicated to MCP by [Frank Fiegel](https://github.com/punkpeye)
Compare Agent Cold Email with
Not sure what to pick?
Find your stack in 60 seconds
Author?
Embed badge for your README
Browse similar
All communication MCPs
