Connect
Optimize
Secure
MCP servers for Snowflake Cortex
MCP Servers
for Snowflake Cortex agents
Let your Cortex agent act across 270+ enterprise SaaS — without leaving Snowflake. No auth hassle. Token-efficient by design. Security and governance built-in.
What is an MCP gateway?
MCP gateways are real-time integration infrastructure connecting AI
agents to the SaaS apps they need to use. They expose one MCP server
instead of many to the AI agent. They are built on the open Model Context Protocol (opens in new tab), and
are also called MCP aggregators.
MCP gateways use whatever communication protocol each MCP server requires
(stdio, SSE, streamable HTTP), maximize the action coverage agents can
call, and handle authentication, agent action scoping, tool-call
optimization, agent security, and tool-call observability.
StackOne's MCP gateway — SOC2, HIPAA, CCPA, and GDPR compliant — brings this infrastructure to 270+ pre-built SaaS integrations exposing 18,000+ actions, reachable from your Cortex agent through one URL.
Act across all your apps
from inside Snowflake
One MCP gateway, every enterprise SaaS your Cortex agent
could ever need to act on.
Coverage
270+ connectors.
18,000+ tested actions.
Every action is built and maintained by StackOne, tested against the live API, and updated when vendors change their endpoints.
Browse all connectors
Trust
Auth & governance,
simplified.
StackOne handles OAuth, API keys, refresh, and scopes for every connector, giving enterprise IT full control through auth configs in a multi-tenant setup.
Agent Auth
Performance
Agent context window,
managed.
Tool Discovery and Code Mode keep the Cortex agent's context lean — only relevant actions, no raw response noise. Sharper agents, lower token costs.
Tools Discovery
Security
Agent security,
built in.
Defender scans every MCP tool response for prompt injection in real time. Up to 97.44%¹ detection, 0.2% false positives. SOC2, HIPAA, CCPA, GDPR compliant.
Prompt Injection Defense¹ Jayavibhav test, 65,000 samples.
Connect the Cortex agent
to more apps in 4 steps
From auth config to first agent tool call in 5 minutes.
1
Add StackOne as a Custom MCP server in Snowflake.
In Snowsight, open AI & ML → Agents → Settings → Tools and Connectors, click Browse Connectors, choose Custom MCP Server, paste the StackOne gateway URL with OAuth 2.1, and add to your agent.
Snowsight → AI & ML → Agents → Settings → Tools and Connectors
Custom MCP Server
Server URL
https://api.stackone.com/mcp/{...}
Authorization endpoint
https://api.stackone.com/oauth/authorize
Authentication
OAuth 2.1 (DCR)
Add to Agent
2
Connect each SaaS integration in StackOne.
OAuth or API key per app, done once in your dashboard. Tokens stay server-side.
3
Scope agent actions.
Read-only, specific objects, or per-role exposure. Toggle from the StackOne dashboard.
Query warehouse tables (enabled)
Read Cortex Search index (enabled)
Append to staging table (enabled)
Modify production schema (disabled)
Drop table (disabled)
4
Ask your Cortex agent in plain English.
StackOne maps your prompt to the right action in the right system. Done.
"For our top 50 enterprise accounts, pull live HubSpot deal stage and Intercom open-ticket count, then write to analytics.customer_360.live_status."
Snowflake Cortex hubspot_search_deals
Completed
intercom_list_conversations
Completed
status: open
group_by: company_id
result: open-ticket counts joined to 50 accounts
Wrote 50 enriched rows to analytics.customer_360.live_status. Deal stage from HubSpot + open-ticket count from Intercom joined to warehouse accounts.
Get your Cortex agent
to do more across your stack
Cross-app workflows your Cortex agent now runs in seconds instead of click-throughs.
Customer 360 enrichment
> Join warehouse account data with live HubSpot deal stage and write an enriched Cortex view.
Reverse ETL via agent
> Push churn-risk segments from Cortex to Intercom so CS knows who to call.
Pipeline & data-quality ops
> When Cortex detects a freshness drop, post a Slack alert to the on-call channel.
GTM analytics actioning
> Cross-reference warehouse facts with live Stripe revenue + Salesforce opps in one prompt.
Connect any Enterprise AI Agent
to the StackOne MCP Gateway
Same 270+ MCP servers. Same agent context. Pick yours.
Frequently Asked Questions
Snowflake Cortex agents act across enterprise SaaS through StackOne's MCP gateway. Setup happens in Snowsight: navigate to AI & ML → Agents → Settings → Tools and Connectors → Browse Connectors → Custom MCP Server, paste the StackOne gateway URL with OAuth 2.1 + Dynamic Client Registration, and add to your agent. Available to every Cortex agent in your account, and 270+ pre-built SaaS connectors are reachable through that single connection. Full walkthrough in the Snowflake Cortex MCP connectors docs. Available on any Snowflake edition (not supported in government regions).
An MCP gateway is real-time integration infrastructure connecting AI agents to the SaaS apps they need to use. It exposes one MCP server instead of many to the AI agent, and handles authentication, agent action scoping, tool-call optimization, agent security, and tool-call observability. Also called an MCP aggregator.
Cortex agents can access enterprise SaaS like Salesforce, Workday, HubSpot, Greenhouse, Zendesk, NetSuite, ServiceNow, Intercom, and Stripe through the StackOne MCP gateway — 270+ pre-built connectors in total. New connectors ship continuously, and you can build custom ones with AI Integration Builder. See all connectors.
Snowflake Cortex ships 5 first-party MCP partners (Atlassian, GitHub, Glean, Linear, Salesforce). StackOne adds the other 270+ — every app reachable through one Custom MCP Server registration instead of 5+ separate ones, auth managed once in the dashboard, and tool definitions loaded only when relevant to the prompt.
Credentials sit at three layers: the StackOne MCP server registration (OAuth 2.1 + Dynamic Client Registration via Snowsight Tools and Connectors, controlled by Snowflake account admins), SaaS connector credentials (server-side in your StackOne dashboard), and per-user OAuth or session tokens (server-side, scoped per user). StackOne stores OAuth tokens and API keys, refreshes them automatically, and only exposes the actions you've authorized to the agent.
Skip the StackOne MCP gateway when any of these is true:
- Snowflake's 5 first-party Cortex MCP partners (Atlassian, GitHub, Glean, Linear, Salesforce) already cover your apps
- You only use a handful of actions across a few apps
- You don't need multi-tenancy, per-user permissions, or per-action scoping
- Indirect prompt injection isn't a concern
- Your MCP provider already does tool discovery and server-side execution to keep the agent context lean
Connect All Your Apps to Snowflake.
One MCP gateway, 270+ pre-built SaaS connectors. Set up in 5 minutes.