Zanii Connect is the runtime where AI agents take real action. One OAuth into every app, a registry of governed tools, a human on the moves that matter, and an audit trail for all of it.
Everything an agent needs to do useful work in the real world, without you rebuilding auth, integrations, and guardrails for the tenth time.
One OAuth, every app. Link Gmail, Slack, HubSpot, Notion, Stripe and more through a single flow. Share a connection across your whole org, and get warned before a token silently expires.
One OAuth, every app →A registry of real actions. Browse providers and the tools your agents can call. Run them now, or queue long jobs and poll. No public API for a task? Drive a headless browser instead.
Browse the registry →Approvals, roles, and secrets. Hold risky actions for a human, approve from a link. Scope every user with roles and permissions, keep secrets per tenant, and log every move.
See the approval flow →Zanii holds the ones that matter, sends a confirmation link, and only runs on a yes. Every decision is token-authenticated, needs no login, and lands in the audit trail. Approve a wire transfer from WhatsApp in two taps.
Point any MCP client at a single endpoint and every governed tool shows up as a callable function. No glue code, no bespoke tool definitions, no drift between what the agent thinks it can do and what it's allowed to do.
Multi-tenant from the first request. The plumbing you'd otherwise spend a quarter building is already here.
Per-connection status so the UI can prompt re-auth before things break.
GET /v1/connect/connections/healthReact to events. Fire on triggers. Fan out to your own subscribers.
POST /v1/triggersQueue long runs on the worker and poll a job id until it's done.
POST /v1/tools/execute_asyncA scoped secrets vault, never shared across organizations.
PUT /v1/secretsDefine roles, grant permissions, and see exactly what a key can do.
GET /v1/auth/meTOTP enrollment, scoped API keys, revoke in one call.
POST /v1/auth/keysTrack consumption per organization for billing and limits.
GET /v1/org/usageWhen there's no API, run a real browser session and script it.
POST /v1/browser/sessionList executions, stream the whole audit trail as CSV for compliance, and honor GDPR with a one-call tenant export or hard delete.
Connect once, act everywhere, and approve what matters. Get a key and point your agent at the runtime.