Postman
Full API lifecycle in Claude Code — sync collections, run tests, create mocks, and audit API security.
🛡️ AgentReady threat assessment
MAESTRO 7-layer threat model + OWASP AIVSS risk score for Postman, derived from its capabilities.
AIVSS 8.8 · High
View MAESTRO 7-layer threat model →Overview
Full API lifecycle management for Claude Code powered by the Postman MCP Server. Sync collections, generate client code, discover APIs, run tests, create mocks, publish docs, and audit security. Surface: bundled Postman MCP server exposing collection, test, mock, and security-audit tools.
Key features
- Postman MCP server integration
- Collection sync and client-code generation
- Automated API test runs and mocks
- API security auditing
Use cases
- Drive Postman collections and tests from the agent
- Audit an API's security posture during development