MCP HubSpot Server
vhosted remote (GA 2026-04-13)HubSpot (Official)
HubSpot's official hosted MCP server at https://mcp.hubspot.com, authenticated via OAuth 2.1 with PKCE and available to all HubSpot accounts and tiers. Launched as a read-only public beta in September 2025; GA on 2026-04-13 added write capabilities (CRM records and activities), activity history, marketing content objects, and organizational context - a material expansion of the risk surface. Actions inherit the connecting user's HubSpot permissions.
Trust Vector Analysis
Dimension Breakdown
๐Performance & Reliability+
Operation reliability assessment against the underlying HubSpot CRM API
Search quality testing
Write-path reliability review
Rate limiting behavior analysis
Error handling and discovery testing
๐ก๏ธSecurity+
Authentication mechanism review
Analysis of available mechanisms to scope agent access below the user's permission level
Assessment of the GA capability change from read-only to write-enabled and its blast radius
Review of built-in sensitive data safeguards
Audit logging review
๐Privacy & Compliance+
Data flow analysis of CRM PII exposure
Communication content exposure assessment
Data sharing analysis
Tenant and account isolation review
Regulatory readiness assessment
๐๏ธTrust & Transparency+
Documentation completeness review
Review of capability-change communication
Logging and traceability assessment
Source availability review
โ๏ธOperational Excellence+
Setup complexity assessment
Performance assessment
Reliability analysis
Feature coverage assessment
Tier and hub availability review
- +Official HubSpot-hosted remote at https://mcp.hubspot.com - no install, OAuth 2.1 with PKCE required, no static API keys
- +Available to all HubSpot accounts, hubs, and tiers at no additional cost
- +Broad coverage: CRM records, activity history, and marketing content objects, with read/write on core objects since GA
- +Inherits and enforces existing HubSpot user permissions on every action
- +Built-in safeguard: sensitive-data accounts have Activity objects blocked from MCP access automatically
- +Capability changes clearly communicated via the developer changelog (GA write expansion announced with scope and date)
- !RISK-SURFACE CHANGE 2026-04-13: GA added write capabilities - agents can now create/update CRM records and log activities, where the Sept 2025 beta was read-only; connections authorized pre-GA gained write reach with the platform change
- !No per-connection scope narrowing: the agent gets the authorizing user's full permission set (no read-only grant option)
- !Contact/company PII and customer communication content (calls, emails, notes) flow into the LLM provider's context
- !Custom objects are not supported
- !No dedicated MCP audit log; agent actions are attributed to the authorizing user in record history
- !Closed-source hosted service; implementation not auditable
- !Subject to HubSpot API rate limits that vary by subscription tier
Use Case Ratings
code generation
Limited relevance; useful for generating CRM integration code against live schemas
customer support
Strong fit: ticket, contact, and activity context with write-back for notes and tasks
content creation
Marketing content objects (campaigns, landing pages, blogs) enable CRM-grounded content workflows
data analysis
Good for pipeline and deal analysis; rate limits constrain large extractions
research assistant
Useful for account and prospect research within the CRM
legal compliance
Customer PII and communication content reach the LLM provider; sensitive-data block helps but is coarse
healthcare
Patient contact data in CRM routed through agent contexts is high risk
financial analysis
Deal and revenue data accessible; moderate exposure risk
education
Workable for admissions/CRM use with standard PII caveats
creative writing
Marginal fit beyond marketing copy grounded in CRM data