Skip to main content

Try the Remote Server First

If your client supports the hosted MCP server, we recommend using that.

Protect Your API Key

If you are using the local profound-mcp package, it will require using a Profound API key. Your key grants access to the data available to your organization, so handle it the same way you would any production credential.
  • Store the key in environment variables or client-managed secret storage
  • Never paste the key into prompts, chat transcripts, or shared notes
  • Never commit the key to source control
  • Rotate the key regularly, especially after sharing configurations or testing in multiple environments