mcp-server

Pull Vitally account health into Claude via MCP for CS conversations

Difficulty

advanced

Setup time

1-2 hours

For

csm

RevOps

Stack

A Model Context Protocol server that gives Claude read access to Vitally account health scores, health component breakdowns, and conversation history. Register it once in Claude Desktop or Claude Code, and any CSM on your team can ask “what’s the health score for Acme Corp and why is it red?” or “show me the last five conversations for this account before my renewal call” — and get a structured answer pulled from Vitally in real time, without opening a second tab.

The complete scaffold lives in the artifact bundle at apps/web/public/artifacts/mcp-server-vitally-cs/, which ships a README.md, pyproject.toml, src/vitally_cs_mcp/__init__.py, and src/vitally_cs_mcp/server.py.

When to use this

This MCP server pays off when your CS team’s workflow involves a recurring pattern: pulling Vitally context before a call, writing a renewal prep doc, triaging the at-risk queue, or building a QBR slide with health data. The pattern works well across two CSM archetypes.

The CSM who manages a book of 80-120 SMB accounts and currently clicks through Vitally’s account list every Monday to find who slipped into the red last week. With this server, they can ask Claude “list my at-risk accounts below 40” and get a ranked list in under five seconds, then ask follow-up questions about any account’s health component breakdown without navigating multiple Vitally screens.

The enterprise CSM who spends twenty minutes before each EBR digging through Vitally for conversation history, health trends, and the last note a colleague left. With this server, they describe the account to Claude and get a single response with health score, component breakdown, and recent conversation subjects — ready to paste into the prep doc.

It is also the right pattern if your CS team is already using Claude for other work (writing follow-up emails, summarizing call notes, drafting success plans) and you want to connect the conversational surface they already live in to the CS data they need. The MCP server adds Vitally context without changing how they use Claude.

When NOT to use this

Skip it if any of the following are true:

You need to write data back to Vitally. This scaffold is deliberately read-only. If your workflow requires creating notes, updating traits, or logging conversations from Claude, you need to extend the server with write tools — and pair them with an audit pattern similar to the Salesforce scaffold at apps/web/public/artifacts/mcp-server-salesforce-revops/. Do not attempt writes by modifying this scaffold without adding that audit layer.
Your book of business exceeds 100 accounts and you need a full at-risk view. The list_at_risk_accounts tool fetches one page of accounts (up to 100, per Vitally’s API cap) and filters locally. Orgs with more than 100 active accounts will get a partial view until cursor pagination is implemented (README TODO #2). For larger books, export a Vitally CSV segment and feed it to Claude directly rather than relying on this server for triage.
Vitally is not your system of record for health. Some CS teams maintain health scores in Gainsight, ChurnZero, or a homegrown spreadsheet model and push a summary metric into Vitally. If the authoritative health data lives elsewhere, Claude will be reading a derived or stale copy. Point the MCP server at the actual source.
Your data policy prohibits account data from entering a third-party LLM. Account names, health scores, conversation subjects, and message bodies pass through Claude’s context window. If your contracts with enterprise customers restrict AI processing of their data, confirm the legal position before enabling this.
Your CS team has fewer than five active accounts. Setup takes one to two hours; the ongoing-token cost is real. At very low account counts, opening Vitally directly is faster.

Setup

The bundle’s README.md is the definitive reference; the steps below are the orientation. Expect about one hour if your Vitally API key is already available, up to two hours if you are setting up a dedicated service account.

Install the package. From the bundle root: python -m venv .venv, activate, pip install -e .. Dependencies are mcp>=1.2.0, httpx>=0.27.0, and pydantic>=2.6.0 — no Vitally-specific SDK, just plain HTTP calls.
Get a Vitally API key. In Vitally: Settings → Integrations → API. Generate a key from a dedicated integration user (not your personal admin account). Vitally uses HTTP Basic Auth — the server handles encoding; you supply the raw key as VITALLY_API_KEY.
Find your subdomain. If your workspace URL is acme.vitally.io, your subdomain is acme. EU tenants set VITALLY_BASE_URL=https://rest.vitally-eu.io instead.
Set env vars. VITALLY_API_KEY, VITALLY_SUBDOMAIN (or VITALLY_BASE_URL for EU), optionally VITALLY_HEALTH_THRESHOLD (default 50) and VITALLY_PAGE_LIMIT (default 100, Vitally’s API cap).
Register with Claude Desktop or Claude Code. Add the JSON block from the README.md to claude_desktop_config.json (Desktop) or your project settings.json (Code). Restart Claude Desktop.
Sanity check. Ask Claude “show me the health score for account ID <a real account id>” and compare the response against the Vitally UI. Then ask “list at-risk accounts below 40” and verify the returned accounts actually show health scores at or below 40 in Vitally.

What it does — and why the tools are shaped this way

Three tools, read-only throughout.

get_account_health(account_id) makes two sequential GET requests to Vitally: GET /resources/accounts/:id for the base account record, and GET /resources/accounts/:id/healthScores for the component breakdown. It merges these into a single response with the overall healthScore, plus an array of health components, each with a name, score, and status. Two requests instead of one because Vitally’s REST API splits the base account record from the health score breakdown — there is no single endpoint that returns both.

list_at_risk_accounts(health_threshold?, limit?) fetches one page of active accounts (GET /resources/accounts?limit=100&status=active), filters to those whose healthScore is at or below the threshold, sorts ascending by score (worst first), and trims to the requested return limit. The local-filter approach avoids needing a Vitally server-side filter that the public REST API does not expose — you cannot pass healthScore[lte]=50 as a query parameter. The tradeoff is that only the first 100 accounts are scanned per call; the README documents this limit and the cursor-pagination path to fix it.

get_account_conversations(account_id, limit?) calls GET /resources/accounts/:id/conversations?limit=N. Vitally returns conversations newest-first by default. The server trims each conversation to the fields most useful in a Claude context window — subject, message count, the first message body, traits, and timestamps — rather than returning the full message array. A 10-conversation response from a verbose account can otherwise run to several thousand tokens; trimming keeps the context window predictable.

Read-only by construction. Every tool makes only GET requests. There is no update_account, no create_note, no delete_conversation. The choice is intentional: CS tooling that can write back to the system of record needs a separate, named audit story (who changed what, why, when) before it ships. Adding read-only value first is lower risk and faster to approve.

Auth by Basic, not Bearer. Vitally’s REST API authenticates via HTTP Basic Auth with the API key as the username and an empty password. This differs from the OAuth Bearer pattern used by Salesforce and HubSpot. The server encodes this correctly at runtime — Authorization: Basic base64("apikey:"). You do not need to base64-encode the key yourself; supply the raw key as VITALLY_API_KEY.

Cost reality

Three cost lines to plan for.

Claude subscription. Whatever your team is paying for Claude Desktop or Claude Code (Pro at $20/user/month; Max tiers $100–200/user/month; or API consumption at pay-per-token rates). The MCP server does not change this.

Vitally API quota. Vitally’s REST API allows 1,000 requests per minute on a sliding window, per the API overview documentation. A CSM doing pre-call prep (one get_account_health + one get_account_conversations) consumes 3 API calls (2 for health, 1 for conversations). A weekly at-risk review (list_at_risk_accounts) consumes 1 call. At 20 CSMs doing 5 prep sessions per week plus a weekly triage, that is roughly (20 × 5 × 3) + (20 × 1) = 320 calls/week — well within the rate limit. The limit only becomes relevant if you run automated batch jobs or loop over hundreds of accounts in quick succession.

Token cost in Claude. A single get_account_health response for a typical account runs to approximately 800–1,500 tokens depending on how many health components your org has configured and how verbose the traits payload is. A get_account_conversations response for 10 conversations with trimmed message bodies runs to roughly 2,000–5,000 tokens. At Claude Sonnet input pricing (approximately $3/1M tokens as of May 2026 — verify current pricing at anthropic.com/pricing), a full pre-call prep session of two tool calls costs under $0.02. Ten CSMs running 5 prep sessions per week = $1–5/month in token costs on top of the subscription. Round up generously for longer conversations and call it $10/user/month all-in.

These are estimates based on typical Vitally data shapes; your org’s actual token counts depend on trait payload size and conversation volume.

Failure modes

Health score is null for a new account. Vitally does not compute a health score for accounts that lack enough data — new customers, accounts with no events ingested, or accounts outside any health score segment. get_account_health will return healthScore: null and an empty healthScores array. Guard: the server passes null through rather than raising; Claude will report the absence. Instruct your CSMs to treat a null health score as a signal to check Vitally’s data ingestion, not as a healthy account.

list_at_risk_accounts returns an incomplete view for large books. The tool scans one page of 100 accounts. If your org has 250 active accounts and the worst ones happen to fall on pages 2 or 3, the tool will miss them. Guard: the response payload includes a note field that explicitly flags when Vitally returned a next cursor (meaning there are more pages). CSMs should treat a non-empty note as a signal to either narrow their query or use Vitally’s native segment filter for full-book triage until cursor pagination is implemented (README TODO #2).

Vitally 429 rate limit on rapid sequential calls. Looping over many accounts back-to-back (for example, calling get_account_health on each account in a list) will hit the 1,000 req/min ceiling if the loop is tight enough. Guard: the scaffold has no built-in retry or backoff. For any workflow that calls more than ~50 get_account_health requests in a single session, add exponential backoff with jitter around vitally_get (README TODO #1 covers a more general token-rotation pattern; a retry decorator addresses the rate-limit case specifically). Claude Code users can add this in a fork of server.py in about 15 lines using httpx’s retry transport.

API key expires or is revoked. Vitally API keys do not have a documented TTL, but keys generated from a user who is later deactivated or whose role changes will stop working. A 401 surfaces as an httpx.HTTPStatusError with status 401. Guard: require_config() runs at every tool call and will re-raise if the key is missing. For the revoked-but-present case, the 401 from Vitally will propagate as an error message in Claude’s response. Set up a monthly calendar reminder to verify the integration key is still active.

Versus the alternatives

Vitally’s native AI features (Vitally Copilot / in-app AI). Vitally has been rolling out AI-assisted summaries and suggestions natively within the platform. First-party, no setup, no separate process to host. The tradeoff: the AI surfaces live inside Vitally, which means your CSMs need to be in Vitally to use it. The MCP server pattern keeps Claude as the single chat surface across all your tools — if your team already uses Claude for email drafting, call summaries, and success plans, adding Vitally context there means fewer context switches, not more.

CSV export + manual paste. Export a Vitally segment to CSV, paste into Claude. Free, zero setup, works today. The tradeoff: it is a manual step (export, open file, paste), the data is a snapshot not a live query, and it does not compose well with other tools in the same Claude conversation. The MCP server beats this on time-to-answer and beats it more as your team’s Claude usage grows.

Direct Vitally REST API calls in a Claude Code script. A CSM comfortable with Python can call the Vitally API directly from a Claude Code session with a few lines of httpx. The tradeoff: each new session re-authenticates, the code lives in a transient conversation not a persistent registered tool, and other CSMs on the team cannot reuse it without the same setup. The MCP server registers the tools once and makes them available to anyone with the Claude Desktop or Code integration.

References

Bundle files:

apps/web/public/artifacts/mcp-server-vitally-cs/README.md — install, env vars, registration JSON, sanity check, security model
apps/web/public/artifacts/mcp-server-vitally-cs/pyproject.toml — Python package definition
apps/web/public/artifacts/mcp-server-vitally-cs/src/vitally_cs_mcp/__init__.py — package init
apps/web/public/artifacts/mcp-server-vitally-cs/src/vitally_cs_mcp/server.py — full server scaffold with the three tools and dispatch

Related tools: Vitally, Claude

Edit this page on GitHub

Files in this artifact

Download all (.zip)

[project]
name = "vitally-cs-mcp"
version = "0.1.0"
description = "MCP server for Customer Success workflows on Vitally"
readme = "README.md"
requires-python = ">=3.11"
license = { text = "MIT" }
dependencies = [
  "mcp>=1.2.0",
  "httpx>=0.27.0",
  "pydantic>=2.6.0",
]

[project.optional-dependencies]
dev = [
  "pytest>=8.0.0",
  "pytest-httpx>=0.30.0",
  "ruff>=0.4.0",
]

[build-system]
requires = ["hatchling"]
build-backend = "hatchling.build"

[tool.hatch.build.targets.wheel]
packages = ["src/vitally_cs_mcp"]

[tool.ruff]
line-length = 100
target-version = "py311"

# mcp-server-vitally-cs

An MCP server for Customer Success teams using Vitally. Exposes account reads, health score breakdowns, and conversation history — three tools designed for CSMs who want to pull Vitally context into Claude conversations without leaving the chat surface.

> **STATUS: scaffold — not runtime-tested.** The code below is structurally complete and follows the official `mcp` Python SDK conventions, but it has not been executed against a live Vitally tenant. Adapt the subdomain, field names, and any custom trait keys to your org before use.

## What it exposes

### Account reads (read-only)
- `get_account_health(account_id)` — fetches a single account plus its full health score breakdown via the `/accounts/:id/healthScores` endpoint
- `list_at_risk_accounts(health_threshold?, limit?)` — pages through accounts, filters to those whose `healthScore` is at or below the threshold, returns a ranked list
- `get_account_conversations(account_id, limit?)` — fetches the most recent conversations linked to an account, ordered newest-first

The server does **not** expose write endpoints. No note creation, no conversation mutations, no trait updates. Read-only by design so CSMs can drop this into Claude Desktop without a security review of write scope.

## Setup

### 1. Install

```bash
git clone <wherever you put this>
cd mcp-server-vitally-cs
python -m venv .venv
source .venv/bin/activate # or .venv\Scripts\activate on Windows
pip install -e .
```

### 2. Locate your Vitally API key

In Vitally: **Settings → Integrations → API**. Generate or copy an existing API key. Vitally authenticates via HTTP Basic Auth with the API key as the username and an empty password. The `Authorization` header value is `Basic <base64(apikey:)>`.

The server handles this encoding for you — you only need to supply the raw key as `VITALLY_API_KEY`.

### 3. Find your subdomain

Your Vitally base URL is `https://<subdomain>.rest.vitally.io`. The subdomain is the prefix of your Vitally workspace URL (e.g. if you log in at `acme.vitally.io`, your subdomain is `acme`). EU tenants use `rest.vitally-eu.io` — set `VITALLY_BASE_URL` accordingly.

### 4. Configure environment

```bash
export VITALLY_API_KEY="your_api_key_here"
export VITALLY_SUBDOMAIN="acme" # your workspace subdomain
export VITALLY_BASE_URL="https://acme.rest.vitally.io" # full base URL; auto-built from subdomain if omitted
export VITALLY_HEALTH_THRESHOLD="50" # default red/orange threshold for list_at_risk_accounts
export VITALLY_PAGE_LIMIT="100" # max records per page (Vitally caps at 100)
```

**`VITALLY_API_KEY`** — required. Raw API key from Vitally Settings → Integrations → API. Never commit this to source control.

**`VITALLY_SUBDOMAIN`** — required unless `VITALLY_BASE_URL` is set explicitly. Used to construct `https://{subdomain}.rest.vitally.io`.

**`VITALLY_BASE_URL`** — optional override. Set this explicitly for EU tenants: `https://rest.vitally-eu.io`. If set, it takes precedence over `VITALLY_SUBDOMAIN`.

**`VITALLY_HEALTH_THRESHOLD`** — optional, default `50`. Accounts whose overall health score is ≤ this value are returned by `list_at_risk_accounts`. Vitally health scores run 0–100; typical "red" band is 0–33, "orange" 34–66, "green" 67–100 — adjust to match your org's thresholds.

**`VITALLY_PAGE_LIMIT`** — optional, default `100`. Vitally's REST API caps list responses at 100 records per page. The scaffold respects this ceiling.

### 5. Register with Claude Desktop

Edit `~/Library/Application Support/Claude/claude_desktop_config.json` (macOS) or `%APPDATA%\Claude\claude_desktop_config.json` (Windows):

```json
{
"mcpServers": {
"vitally-cs": {
"command": "python",
"args": ["-m", "vitally_cs_mcp.server"],
"env": {
"VITALLY_API_KEY": "your_api_key_here",
"VITALLY_SUBDOMAIN": "acme",
"VITALLY_HEALTH_THRESHOLD": "50"
}
}
}
}
```

Restart Claude Desktop. You should see 3 tools registered under `vitally-cs`.

### 6. Register with Claude Code

Add to your project or user `settings.json` under `mcpServers`:

```json
{
"mcpServers": {
"vitally-cs": {
"command": "python",
"args": ["-m", "vitally_cs_mcp.server"],
"env": {
"VITALLY_API_KEY": "your_api_key_here",
"VITALLY_SUBDOMAIN": "acme"
}
}
}
}
```

### 7. Sanity check

Ask Claude: "Show me the health score for account ID `<any real account id>`." The response should include an overall health score and a breakdown of individual health components. Then ask: "List my at-risk accounts with a threshold of 40." Verify the returned accounts actually have health scores at or below 40 in the Vitally UI.

## Security model

- **Read-only by design.** The three tools call only `GET` endpoints. No write operations are included. This means there is nothing to scope-limit beyond read access to account, health, and conversation data — the entire risk surface is disclosure, not mutation.
- **API key scope.** Vitally API keys give read access to all objects the generating admin can see. There is no per-object scope at the API key level. Create a dedicated Vitally admin user for this integration, give it view-only access to the accounts and conversations your CSMs need, and generate the key from that user. Do not use a full-admin key.
- **Data in Claude's context window.** Account names, health scores, conversation subjects, and message bodies pass through Claude's context. Review your org's AI/data policy before enabling this for accounts that hold PII or contractually sensitive information. The server does not log requests or responses; what Claude does with the data depends on your Claude plan's data-retention settings.
- **Key storage.** The scaffold reads `VITALLY_API_KEY` from env. For team deployments, store the key in your secret manager (Vault, AWS Secrets Manager, 1Password CLI) and inject it at process start, rather than hardcoding it in the Claude Desktop config JSON.

## Known limits and TODOs (before production use)

1. [ ] Add OAuth or service-account key rotation — the current scaffold uses a static API key; implement a refresh path or a key-rotation reminder cron.
2. [ ] Implement cursor-based pagination in `list_at_risk_accounts` — the current scaffold fetches one page (up to 100 accounts) and filters locally; for orgs with >100 accounts, add a loop over the `next` cursor until exhausted or limit reached.
3. [ ] Add structured logging via `python-json-logger` — emit one JSON line per tool call with name, arguments hash, duration ms, and HTTP status code.
4. [ ] Wire optional Sentry / OpenTelemetry export for latency and error tracking.
5. [ ] Add integration tests against a Vitally sandbox or staging tenant.
6. [ ] Validate `VITALLY_SUBDOMAIN` at startup against the Vitally API (a lightweight `GET /resources/accounts?limit=1` can confirm the key and subdomain are valid before accepting tool calls).
7. [ ] Support EU data center (`rest.vitally-eu.io`) configuration with a clearer env var — currently handled via `VITALLY_BASE_URL` override, but a `VITALLY_REGION=eu` flag would be friendlier.
8. [ ] Add `list_at_risk_accounts` sort by health score ascending so the worst accounts surface first without the caller needing to sort client-side.

"""vitally_cs_mcp — MCP server for Customer Success workflows on Vitally."""

__version__ = "0.1.0"

"""
vitally-cs-mcp — MCP server for Customer Success workflows on Vitally.

Exposes three read-only tools:
  - get_account_health(account_id)         — single account + health score breakdown
  - list_at_risk_accounts(threshold, limit) — paginated list filtered by health score
  - get_account_conversations(account_id, limit) — recent conversations for an account

All tools are read-only; no write operations are included. Authentication uses
Vitally's HTTP Basic Auth with the API key as the username (empty password).

STATUS: scaffold — not runtime-tested. Adapt the subdomain, field names, and any
custom trait keys to your org before use.

Run as: python -m vitally_cs_mcp.server
"""

from __future__ import annotations

import base64
import os
from typing import Any

import httpx
from mcp.server import Server
from mcp.server.stdio import stdio_server
from mcp.types import TextContent, Tool

# ----- Configuration (read from env at startup) -----

VITALLY_API_KEY = os.environ.get("VITALLY_API_KEY", "")
VITALLY_SUBDOMAIN = os.environ.get("VITALLY_SUBDOMAIN", "")

# VITALLY_BASE_URL can be set explicitly (useful for EU: https://rest.vitally-eu.io)
# or auto-built from VITALLY_SUBDOMAIN.
_base_url_env = os.environ.get("VITALLY_BASE_URL", "").rstrip("/")
VITALLY_BASE_URL: str = _base_url_env or (
    f"https://{VITALLY_SUBDOMAIN}.rest.vitally.io" if VITALLY_SUBDOMAIN else ""
)

# Default health score threshold for list_at_risk_accounts.
# Vitally scores run 0–100; typical red band is 0–33, orange 34–66, green 67–100.
VITALLY_HEALTH_THRESHOLD: int = int(os.environ.get("VITALLY_HEALTH_THRESHOLD", "50"))

# Vitally caps list responses at 100 records per page.
VITALLY_PAGE_LIMIT: int = min(int(os.environ.get("VITALLY_PAGE_LIMIT", "100")), 100)


def require_config() -> None:
    if not VITALLY_API_KEY:
        raise RuntimeError("VITALLY_API_KEY env var is required")
    if not VITALLY_BASE_URL:
        raise RuntimeError(
            "Either VITALLY_SUBDOMAIN or VITALLY_BASE_URL env var is required"
        )


def auth_headers() -> dict[str, str]:
    """
    Vitally uses HTTP Basic Auth with the API key as the username and an empty password.
    The Authorization header value is: Basic base64("<apikey>:")
    """
    token = base64.b64encode(f"{VITALLY_API_KEY}:".encode()).decode("ascii")
    return {
        "Authorization": f"Basic {token}",
        "Content-Type": "application/json",
    }


# ----- Vitally REST helpers -----


async def vitally_get(path: str, params: dict[str, Any] | None = None) -> dict[str, Any]:
    """
    Make an authenticated GET request to the Vitally REST API.
    Path should start with /resources/...
    """
    url = f"{VITALLY_BASE_URL}{path}"
    async with httpx.AsyncClient(timeout=30.0) as client:
        r = await client.get(url, headers=auth_headers(), params=params)
        r.raise_for_status()
        return r.json()


# ----- Server + tool registry -----

server = Server("vitally-cs")


@server.list_tools()
async def list_tools() -> list[Tool]:
    return [
        Tool(
            name="get_account_health",
            description=(
                "Fetch a Vitally account by ID and its full health score breakdown. "
                "Returns the account record and the healthScores array, which includes "
                "each health component name, score, and status."
            ),
            inputSchema={
                "type": "object",
                "properties": {
                    "account_id": {
                        "type": "string",
                        "description": (
                            "Vitally account ID or externalId. "
                            "Use the Vitally-assigned UUID or the externalId your system sent."
                        ),
                    }
                },
                "required": ["account_id"],
            },
        ),
        Tool(
            name="list_at_risk_accounts",
            description=(
                "List accounts whose overall health score is at or below a threshold. "
                "Fetches one page of accounts (up to the limit), filters by health score, "
                "and returns matches sorted by health score ascending (worst first). "
                "For orgs with >100 accounts, only the first page is scanned — "
                "see the TODO in the README for full pagination."
            ),
            inputSchema={
                "type": "object",
                "properties": {
                    "health_threshold": {
                        "type": "integer",
                        "description": (
                            "Accounts with a health score at or below this value are returned. "
                            "Vitally scores run 0–100. Defaults to the VITALLY_HEALTH_THRESHOLD "
                            "env var (default 50)."
                        ),
                    },
                    "limit": {
                        "type": "integer",
                        "description": "Max accounts to return in the response (after filtering). Default 20.",
                        "default": 20,
                    },
                },
            },
        ),
        Tool(
            name="get_account_conversations",
            description=(
                "Fetch recent conversations linked to a Vitally account. "
                "Returns conversations in newest-first order with subject, message count, "
                "and traits. Useful for reviewing recent CSM activity before a call."
            ),
            inputSchema={
                "type": "object",
                "properties": {
                    "account_id": {
                        "type": "string",
                        "description": "Vitally account ID or externalId.",
                    },
                    "limit": {
                        "type": "integer",
                        "description": "Max conversations to return. Default 10, max 100.",
                        "default": 10,
                    },
                },
                "required": ["account_id"],
            },
        ),
    ]


# ----- Tool dispatch -----


@server.call_tool()
async def call_tool(name: str, arguments: dict[str, Any]) -> list[TextContent]:
    require_config()

    # ------------------------------------------------------------------
    # get_account_health
    # Fetches /resources/accounts/:id and /resources/accounts/:id/healthScores
    # in two requests, then merges the results.
    # ------------------------------------------------------------------
    if name == "get_account_health":
        account_id = arguments["account_id"]

        # Fetch the base account record.
        account = await vitally_get(f"/resources/accounts/{account_id}")

        # Fetch the health score breakdown.
        # Response: { "results": [ { "name": "...", "score": 72, "healthStatus": "healthy", ... }, ... ] }
        health_data = await vitally_get(f"/resources/accounts/{account_id}/healthScores")
        health_scores = health_data.get("results", [])

        result = {
            "account": {
                "id": account.get("id"),
                "externalId": account.get("externalId"),
                "name": account.get("name"),
                "healthScore": account.get("healthScore"),
                "traits": account.get("traits", {}),
            },
            "healthScores": health_scores,
        }
        return [TextContent(type="text", text=str(result))]

    # ------------------------------------------------------------------
    # list_at_risk_accounts
    # Fetches one page of accounts, filters to those at or below threshold.
    # Returns sorted by healthScore ascending (worst first).
    # ------------------------------------------------------------------
    if name == "list_at_risk_accounts":
        threshold = arguments.get("health_threshold", VITALLY_HEALTH_THRESHOLD)
        return_limit = min(int(arguments.get("limit", 20)), 100)

        # Fetch one full page of active accounts.
        # Vitally's list-accounts endpoint: GET /resources/accounts?limit=100&status=active
        page = await vitally_get(
            "/resources/accounts",
            params={"limit": VITALLY_PAGE_LIMIT, "status": "active"},
        )
        accounts = page.get("results", [])

        # Filter: include only accounts where healthScore is defined and <= threshold.
        # healthScore may be None if Vitally hasn't computed it yet (new accounts, missing data).
        at_risk = [
            {
                "id": a.get("id"),
                "externalId": a.get("externalId"),
                "name": a.get("name"),
                "healthScore": a.get("healthScore"),
                "traits": a.get("traits", {}),
            }
            for a in accounts
            if a.get("healthScore") is not None and a["healthScore"] <= threshold
        ]

        # Sort by healthScore ascending so the worst accounts surface first.
        at_risk.sort(key=lambda a: a["healthScore"])

        # Trim to the requested return limit.
        at_risk = at_risk[:return_limit]

        result = {
            "threshold": threshold,
            "total_scanned": len(accounts),
            "at_risk_count": len(at_risk),
            "note": (
                "Only the first page of accounts was scanned. "
                "See README TODO #2 to add full cursor pagination."
            )
            if page.get("next")
            else "All active accounts were scanned.",
            "accounts": at_risk,
        }
        return [TextContent(type="text", text=str(result))]

    # ------------------------------------------------------------------
    # get_account_conversations
    # Fetches /resources/accounts/:id/conversations?limit=N
    # Conversations are returned by Vitally in newest-first order by default.
    # ------------------------------------------------------------------
    if name == "get_account_conversations":
        account_id = arguments["account_id"]
        limit = min(int(arguments.get("limit", 10)), 100)

        data = await vitally_get(
            f"/resources/accounts/{account_id}/conversations",
            params={"limit": limit},
        )
        conversations = data.get("results", [])

        # Trim each conversation to the fields most useful in a Claude context window.
        trimmed = [
            {
                "id": c.get("id"),
                "externalId": c.get("externalId"),
                "subject": c.get("subject"),
                "messageCount": len(c.get("messages", [])),
                "firstMessage": (c.get("messages") or [{}])[0].get("body", ""),
                "traits": c.get("traits", {}),
                "createdAt": c.get("createdAt"),
                "updatedAt": c.get("updatedAt"),
            }
            for c in conversations
        ]

        result = {
            "account_id": account_id,
            "conversation_count": len(trimmed),
            "conversations": trimmed,
        }
        return [TextContent(type="text", text=str(result))]

    raise ValueError(f"Unknown tool: {name}")


# ----- Entrypoint -----


async def main() -> None:
    require_config()
    async with stdio_server() as (read, write):
        await server.run(read, write, server.create_initialization_options())


if __name__ == "__main__":
    import asyncio

    asyncio.run(main())