Postman (Newman)
Run Postman Collections locally via Newman and return test results.
🛡️ AgentReady threat assessment
MAESTRO 7-layer threat model + OWASP AIVSS risk score for Postman (Newman), derived from its capabilities.
AIVSS 9.2 · Critical
View MAESTRO 7-layer threat model →These scores are auto-generated from public information (the agent's own listing, docs, and repository) using the canonical OWASP AIVSS formula and the MAESTRO framework — an estimate for guidance, not a penetration test, audit, or certification. See the scoring methodology. Are you the vendor? Factual corrections are free.
Overview
This MCP server runs Postman Collections locally via Newman and returns whether the collection passed all tests. It executes agent-provided API collections, so it can send arbitrary HTTP requests, an SSRF-adjacent surface depending on the collection.
Key features
- Run Postman collections
- Newman test execution
- Result reporting
Use cases
- Run API tests from an agent
- Validate an API contract