AI agents can validate emails as part of larger workflows—enriching leads, screening signups, cleaning CRM data, and blocking fraud—without pre-defined steps. This guide covers MCP server architecture, LLM tool calling, and real agent pipeline patterns for email verification.
AI agents that work with email data—CRM updates, lead enrichment, signup screening, campaign management—need verification built in. Without it, agents propagate bad data downstream at scale.
AI agents that process leads, update CRM records, screen signups, or manage campaigns need to verify emails at runtime. Without built-in verification, agents propagate bad data downstream at machine speed—undoing the work of data hygiene teams. This guide covers MCP server architecture, LLM tool calling patterns, and four production agent pipelines using the email-check.app API.
MCP (Model Context Protocol) servers provide a standard way for AI agents to discover and invoke external tools. An MCP server wraps the email-check.app API into a tool definition that any MCP-compatible agent framework can consume—Claude Desktop, Cursor, Windsurf, or custom agent runtimes.
// MCP server tool definition — email verification
{
"name": "verify_email",
"description": "Validate an email address for deliverability, " +
"disposable status, risk score, and typo suggestions. " +
"Returns a structured result with a recommendation " +
"(ACCEPT, REJECT, REVIEW, CORRECT).",
"inputSchema": {
"type": "object",
"properties": {
"email": {
"type": "string",
"format": "email",
"description": "The email address to validate"
}
},
"required": ["email"]
}
}
// MCP server handler (TypeScript)
async function handleVerifyEmail(args: { email: string }) {
const response = await fetch(
'https://api.email-check.app/v1/validate',
{
method: 'POST',
headers: {
'Authorization': `Bearer ${process.env.EMAIL_CHECK_API_KEY}`,
'Content-Type': 'application/json'
},
body: JSON.stringify({ email: args.email })
}
);
const result = await response.json();
return {
content: [{
type: "text",
text: JSON.stringify({
email: result.email,
status: result.status,
disposable: result.disposable,
roleBased: result.roleBased,
freeProvider: result.freeProvider,
riskScore: result.riskScore,
suggestion: result.suggestion,
recommendation: classifyResult(result)
}, null, 2)
}]
};
}
function classifyResult(result) {
if (result.disposable) return 'REJECT: disposable email';
if (result.status === 'undeliverable') return 'REJECT: invalid mailbox';
if (result.riskScore > 80) return 'REVIEW: high risk score';
if (result.roleBased) return 'REVIEW: role-based address';
if (result.suggestion) return `CORRECT: ${result.suggestion}`;
if (result.status === 'deliverable') return 'ACCEPT: verified';
return 'REVIEW: uncertain status';
}Tool calling lets the LLM decide when to invoke email verification during a task. You register the tool with your agent framework, and the model calls it autonomously when it encounters an email that needs validation.
// Agent framework tool registration
const tools = [
{
name: "verify_email",
description: "Validate an email address. Returns " +
"deliverability, disposable detection, risk score, " +
"and typo correction suggestions.",
parameters: {
type: "object",
properties: {
email: {
type: "string",
format: "email",
description: "Email to validate"
}
},
required: ["email"]
},
execute: async ({ email }) => {
const res = await fetch(
'https://api.email-check.app/v1/validate',
{
method: 'POST',
headers: {
'Authorization': `Bearer ${process.env.EMAIL_CHECK_API_KEY}`,
'Content-Type': 'application/json'
},
body: JSON.stringify({ email })
}
);
return res.json();
}
}
];
// Agent receives this tool and decides when to call it.
// Example prompt: "Review these 50 leads. Flag invalid
// emails, correct typos, and add verified contacts to
// Salesforce. Skip disposable addresses."
//
// The agent will:
// 1. Parse the email from each lead record
// 2. Call verify_email for each one
// 3. Read the recommendation (ACCEPT/REJECT/REVIEW/CORRECT)
// 4. Take the appropriate action based on the resultThis agent runs on a schedule or on demand. It queries the CRM for contacts modified since the last run, validates their emails, and updates CRM records with verification status and risk scores. Unlike a Zapier workflow, the agent can handle unexpected scenarios—escalating unusual patterns, grouping results by domain, or summarizing findings in natural language.
// CRM hygiene agent — prompt template
const CRM_HYGIENE_PROMPT = `
You are a CRM data hygiene agent. Your task:
1. Fetch all contacts modified in the last 7 days from the CRM
using the fetch_contacts tool.
2. For each contact with an email field, call verify_email.
3. Based on the result:
- ACCEPT (deliverable, low risk): update email_status to
"verified", set email_risk_score
- REJECT (undeliverable or disposable): update email_status
to "invalid", flag for removal
- REVIEW (high risk or uncertain): update email_status to
"flagged", add a note with the reason
- CORRECT (typo detected): apply the suggestion, verify
the corrected email, then update
4. After processing, write a summary report:
- Total contacts processed
- Breakdown by recommendation type
- Domains with highest failure rates
- Contacts requiring manual review
Use the update_contact tool to modify CRM records.
Use the write_report tool to create the summary.`;
// Agent handles all logic autonomously — no pre-defined
// branching needed. If it encounters an edge case (e.g.,
// a catch-all domain with 100+ contacts), it can decide
// to flag it instead of processing each one individually.This agent screens signups in real-time. It validates the email, checks for disposable addresses, evaluates the risk score, and decides whether to approve the registration, flag it for review, or block it entirely. The agent can also cross-reference patterns—blocking signups from the same disposable domain that appeared multiple times in the last hour.
// Signup fraud screening agent const SIGNUP_SCREEN_PROMPT = ` You are a signup fraud screening agent. When a new signup arrives: 1. Call verify_email with the signup email. 2. Apply these rules: - disposable == true → BLOCK and log - status == "undeliverable" → BLOCK and log - riskScore > 80 → FLAG for manual review - freeProvider && riskScore > 50 → FLAG for review - roleBased → FLAG (legitimate but not a person) 3. If the email has a suggestion (typo), verify the suggested correction. If valid, auto-correct the email and approve the signup with the corrected address. 4. Track patterns: if 3+ signups from the same disposable domain appear in the last hour, escalate to the security team using the send_alert tool. Use approve_signup, block_signup, or flag_signup tools. Use the log_event tool for audit trail.`; // The agent's advantage: it can correlate signals across // multiple signups, adjust its risk threshold based on // traffic patterns, and provide natural-language explanations // for each decision when audited.
This agent enriches B2B prospect lists before they enter outbound sequences. It validates each prospect email, filters out role-based and free provider addresses, and prioritizes leads by verification quality. The agent can also enrich records with additional signals from the API response.
// B2B lead enrichment agent
const LEAD_ENRICH_PROMPT = `
You are a B2B lead enrichment agent. Process the
provided prospect list:
1. For each prospect, call verify_email.
2. Classify each lead:
Tier 1: deliverable + !roleBased + !freeProvider
+ riskScore < 30
Tier 2: deliverable + riskScore < 50
(may include roleBased or freeProvider)
Tier 3: accept_all or unknown status
Reject: undeliverable or disposable
3. For Tier 1 leads: push to Salesforce using
create_lead with email_verified=true.
4. For Tier 2 leads: push with email_verified="partial"
and add a note about the risk signal.
5. For Tier 3 leads: push with email_verified="uncertain"
and schedule re-verification in 7 days.
6. Reject leads: log to a separate rejected list.
7. Write a summary: total processed, tier distribution,
domains with most Tier 1 leads, top rejections.`;
// Agent advantage over Clay/Zapier: the agent can
// re-prioritize leads mid-batch if it notices patterns
// (e.g., all emails from a specific domain are failing),
// and it can explain its decisions in a follow-up conversation.Before an email campaign sends, this agent validates the recipient list, removes invalid addresses, applies typo corrections, and produces a deliverability report. It can segment the list into clean, risky, and invalid groups, and recommend whether to proceed with the send.
// Pre-campaign verification agent
const PRE_CAMPAIGN_PROMPT = `
You are a pre-campaign verification agent. A campaign
is scheduled to send to N recipients. Your job:
1. Fetch the recipient list using fetch_campaign_list.
2. Validate every email using verify_email.
3. Segment results:
- SEND: deliverable, riskScore < 50, not disposable
- CORRECT_AND_SEND: deliverable with typo suggestion,
verify the correction first
- HOLD: riskScore >= 50 or status uncertain
- REMOVE: undeliverable or disposable
4. Apply corrections for the CORRECT_AND_SEND group.
5. Update the campaign list: add SEND group, hold the
HOLD group, remove the REMOVE group.
6. Generate a deliverability report:
- Original list size vs clean list size
- % of emails corrected
- Estimated bounce prevention
- Recommendation: proceed / delay / abort
Use update_campaign_list and generate_report tools.`;
// The agent provides a recommendation, not just data.
// Marketing teams get an actionable assessment instead
// of a raw validation dump.For agents processing large lists, batch validation with rate limiting prevents API throttling. This helper processes emails in configurable batch sizes with delays between requests.
// Bulk processing helper — used by agent pipelines
const batchSize = 50;
const delayMs = 200;
async function verifyBatch(emails) {
const results = [];
for (let i = 0; i < emails.length; i += batchSize) {
const batch = emails.slice(i, i + batchSize);
const promises = batch.map(email =>
fetch('https://api.email-check.app/v1/validate', {
method: 'POST',
headers: {
'Authorization': `Bearer ${process.env.EMAIL_CHECK_API_KEY}`,
'Content-Type': 'application/json'
},
body: JSON.stringify({ email })
}).then(r => r.json())
);
const batchResults = await Promise.all(promises);
results.push(...batchResults);
if (i + batchSize < emails.length) {
await new Promise(r => setTimeout(r, delayMs));
}
}
return results;
}
// Usage in agent: "Validate these 500 leads in batches."
// Agent calls this helper, gets results, then proceeds
// with classification and CRM updates.# Email Verification API — used by all agent pipelines
POST https://api.email-check.app/v1/validate
Authorization: Bearer YOUR_API_KEY
Content-Type: application/json
{"email": "user@domain.com"}
# Response:
{
"email": "user@domain.com",
"status": "deliverable", // deliverable | undeliverable | unknown | accept_all
"disposable": false, // true = temporary/throwaway email
"roleBased": false, // true = info@, sales@, admin@
"freeProvider": false, // true = gmail.com, yahoo.com, etc.
"riskScore": 12, // 0-100, lower = safer
"suggestion": null // "corrected@domain.com" or null (typo)
}MCP (Model Context Protocol) is a standard for AI agents to discover and invoke external tools. An MCP server for email verification means any MCP-compatible agent can validate emails without custom integration code—just register the server and the agent gains the ability to check email deliverability as part of any task.
No. MCP is one approach. You can also register email verification as a tool directly in your agent framework—Claude, GPT, Gemini, or open-source agents like LangChain or AutoGen all support custom tool definitions. MCP is the cleanest approach if you want the verification tool available across multiple agent environments.
Zapier and n8n use pre-defined steps: trigger, API call, if/else branch. An agent decides when to validate based on context, can handle unexpected scenarios (escalating unusual patterns, cross-referencing signals), and explains its decisions in natural language. For deterministic, scheduled tasks, Zapier/n8n are sufficient. For dynamic, decision-driven tasks, agents are better.
Batch emails in groups of 50 with 200ms delays between batches. The email-check.app API handles 100+ requests per second. If the agent hits 429 responses, implement exponential backoff. For lists over 1M emails, spread processing across multiple hours using a scheduler trigger.
Yes. When the API returns a suggestion field, the agent can verify the corrected email before updating the record. This is where agents excel over traditional workflows—they can make the correction decision, re-validate, and update the CRM in a single autonomous sequence without human intervention.
Different agent frameworks and patterns suit different use cases. This matrix helps you pick the right approach for your email verification pipeline.
| Pattern | Best For | Setup | Flexibility | Scale |
|---|---|---|---|---|
| MCP Server | Multi-agent environments | Medium | Highest | Excellent |
| LLM Tool Calling | Single-agent tasks | Low | High | Excellent |
| Direct API in Agent | Custom agent runtimes | Low | High | Good |
| Zapier + Agent | Hybrid workflows | Low | Medium | Limited |
The email-check.app REST API maps directly to MCP tool definitions. A single POST endpoint handles all verification—deliverability, disposable detection, risk scoring, and typo correction. No separate endpoints needed.
Agent pipelines need fast tool responses to maintain throughput. 25ms average latency means verification adds negligible overhead to agent decision loops—even when processing hundreds of emails per task.
Every validation result maps to a clear recommendation: ACCEPT, REJECT, REVIEW, or CORRECT. Agents can act on these without parsing raw API fields—just follow the recommendation.
The 0-100 risk score gives agents a continuous signal for decision-making. Set thresholds to create multi-path routing: accept under 30, review 30-70, reject above 70.
When the API returns a suggestion, agents can automatically verify the corrected email and update the record. This closed-loop correction is hard to implement in Zapier but trivial in an agent pipeline.
Emails are processed for validation and not stored. SOC 2 Type II, ISO 27001, GDPR, and CCPA compliance make it safe for enterprise agent pipelines processing sensitive contact data.
Get an API key, register the verification tool in your agent framework or MCP server, and start building autonomous validation pipelines. Plans start at $6.99/month with 6,000 validations included.
All plans include SMTP verification, disposable detection, typo correction, and risk scoring. No feature paywalls. Enterprise pricing available.