Integrations
Every channel Loop Desk speaks.
Inbound channels feed signal into the loop. Outbound channels push briefs, alarms, and audit-trail events out. The programmatic v1 API closes the third axis. Procurement reviewers can take this page as a vendor inventory; developers can take it as a route map.
Every channel below is live in production. Each entry names the auth model and the rev it shipped — Loop Desk has been on a public cadence for 164 consecutive revisions and counting.
Inbound
Every channel that brings external signal into Loop Desk. The desk watches these continuously and feeds them through the approval-first loop.
RSS / Atom feeds
rev 5Watch any RSS or Atom feed — your blog, a competitor's release page, an industry newsletter. The loop polls on a per-source cadence (rev 141), filters by keyword (rev 26), and dedupes by GUID so a feed re-publishing yesterday's items doesn't flood your queue.
Auth: Per-workspace, no external auth required.
Review sites
rev 10G2, Trustpilot, Google Reviews via their RSS bridges. Surfaced as feedback signals so customer reactions land alongside operator-logged signal.
Auth: Per-workspace, no external auth required.
LinkedIn (via rss.app / fetchrss bridge)
rev 11Watch a LinkedIn page as if it were a feed. The #1 missing B2B source type per IDC 2026 research; Loop Desk closes the gap via the bridge URL pattern.
Auth: Per-workspace, no external auth required.
Email forwarding inbox
rev 7Per-workspace token mints an inbound email address. Forward customer-feedback emails, partner correspondence, or any email thread you want surfaced as signal. HMAC-signed (rev 13). Strips HTML and quoted reply chains automatically.
Auth: Per-workspace ingest token + optional HMAC signing secret.
Inbound webhooks
rev 4POST /api/webhooks/signals/[token] accepts JSON from Zapier, Make, Postmark, or any system that can fire HTTP. HMAC signing with X-Loop-Signature header is opt-in and verified against the workspace's signing secret.
Auth: Per-workspace ingest token + optional HMAC signing secret.
Manual signal logging
rev 1Operators log signals directly from the dashboard or v1 API — orders, internal events, decisions waiting on context, anything that should reach the loop.
Auth: Workspace member session (dashboard) or bearer ingest token (v1).
Outbound
Every channel Loop Desk pushes into. Briefs, alarms, decisions, and audit-trail events flow out so your team and downstream tools stay in sync without polling.
Slack push (briefs, alarms, mentions)
rev 1Cycle briefs, daily cost-spike pushes (rev 32 / 55 / 58 / 62 / 67 / 161), chronic-warning pushes (rev 64 / 70 / 74 / 163), task-assigned + due-soon pings, comment @-mentions, ad-hoc artifact push, source quietness, source pause-until — 30+ push channels. Min-priority filter, quiet hours, weekend mute, dead-webhook auto-clear.
Auth: Per-workspace incoming-webhook URL.
Outbound webhooks (per-event router)
rev 17 (single URL), rev 19 (per-event router)Real per-event subscription model — wire artifact.ready to one URL, signal.created to another, task.assigned to a third. HMAC-signed via X-Loop-Signature, with full delivery log + one-click retry. 30+ event types and growing.
Auth: Per-subscription URL + workspace signing secret.
Daily digest email
rev 413:15 UTC cron emails every owner/admin a personalised digest — workspace summary, your assigned tasks, your unread mentions, stale work, daily and chronic cost spikes. Per-recipient personal sections opt-out, weekend mute, quiet-hours window, simulated-date dry-run for admin testing.
Auth: Resend API key + per-workspace digest opt-in.
Public share links
rev 10Mint a /share/<token> link for any artifact, work log, or full task timeline. Robots-noindexed, view-counter + 14-day sparkline, optional revoke. Stakeholders read shared evidence without a session and can react via the rev-18 feedback form.
Auth: Per-artifact share token (operator-minted).
Public desk-health badge SVG
rev 19GET /api/v1/badge.svg?token=… returns a shields.io-style SVG showing the workspace's desk-health score. Embeddable in a README, status page, or Notion doc. Same color-mapped state vocabulary as the dashboard widget.
Auth: Token in query param (read-only, no mutation).
Programmatic
Loop Desk speaks JSON. Every dashboard mutation has a v1 equivalent — meaning the upcoming MCP server is exclusively a protocol-translation job, not a greenfield design.
REST API v1
rev 12 (foundation), rev 78+ (typed OpenAPI 3.1 contract)Bearer-authenticated JSON API at /api/v1. 100+ endpoints covering workspace state, signals (R/W), tasks (R/W + bulk + comments + reactions), artifacts (R + bulk + reactions + tags), memory (R/W + bulk + tags), runs, search, today snapshot, stats, activity log, focus tags, members, invites, outbound subscriptions, cost surfaces, and more. Self-describing index at /api/v1.
Auth: Per-workspace ingest token (Authorization: Bearer …).
OpenAPI 3.1 spec
rev 78Machine-readable typed contract at /api/v1/openapi.json. MCP-host code generators can typecheck their tool calls and auto-generate client SDKs. Coverage continues to grow rev-by-rev — 86 unbroken cadence revs as of rev 164.
Auth: Public (no auth required to read the spec; spec describes the auth model).
MCP server (Model Context Protocol)
Roadmap — Q3 2026 (next-up)Coming Q3 2026. Wraps /api/v1 as a Model Context Protocol server so Claude Desktop, Cursor, and any MCP-compatible host can drive a Loop Desk workspace as a first-class tool. The v1 surface is intentionally complete enough that the MCP work is exclusively protocol translation.
Auth: Per-workspace ingest token.
Don't see what you need?
We ship integration coverage on the same public cadence as everything else. Open an issue, email us, or upvote it on the roadmap and it lands within a few revs.