Composition Patterns

OntoRamp MCP tools integrate with your existing agent workflows. Combine governance assessment with Jira, GitHub, Slack, or build complete audit pipelines — every pattern uses standard MCP tool calls.

Connect OntoRamp

Add OntoRamp to your Claude Desktop, Cursor, or Windsurf configuration. Get your API key first.

{
  "mcpServers": {
    "ontoramp": {
      "url": "https://mcp.ontoramp.com/mcp",
      "headers": { "Authorization": "Bearer YOUR_API_KEY" }
    }
  }
}

Jira + OntoRamp

Governance impact assessment before ticket creation

Trigger: Before creating a Jira ticket for a new system or architectural change, assess governance impact.

Tools: get_maturity_gap

INPUT

{
  "tool": "get_maturity_gap",
  "input": {
    "domain": "security",
    "context": "New payment processing system deployment"
  }
}

OUTPUT

{
  "current_tier": "S2",
  "target_tier": "S3",
  "domain_scores": [
    {
      "domain": "security",
      "gap": 0.21,
      "top_gaps": [
        "Encryption key management policy",
        "Data classification for PCI scope"
      ]
    }
  ],
  "recommended_actions": [
    "Define encryption key rotation policy before deployment"
  ]
}

Governance gaps surface before work starts, not after audit findings.

GitHub + OntoRamp

Compliance regression checks on PR merge

Trigger: When a PR modifies governance documentation, validate it against known frameworks before merging.

Tools: lint_document

INPUT

{
  "tool": "lint_document",
  "input": {
    "content": "...updated data retention policy text...",
    "check_entities": true
  }
}

OUTPUT

{
  "entity_coverage": {
    "found": 8,
    "known": 6,
    "coverage_ratio": 0.75
  },
  "vocabulary_issues": [
    {
      "term": "data steward",
      "suggestion": "Data Governance Steward"
    }
  ]
}

Compliance regressions caught in PR review, not in the next audit cycle.

Slack + OntoRamp

Evidence-linked governance answers in chat

Trigger: When someone asks a governance question in Slack, find evidence-linked answers from the knowledge base.

Tools: hybrid_search

INPUT

{
  "tool": "hybrid_search",
  "input": {
    "query": "What is our data retention policy for customer PII?",
    "domain": "data"
  }
}

OUTPUT

{
  "results": [
    {
      "content": "Customer PII retention is governed by...",
      "domain": "data",
      "document_title": "Data Governance Framework v2.1",
      "rrf_score": 0.041
    }
  ]
}

Governance answers cite specific source documents instead of tribal knowledge.

Full Audit Workflow

Complete governance assessment pipeline

Trigger: Run a full governance assessment — from evidence search through board-ready brief.

Tools: semantic_search→lint_document→get_maturity_gap→generate_brief

INPUT

// Step 1: Find relevant controls
{ "tool": "semantic_search", "input": { "query": "SOC 2 access control requirements", "domain": "security" } }

// Step 2: Validate policy documents
{ "tool": "lint_document", "input": { "content": "...access control policy..." } }

// Step 3: Assess domain maturity
{ "tool": "get_maturity_gap", "input": { "domains": ["security", "governance"] } }

// Step 4: Generate board-ready summary
{ "tool": "generate_brief", "input": { "topic": "SOC 2 readiness — access controls", "domains": ["security"] } }

OUTPUT

// Final result: evidence-linked brief
{
  "brief": "Access control governance is at Structured level...",
  "sources": [
    {
      "document_title": "Access Control Policy v3.0",
      "domain": "security",
      "relevance": 0.91
    }
  ],
  "domains_covered": ["security", "governance"],
  "confidence": 0.84
}

Four tool calls produce a board-ready governance brief with full evidence provenance.

Ready to connect governance intelligence to your agent workflows?

Get your API key