{
  "schema_version": "2025-03-26",
  "name": "Quantumize Post-Quantum Readiness APIs",
  "description": "Read-only APIs for post-quantum cryptography service discovery, risk assessment, CBOM schema, and migration planning. All endpoints return structured JSON and accept GET requests with query parameters.",
  "homepage": "https://quantumize.com",
  "contact": "info@quantumize.com",
  "tools": [
    {
      "name": "quantumize_discovery",
      "description": "Returns the Quantumize service capabilities, supported post-quantum algorithms (ML-KEM FIPS 203, ML-DSA FIPS 204, SLH-DSA FIPS 205), supported use cases, target sectors, relevant standards, and AI discovery endpoints. Use this tool to understand what Quantumize does and what information it provides.",
      "inputSchema": {
        "type": "object",
        "properties": {},
        "required": []
      },
      "annotations": {
        "readOnlyHint": true,
        "openWorldHint": false
      },
      "endpoint": "https://quantumize.com/api/mcp/discovery",
      "method": "GET"
    },
    {
      "name": "quantumize_risk_assessment",
      "description": "Returns a post-quantum cryptographic risk assessment for a described organization. Computes a composite risk score (0-100), HNDL exposure classification, migration urgency, and phased action priorities based on sector, data lifetime, regulatory obligations, and organization size. All parameters are optional; defaults apply for omitted fields.",
      "inputSchema": {
        "type": "object",
        "properties": {
          "sector": {
            "type": "string",
            "enum": [
              "financial-services",
              "government-defense",
              "healthcare",
              "critical-infrastructure",
              "software-saas",
              "general-enterprise"
            ],
            "description": "Primary industry sector of the organization. Default: general-enterprise."
          },
          "orgSizeEmployees": {
            "type": "integer",
            "minimum": 1,
            "description": "Approximate number of employees. Used to estimate cryptographic estate size. Default: 500."
          },
          "dataLifetimeYears": {
            "type": "integer",
            "minimum": 1,
            "maximum": 50,
            "description": "How many years the most sensitive data must remain confidential. Longer lifetimes increase HNDL risk urgency. Default: 5."
          },
          "hasNss": {
            "type": "boolean",
            "description": "Whether the organization operates or supplies National Security Systems subject to NSA CNSA 2.0 mandates. Default: false."
          },
          "hasPciDss": {
            "type": "boolean",
            "description": "Whether the organization is subject to PCI DSS requirements. Default: false."
          },
          "hasHipaa": {
            "type": "boolean",
            "description": "Whether the organization is subject to HIPAA. Default: false."
          }
        },
        "required": []
      },
      "annotations": {
        "readOnlyHint": true,
        "openWorldHint": false
      },
      "endpoint": "https://quantumize.com/api/mcp/risk-assessment",
      "method": "GET"
    },
    {
      "name": "quantumize_cbom",
      "description": "Returns the Quantumize CBOM (Cryptographic Bill of Materials) schema: field definitions, data types, required vs optional fields, sector-specific example entries, and references. A CBOM is a structured inventory of all cryptographic assets across an organization's systems. Optionally filter examples by sector.",
      "inputSchema": {
        "type": "object",
        "properties": {
          "sector": {
            "type": "string",
            "enum": [
              "financial-services",
              "government-defense",
              "healthcare",
              "critical-infrastructure",
              "software-saas"
            ],
            "description": "Filter CBOM examples to a specific sector. Omit to return all examples."
          }
        },
        "required": []
      },
      "annotations": {
        "readOnlyHint": true,
        "openWorldHint": false
      },
      "endpoint": "https://quantumize.com/api/mcp/cbom",
      "method": "GET"
    },
    {
      "name": "quantumize_migration_planner",
      "description": "Returns a post-quantum migration plan including all phases from discovery through governance, estimated timelines by organization size, regulatory notes by sector, and key NIST/NSA/CISA guidance references. Customized by current PQC maturity level (1=Unaware through 6=Governed) and organization size.",
      "inputSchema": {
        "type": "object",
        "properties": {
          "currentMaturity": {
            "type": "integer",
            "minimum": 1,
            "maximum": 6,
            "description": "Current PQC migration maturity level: 1=Unaware, 2=Aware, 3=Assessing, 4=Planning, 5=Executing, 6=Governed. Default: 1."
          },
          "orgSizeEmployees": {
            "type": "integer",
            "minimum": 1,
            "description": "Approximate number of employees. Used to estimate migration timeline. Default: 500."
          },
          "sector": {
            "type": "string",
            "enum": [
              "financial-services",
              "government-defense",
              "healthcare",
              "critical-infrastructure",
              "software-saas",
              "general-enterprise"
            ],
            "description": "Primary industry sector. Used to include relevant regulatory context. Default: general-enterprise."
          }
        },
        "required": []
      },
      "annotations": {
        "readOnlyHint": true,
        "openWorldHint": false
      },
      "endpoint": "https://quantumize.com/api/mcp/migration-planner",
      "method": "GET"
    }
  ]
}
