report_ip

Pack: abuseipdb · Endpoint: https://gateway.pipeworx.io/abuseipdb/mcp

Report an abusive IP address to AbuseIPDB. Requires category IDs (e.g., “18,22” for DDoS + SSH brute force). Returns the updated abuse confidence score.

Parameters

Example call

Arguments

{
  "_apiKey": "your-abuseipdb-api-key",
  "ip": "118.25.6.39",
  "categories": "18,22",
  "comment": "SSH brute force attack from this IP"
}

curl

curl -X POST https://gateway.pipeworx.io/abuseipdb/mcp \
  -H 'Content-Type: application/json' \
  -d '{"jsonrpc":"2.0","id":1,"method":"tools/call","params":{"name":"report_ip","arguments":{"_apiKey":"your-abuseipdb-api-key","ip":"118.25.6.39","categories":"18,22","comment":"SSH brute force attack from this IP"}}}'

TypeScript (@pipeworx/sdk)

import { Pipeworx } from '@pipeworx/sdk';
const pipeworx = new Pipeworx();

const result = await pipeworx.call('report_ip', {
  "_apiKey": "your-abuseipdb-api-key",
  "ip": "118.25.6.39",
  "categories": "18,22",
  "comment": "SSH brute force attack from this IP"
});

More examples

{
  "_apiKey": "your-abuseipdb-api-key",
  "ip": "203.0.113.45",
  "categories": "4",
  "comment": "DDoS attack source"
}

Response shape

Always returns: ip, abuse_confidence_score, reported

{
  "type": "object",
  "properties": {
    "ip": {
      "type": "string",
      "description": "The reported IP address"
    },
    "abuse_confidence_score": {
      "type": "number",
      "description": "Updated abuse confidence score after report"
    },
    "reported": {
      "type": "boolean",
      "description": "Confirmation that the IP was reported successfully"
    }
  },
  "required": [
    "ip",
    "abuse_confidence_score",
    "reported"
  ]
}

Connect

Add this to your MCP client config, or use one-click install buttons:

{
  "mcpServers": {
    "abuseipdb": {
      "url": "https://gateway.pipeworx.io/abuseipdb/mcp"
    }
  }
}

See Getting Started for client-specific install steps.