Pryzma Connect
Claude Code is the interface.
No web forms. No configuration portals. No OAuth wizards. Your integration team talks to Claude — and Claude configures the connection.
Why
Integration without the UI
Traditional Integration
- Custom UI for every connector type
- Organization-specific configuration portals
- Training documentation for each interface
- Support ticketing for config issues
- Months of development per new connector
Pryzma Connect
- One CLI tool — Claude Code is the UX
- Natural language configuration
- Claude discovers connector types dynamically
- Full audit trail, role-based access at every layer
- New connector type = one database row
How It Works
Natural language. Real commands.
Setup
User: "Set up an Epic FHIR connection for Regional Medical"
$ pryzma connector add --type epic_fhir
Connector created (PENDING approval)
Monitoring
User: "Are all our interfaces healthy?"
$ pryzma connector list
$ pryzma connector status
3 ACTIVE, 1 DEGRADED, 1 PENDING
Diagnostics
User: "The Cerner SFTP connection stopped working"
$ pryzma connector logs
$ pryzma connector test
$ pryzma org diagnostic
TLS certificate expired 2026-02-23
Architecture
The CLI is the permission boundary
Operator + Claude Code
- CLAUDE.md scopes available commands
- .claude/settings.json enforces Bash(pryzma *) only
- File edits, curl, git, arbitrary Python all blocked
Pryzma API — The Permission Boundary
- Role enforcement: hie < staff < admin
- Every call audited to cli_audit_log
- Client-side fast reject + server-side canonical check
Pryzma Engine (private)
- BigQuery, Lambda pipelines, anomaly detection
- Completely invisible to CLI users
- Source code never exposed
Role Tiers
HIE Operations
Configure connectors, view member org data, run diagnostics
Pryzma Support
Approve/reject connectors, system health, escalation
Pryzma Engineering
Key management, org provisioning, crosswalk, audit
Connectors
Connect to any data source
EHR Systems
Epic Interconnect
epic_fhir
Oracle Health (Cerner)
cerner_sftp
athenahealth
athena_fhir
MEDITECH
meditech_sftp
NextGen Healthcare
nextgen_fhir
Qualifacts CareLogic
qualifacts_carelogic
Credible (Qualifacts)
credible_bh
Streamline Healthcare
streamline_hc
Echo EHR
echo_ehr
Kepler
kepler_ehr
Legacy EHR Transform
legacy_ehr
HIE Platforms & Networks
Orion Health (Rhapsody)
orion_health
InterSystems HealthShare
intersystems
IMAT (Audacious Inquiry)
imat
Zen Healthcare IT
zen_hcit
Smile Digital Health (Smile CDR)
smile_cdr
CommonWell Health Alliance
commonwell
Carequality
carequality
eHealth Exchange
ehealth_exchange
PCDH / State HIEs
pcdh_hie
Integration Engines
NextGen Connect (Mirth)
hl7_mirth
Rhapsody Integration Engine
rhapsody_engine
Any SFTP Server
sftp_generic
Cloud Services
AWS S3
aws_s3
Google Cloud Platform
gcp_storage
Microsoft Azure
azure_blob
AI & Analytics
Google Gemini
gemini
Google Vertex AI
vertex_ai
Google NotebookLM
notebooklm
Business Platforms
Zoho CRM
zoho_crm
Zoho Desk
zoho_desk
Zoho Books
zoho_books
Monday.com
monday_com
Microsoft Power BI
powerbi
Google Drive
google_drive
New connector types added server-side — Claude discovers them dynamically.
Security
Trust architecture
API Key Auth
SHA-256 hashed, role-prefixed keys, shown once at creation. No plaintext ever persisted.
Credential Vault
Connector secrets stored in GCP Secret Manager. Never in config tables — only reference names.
Full Audit Trail
Every CLI op logged with timestamp, key, role, command, and result. Queryable by admins.
Claude Sandboxing
.claude/settings.json blocks everything except pryzma *. No file edits, no curl, no escape.
Ready?
Replace your integration UI.
The CLI took a day to build. The UX is natural language. Adding a new connector type means adding a row to a database table.