Case Study: GenomOncology secures serverless biomedical APIs with Stytch

How GenomOncology uses Stytch to secure open biomedical APIs for LLMs

GenomOncology, a precision medicine company, built BioMCP to give AI agents natural-language access to biomedical sources like PubMed and ClinicalTrials.gov. When they prepared to release it publicly on a serverless Cloudflare Workers architecture, they needed a secure OAuth-based authentication layer without adding custom backend infrastructure.

Stytch provided the solution with serverless-first OAuth, self-service client registration, OpenID discovery docs, and signed JWTs that fit directly into GenomOncology’s Cloudflare Worker setup. With Stytch, GenomOncology fully integrated production-ready auth in under a day, shipped a secure open-source BioMCP flow, and eliminated the need for custom auth code or extra servers.

GenomOncology

Justin Yeakley

Chief Information Security Officer