MCP server

The reference MCP server exposes TrustMCP as tools so any agent can run an assessment through a single connector. It holds the customer's access keys and talks to the network on the agent's behalf.

Tools

Tool	Purpose
`discover_vendor(domain)`	Resolve a domain to a vendor id + network endpoint.
`request_access(vendor_id, requester, scope)`	Ask the vendor for a key (may auto-grant).
`get_manifest(vendor_id)`	Return the manifest.
`get_attestations(vendor_id, keys?)`	Return structured claims, optionally filtered.
`fetch_artifact(vendor_id, artifact_id)`	Return a signed download link + expected hash.
`check_freshness(vendor_id)`	Return valid / expiring / expired artifacts.
`verify_mark(vendor_id)`	Verify domain ownership + verified domains.

Run it

cd mcp/python && uv venv .venv && uv pip install --python .venv -e ".[dev]"
export TRUSTMCP_NETWORK=https://network.trustmcp.app
export TRUSTMCP_KEYS='{"vnd_acme":"tmcp_live_..."}'
uv run trustmcp-mcp

Register with an agent

{
  "mcpServers": {
    "assurance-network": {
      "command": "uv",
      "args": ["run", "trustmcp-mcp"],
      "env": {
        "TRUSTMCP_NETWORK": "https://network.trustmcp.app",
        "TRUSTMCP_KEYS": "{\"vnd_acme\": \"tmcp_live_...\"}"
      }
    }
  }
}