The VeriSwarm MCP Server exposes the VeriSwarm platform to AI agents through the Model Context Protocol. Any MCP-compatible client — Claude Desktop, Cursor, or custom runtimes — can check trust scores, report events, manage agents, and interact with Guard, Passport, Vault, and the broader agent operations layer.
pip install veriswarm-mcp
Requires Python 3.10+.
The server authenticates using environment variables:
| Variable | Required | Description |
|---|---|---|
VERISWARM_API_URL |
No | API base URL (default: https://api.veriswarm.ai) |
VERISWARM_API_KEY |
Yes (or AGENT_KEY) |
Platform API key for workspace operations |
VERISWARM_AGENT_KEY |
Yes (or API_KEY) |
Agent-scoped key for self-reporting and credentials |
For most setups, you only need VERISWARM_API_KEY. Set VERISWARM_AGENT_KEY when the server runs on behalf of a specific agent.
check_trust, check_decision, get_my_score, get_score_history, get_score_breakdown, explain_score
report_action, report_tool_call, report_interaction, report_incident
scan_tool, check_tool_allowed, get_findings, kill_agent, unkill_agent, tokenize_pii, rehydrate_pii, scan_injection, get_pii_session, revoke_pii_session, list_guard_policies
get_credentials, verify_credential, verify_identity, check_delegation
query_ledger, verify_chain, export_vault
register_agent, get_agent, list_agents, get_agent_timeline, get_agent_flags
platform_status, get_scoring_profile, set_scoring_profile, list_notifications, get_ip_allowlist, set_ip_allowlist, get_custom_domain, set_custom_domain, list_team_members, invite_team_member
get_agent_analytics, get_cost_recommendations, list_red_team_attacks, check_tool_permission, score_conversation_security, forget_contact, list_deletion_records, verify_deletion, get_agent_reputation, get_a2a_history, get_benchmark_history, get_provider_health
list_workflows, get_workflow, create_workflow, run_workflow, get_execution, activate_workflow, deactivate_workflow, list_workflow_templates, deploy_template, workflow_stats, cancel_workflow_execution, retry_workflow_execution
For detailed parameter descriptions, see the Python SDK or Node.js SDK documentation.
Add the following to your MCP client configuration:
{
"mcpServers": {
"veriswarm": {
"command": "python",
"args": ["-m", "veriswarm_mcp"],
"env": {
"VERISWARM_API_URL": "https://api.veriswarm.ai",
"VERISWARM_API_KEY": "vs_your_platform_key"
}
}
}
}
Config file locations:
~/Library/Application Support/Claude/claude_desktop_config.json%APPDATA%\Claude\claude_desktop_config.json.cursor/mcp.json in your project, or Cursor Settings > MCPIf using a virtual environment, replace "python" with the full path to that environment's Python binary.
"What is the current trust score for agent
agt_abc123?"
"Can agent
agt_abc123perform afile_writeaction onproduction_db?"
"Report that agent
agt_abc123successfully calledsearch_documentsin 230ms."
"Report a high-severity prompt injection attempt from agent
agt_xyz789."
"Issue me a Passport credential."
"Verify this Passport credential: eyJhbGciOi..."
"Kill-switch agent
agt_abc123— suspected data exfiltration."
"Tokenize any PII in this text before sending it to the external tool."
"Rehydrate the tokenized response so I can read the original values."
"Verify the integrity of the last 200 Vault ledger entries."
Agents can connect through a Guard Proxy MCP server instead of connecting directly to upstream tool servers. The proxy transparently intercepts every tool call to apply PII tokenization, policy enforcement, injection scanning, and audit logging before forwarding requests. Configure the proxy endpoint in your MCP client config just like any other MCP server.
The MCP server inherits rate limits from the VeriSwarm REST API. Limits vary by plan tier — see your workspace billing settings for details. Rate-limited requests return HTTP 429.