io.github.shahidh68

audit-ledger-mcp

Record AI decisions to a tamper-evident audit ledger from any MCP-compatible agent.

stdiocommunityinfra

Package Details

Transportstdio

Environment Variables

AUDIT_API_URL(str)

Your deployed audit-ledger API endpoint (e.g. https://<api-id>.execute-api.<region>.amazonaws.com/prod). Leave unset to run in sandbox mode against the public shared tenant.

AUDIT_WRITE_KEY(str)
Secret

Tenant write key for your deployed ledger. Required if AUDIT_API_URL is set and you want to call record_decision.

AUDIT_READ_KEY(str)
Secret

Tenant read key for your deployed ledger. Required if AUDIT_API_URL is set and you want to call verify_decision or list_decisions.

AUDIT_TIMEOUT_MS(str)

HTTP timeout in milliseconds. Defaults to 5000.

AUDIT_RETRY_ATTEMPTS(str)

Number of retry attempts on transient failures. Defaults to 3.

AUDIT_HMAC_KEY(str)
Secret

Tenant secret used to HMAC-SHA256 PII and prompts locally before sending. Generate once per tenant (e.g. node -e "console.log(require('crypto').randomBytes(32).toString('hex'))") and keep it in your environment. The key never leaves your process. If unset, the MCP falls back to plain SHA-256 for backwards compatibility and logs a one-time deprecation warning; set this to switch to keyed hashing, which regulators (ICO/EDPB) expect for pseudonymisation.