Submit

Mandatez Mcp

@David Okeke

Visit Server
8 days ago
Cryptographic identity, policy enforcement, trust scoring, and tamper-proof audit trails for AI agents. Register agents, track signed events, check policies, and get trust profiles — all from Claude, Cursor, or Windsurf. OWASP Agentic Top 10 compliant.
OverviewToolsComments
Overview

MandateZ

Every agent needs a mandate.

MandateZ is the neutral trust infrastructure layer for AI agents. Cryptographic identity, policy enforcement, human oversight gates, and tamper-proof audit trails — for every agent, across every framework.

Why MandateZ

AI agents are autonomous. They read files, call APIs, send emails, make payments. Nobody can prove what they did, whether they were authorized, or produce a compliance trail on demand.

MandateZ fixes all four. It works with LangChain, n8n, AutoGen, CrewAI, and every other framework — simultaneously.

Install

npm install @mandatez/sdk

Quickstart

import { generateAgentIdentity, MandateZClient } from '@mandatez/sdk';

const identity = await generateAgentIdentity();
const client = new MandateZClient({
  agentId:         identity.agent_id,
  ownerId:         'your_org_id',
  privateKey:      identity.private_key,
  supabaseUrl:     process.env.SUPABASE_URL!,
  supabaseAnonKey: process.env.SUPABASE_ANON_KEY!,
});

const event = await client.track({
  action_type: 'read',
  resource: 'emails',
});
// → signed, validated, emitted to your event stream

What you get

  • Ed25519 cryptographic identity per agent — unique ag_ prefixed IDs with keypair signing
  • Policy engine — allow/block/flag rules with wildcard resource matching
  • Human oversight gate — pause execution, alert via Slack/webhook, auto-block on timeout
  • Tamper-proof audit trail — every action signed and emitted to Supabase
  • Compliance report export — HIPAA, EU AI Act, SOC2 (coming)

Integrations

n8n

npm install n8n-nodes-mandatez

Drop the MandateZ node into any workflow. Every execution gets a signed audit event.

LangChain

import { MandateZLangChainCallback } from '@mandatez/sdk';

const callback = new MandateZLangChainCallback(client);
const chain = new ChatOpenAI({ callbacks: [callback] });

More coming

AutoGen, CrewAI, Voiceflow, Dify, Make.

Architecture

Everything flows from one spine: the Agent Event Stream.

Agent Action → Policy Engine → Oversight Gate → Sign (Ed25519) → Emit to Stream

Every surface — SDK, dashboard, compliance engine, directory — reads the same stream. One data layer. No duplication.

License

MIT

Try in Playground

Server Config

{
  "mcpServers": {
    "mandatez": {
      "command": "npx",
      "args": [
        "@mandatez/mcp"
      ],
      "env": {
        "SUPABASE_URL": "<your-supabase-url>",
        "SUPABASE_ANON_KEY": "<your-supabase-anon-key>",
        "MANDATEZ_OWNER_ID": "<your-owner-id>"
      }
    }
  }
}
© 2025 MCP.so. All rights reserved.

Build with ShipAny.