mcp
FreeNot checkedMCP auth middleware: gate tool calls so only authorized agents can act.
About
MCP auth middleware: gate tool calls so only authorized agents can act.
README
Verified agent actions: authorization policy, signed receipts, and tamper-evident audit for AI agent tool calls.
- Domain: bolyra.ai
- Company: ZKProva Inc.
- License: Apache-2.0 (with DCO sign-off — every commit requires
Signed-off-by:)
What this is
When an AI agent calls a tool, Bolyra proves who — and what — authorized the action. Put the gateway in front of any MCP server (or embed the verifier in your agent platform) and every tool call gets four checks: credential verification, per-tool policy, replay protection, and a signed audit receipt.
Bolyra ships in two tiers on the same verifier contract:
- Bolyra Core — classical crypto, no circuits, no trusted setup: per-tool policy, nonce replay protection, ES256K-signed action receipts, credential binding against registered credentials, and JWT-based delegation claims (@bolyra/delegation). This is the gateway's
--devmode; with acredentialssection (or--credentials) configured, claimed identities and permission masks are enforced against the registry — unknown, forged, or expired credentials are denied fail-closed with signed receipts. Without registered credentials, permission claims remain self-asserted (the gateway warns at startup and flags the receipts). - Bolyra ZK — the privacy upgrade: humans prove uniqueness via a Semaphore v4-style enrollment circuit; AI agents prove EdDSA-signed credentials with cumulative-bit permissions; a delegation circuit narrows scope one-way (permissions can only drop, never widen), with the delegation path hidden from the verifier. A handshake binds the human and agent Groth16 proofs to a shared session nonce, verified atomically on-chain.
Core gets you policy-gated, replay-protected, receipted actions. ZK gets you cryptographically bound verified actions without disclosure — the verifier learns that the predicate holds, not your credentials, policies, or delegation graph. You don't need ZK to gate your first MCP server with one command.
Building an agent platform? Bolyra plugs in as an external verifier and gives you an enterprise security capability — verified agent actions — without rebuilding auth. See bolyra.ai.
Repository layout
circuits/ Circom 2 circuits + snarkjs/rapidsnark proving
contracts/ Hardhat — Solidity verifiers + on-chain registry
sdk/ @bolyra/sdk (TypeScript, public API)
sdk-python/ bolyra (Python — pure types + subprocess bridge)
integrations/ langchain, crewai, mcp, openclaw, payment-protocols
spec/ DID method, IETF-style draft, conformance runner
examples/ mcp-demo, provider-mock
docs/ quickstart, OWASP agentic mapping
Quickstart
See sdk/QUICKSTART.md for the TypeScript SDK quickstart.
Build & test
npm install
npm run compile:circuits
npm run compile:contracts
npm test # circuits fast + contracts
FULL_PROOF=1 npm run test:circuits:slow # full Groth16/PLONK proving (~2 min)
Protocol Conformance
48 executable test vectors verify the implementation matches the protocol specification. CI runs them on every PR. See spec/CONFORMANCE.md for the current generated report.
npm run conformance # run vectors
npm run conformance:report # generate spec/CONFORMANCE.md
Contributing
This project requires a Developer Certificate of Origin (DCO) sign-off on every commit. Use git commit -s. See CONTRIBUTING.md for details.
License
Apache-2.0. See LICENSE.
Install mcp in Claude Desktop, Claude Code & Cursor
unyly install io-github-bolyraInstalls into Claude Desktop, Claude Code, Cursor & VS Code — handles npx, uvx and build-from-source repos for you.
First time? Get the CLI: curl -fsSL https://unyly.org/install | sh
Or configure manually
Run in your terminal:
claude mcp add io-github-bolyra -- npx -y @bolyra/mcpFAQ
Is mcp MCP free?
Yes, mcp MCP is free — one-click install via Unyly at no cost.
Does mcp need an API key?
No, mcp runs without API keys or environment variables.
Is mcp hosted or self-hosted?
Self-hosted: the server runs locally on your machine via the install command above.
How do I install mcp in Claude Desktop, Claude Code or Cursor?
Open mcp on unyly.org, pick your client tab (Claude Desktop, Claude Code, Cursor) and press Install — the config is generated automatically, no JSON editing.
Related MCPs
GitHub
PRs, issues, code search, CI status
by GitHubFilesystem
Secure file operations with configurable access controls.
Memory
Knowledge graph-based persistent memory system.
Template MCP Server
A CLI tool to create a new Model Context Protocol server project with TypeScript support, dual transport options, and an extensible structure
by mcpdotdirectCompare mcp with
Not sure what to pick?
Find your stack in 60 seconds
Author?
Embed badge for your README
Browse similar
All development MCPs
