thinkneo-control-plane
OfficialThe ThinkNEO MCP Server is an Enterprise AI Control Plane for governance, cost management, security, and compliance across AI providers. It supports both authenticated and public tools:
Authenticated Tools
Check AI Spend (
thinkneo_check_spend): Track cost breakdowns by provider, model, team, or project across configurable time periodsEvaluate Guardrails (
thinkneo_evaluate_guardrail): Pre-flight check prompts against workspace guardrail policies to detect violations and optionally block unsafe requests before sending to an AI providerCheck Policy Compliance (
thinkneo_check_policy): Verify whether a specific model, provider, or action is permitted under workspace governance policiesGet Budget Status (
thinkneo_get_budget_status): View budget utilization, spend vs. limits, alert thresholds, and projected overagesList Alerts (
thinkneo_list_alerts): Retrieve active alerts and incidents (budget, policy, guardrail, provider issues), filterable by severityGet Compliance Status (
thinkneo_get_compliance_status): Assess audit readiness against SOC 2, GDPR, HIPAA, or general AI governance frameworks
Public Tools (no authentication required)
Provider Status (
thinkneo_provider_status): Check real-time health, latency, error rates, and availability of AI providers (OpenAI, Anthropic, Google, Mistral, etc.)Read Project Memory: Access Claude Code project memory files
Schedule a Demo (
thinkneo_schedule_demo): Book a discovery call with the ThinkNEO team
Compatible with Claude, ChatGPT, Copilot, Gemini, and any MCP-compatible client. Can be self-hosted via Docker.
Enables real-time monitoring of provider health, tracking of AI expenditures, and enforcement of safety guardrails and compliance policies for OpenAI models.
ThinkNEO MCP Server
Open MCP server with built-in defense layer (ThinkShield). Part of the ThinkNEO Platform — enterprise AI governance.
What This Is
An open-source MCP server providing 72 tools for AI governance, observability, and security:
ThinkShield — Production defense layer: detection engine, 5 rule packs, runtime middleware. 145 tests, p99 < 1ms.
72 MCP Tools — Governance, guardrails, FinOps, smart routing, observability, compliance, outcome validation, and more.
24 A2A Skills — Bidirectional MCP-A2A bridge for Google's Agent-to-Agent Protocol (v0.3.0, Linux Foundation).
Apache-2.0 — Use it, fork it, contribute.
Related MCP server: Compliance Scanner MCP
What This Is Not
Not the full ThinkNEO Platform. Governance orchestration, cryptographic audit chain, tenant management, and enterprise integrations are proprietary and run at thinkneo.ai.
Not a standalone security product. ThinkShield is the defense component of a larger governed platform.
Why Open
We open-source our defense layer because real security doesn't depend on hidden rules — it depends on tested, audited, continuously improved detection plus a strong governance moat around it.
Snort. Suricata. Falco. OWASP CRS. The security industry runs on open detection. We follow that tradition.
The detection is open. The governance is proprietary. That's where the moat is.
Architecture
Open Source (this repo) Proprietary (thinkneo.ai)
┌─────────────────────────────────┐ ┌──────────────────────────────────┐
│ │ │ │
MCP Clients ────>│ 72 MCP Tools │ │ Governance Orchestration │
(Claude, Cursor, │ ├── Guardrails & Safety │────>│ ├── Policy Engine (AIRGP) │
ChatGPT, etc.) │ ├── FinOps & Smart Routing │ │ ├── Cryptographic Audit Chain │
│ ├── Observability │ │ ├── Tenant Management │
A2A Agents ─────>│ ├── Compliance & Validation │ │ ├── Enterprise Integrations │
(Google A2A) │ └── MCP-A2A Bridge (24 skills) │ │ └── SLA & Support │
│ │ │ │
│ ThinkShield Defense Layer │ │ SHA-256 Hash Chain (949K+ rows) │
│ ├── Detection Engine │ │ Stripe Billing │
│ ├── 5 Rule Packs │ │ Resend Email │
│ └── ASGI Middleware │ │ Multi-tenant Auth │
│ │ │ │
└─────────────────────────────────┘ └──────────────────────────────────┘
Apache-2.0 License Commercial LicenseQuickstart
# Clone
git clone https://github.com/thinkneo-ai/mcp-server.git
cd mcp-server
# Install
pip install -r requirements.txt
# Run
python -m uvicorn src.server:app --host 0.0.0.0 --port 8081
# Test
python -m pytest tests/ -qOr with Docker:
cd deploy
docker compose up -dConnect from Claude Desktop, Cursor, or any MCP client:
https://mcp.thinkneo.ai/mcpFree tier: 500 calls/month, auto-provisioned API key. All 72 tools available.
Components
Directory | Description | License |
| 72 MCP tools — governance, security, FinOps, observability | Apache-2.0 |
| Defense layer — detection engine, 5 rule packs | Apache-2.0 |
| ThinkShield test suite — 145 tests + attack/benign fixtures | Apache-2.0 |
| A2A Agent Card — 24 skills bridged from MCP | Apache-2.0 |
ThinkShield Rule Packs
Pack | Detects |
| SQL injection, XSS, command injection, path traversal |
| Credential stuffing, brute force, token replay, privilege escalation |
| Rate abuse, resource exhaustion, API scraping |
| Path probing, tool enumeration, method probing, fingerprinting |
| Header anomalies, spoofing, missing security headers |
MCP Tools (72)
Governance (6) | Guardrails (3) | FinOps (4) | Smart Router (4) | Trust Score (2) | Registry (5) | Bridge (4) | Observability (5) | Business Value (6) | A2A Control (4) | Optimization (1) | Outcome Validation (4) | Policy Engine (4) | Benchmarking (3) | Compliance (2) | Agent SLA (4) | Audit Export (3) | Cache (3) | Security (5) | Tokens (1) | Memory (2) | Scheduling (1) | Alerts (1)
Full tool reference: docs/quickstart.md
MCP Spec Compliance
Complete Model Context Protocol 2024-11-05 implementation. Forward-compatible with MCP 2025-03-26.
Capability | Status | Details |
tools | 72 tools, full annotations | destructiveHint, readOnlyHint, idempotentHint, openWorldHint |
resources | 2 resources | Getting Started guide, Supported Providers |
prompts | 2 prompts with completions | governance_audit, policy_preflight |
logging | logging/setLevel | 8 levels, per-session, audit trail |
completions | completion/complete | workspace (auth-scoped), provider, model (provider-aware) |
Ecosystem
This repo is part of the ThinkNEO ecosystem:
Project | Description |
Enterprise AI governance platform | |
AI Runtime Governance Protocol — open standard | |
A2A Security & Trust Conformance | |
Business applications for SMBs | |
Robot fleet governance dashboard |
Security
See SECURITY.md for vulnerability reporting.
Contributing
See CONTRIBUTING.md.
Related
Server | Description | Tools |
Enterprise AI Control Plane (this repo) | 72 tools | |
SMB standalone products — self-serve via TNC credits | 37 tools |
License
Apache-2.0 — see LICENSE.
About
ThinkNEO AI Technology Co., Ltd. — Hong Kong CR No. 2296774.
Built by the team behind the ThinkNEO Enterprise AI Control Plane, AIRGP protocol, and A2ASTC conformance suite.
Maintenance
Latest Blog Posts
MCP directory API
We provide all the information about MCP servers via our MCP API.
curl -X GET 'https://glama.ai/api/mcp/v1/servers/thinkneo-ai/mcp-server'
If you have feedback or need assistance with the MCP directory API, please join our Discord server