@ledgerproof/mcp-server
Provides tools for issuing and verifying EU AI Act Article 50 transparency receipts, with daily Merkle roots anchored to the Bitcoin blockchain for immutability.
Click on "Install Server".
Wait a few minutes for the server to deploy. Once ready, it will show a "Started" state.
In the chat, type
@followed by the MCP server name and your instructions, e.g., "@@ledgerproof/mcp-serverissue a receipt for the AI-generated blog post"
That's it! The server will respond to your query, and you can continue using it as needed.
Here is a step-by-step guide with screenshots.
@ledgerproof/mcp-server
A Model Context Protocol server that lets any
MCP client (Claude Desktop, Claude Code, IDEs, agents) issue and verify
EU AI Act Article 50 transparency receipts through
@ledgerproof/sdk.
LedgerProof implements the IETF SCITT architecture drafts
(draft-ietf-scitt-architecture-22) with COSE Receipts
(draft-ietf-cose-merkle-tree-proofs-18), and additionally anchors a daily
Merkle root to Bitcoin (OP_RETURN). It is an early implementation of live
IETF Internet-Drafts — not an RFC, not a standard, not certified, not "SCITT
compliant." That precision is deliberate; please keep it in any derived copy.
Issuing a receipt is a real, deliberate action: each receipt's daily Merkle root is anchored to Bitcoin, which costs a Bitcoin transaction fee. Do not wire agents to auto-issue on loose triggers. The bundled
ledgerproof_when_to_issueprompt spells out when issuance is (and isn't) appropriate.
Transports
This server speaks the two current MCP transports. The deprecated HTTP+SSE transport is intentionally not used.
stdio (default) — for local clients that launch the server as a subprocess.
Streamable HTTP (
StreamableHTTPServerTransport) — for networked clients. In this modeledgerproof_issue_receiptrequiresprecomputed_sha256and rejects raw payloads, so artifact bytes never cross the network.
Related MCP server: @unfakable/mcp
Tools
Tool | Purpose |
| Produce an Article-50 record for AI-generated content and register it. Exactly one of |
| Verify by |
| Poll a |
| SHA-256 a |
Prompt
ledgerproof_when_to_issue— scoped guidance: issue only when deliberately "producing an Article-50 transparency record for AI-generated content," and a reminder that anchoring costs a Bitcoin tx fee, so do not auto-fire on loose triggers.
Honest behavior notes / gaps
Anchoring is asynchronous. Issuance always returns
anchor_status: "pending". The server never reports a fabricated "anchored" status —ledgerproof_check_anchorreportsanchoredonly when the API returns a real Bitcointxid. Poll until then.Raw payloads stay local even on stdio. The SDK hashes the artifact locally and only the
artifact_hash(never the bytes) is sent to the LedgerProof API. Streamable HTTP additionally keeps the bytes off the MCP hop by requiringprecomputed_sha256.SCITT verification is guarded.
verifyTransparentStatementlives in the SDK'sscitt/module, which is being built in parallel and may not be exported yet. If it's absent,ledgerproof_verify_receipt(Transparent Statement mode) returns a clear "not available in the installed SDK" error instead of failing the build. Sequence-mode verification works today.precomputed_sha256issuance depends on an SDK feature. The basepublishAiArticle50always hashes raw bytes and exposes no precomputed-hash entrypoint. The server passes the hash through optimistically (forward-compat); if the installed SDK can't accept it, the tool returns a precise error rather than registering a record with the wrongartifact_hash. Until the SDK adds a precomputed-hash publish path, issue from rawartifactover stdio.
Configuration (environment variables)
Variable | Required | Default | Notes |
| yes | — | Legal-entity id (LEI/EUID/VAT/DID). Not an email. |
| yes | — | ISO country code, e.g. |
| yes | — | LedgerProof API key. |
| no |
| API base URL ( |
| no | ephemeral | Ed25519 signing seed (hex). Never logged. |
| no | — | Path to a file containing the hex seed (alt to |
| no |
| Key id registered with the service. |
HTTP-only (optional): PORT/LEDGERPROOF_MCP_PORT (default 3000),
LEDGERPROOF_MCP_HOST (default 127.0.0.1),
LEDGERPROOF_MCP_TRANSPORT=http (same as --http).
The Ed25519 signing key is never logged, never returned by any tool, and never serialized. Only its presence (
providedvsephemeral) is printed at boot.
Install / build
npm install
npm run build # tsc → dist/
npm run lint # tsc --noEmitRun
# stdio (default)
npx @ledgerproof/mcp-server
# Streamable HTTP on http://127.0.0.1:3000/mcp
npx @ledgerproof/mcp-server --http --port 3000MCP client config
stdio
{
"mcpServers": {
"ledgerproof": {
"command": "npx",
"args": ["-y", "@ledgerproof/mcp-server"],
"env": {
"LEDGERPROOF_PUBLISHER_ID": "LEI:5493001KJTIIGC8Y1R12",
"LEDGERPROOF_DEPLOYER_COUNTRY": "DE",
"LEDGERPROOF_API_KEY": "sk_live_...",
"LEDGERPROOF_API_BASE": "https://api-eu.ledgerproofhq.io",
"LEDGERPROOF_SIGNING_KEY_HEX": "<32-byte-hex-ed25519-seed>",
"LEDGERPROOF_KEY_ID": "default"
}
}
}
}Streamable HTTP
Start the server (npx @ledgerproof/mcp-server --http --port 3000), then point
the client at the URL:
{
"mcpServers": {
"ledgerproof": {
"type": "streamable-http",
"url": "http://127.0.0.1:3000/mcp"
}
}
}Over Streamable HTTP, call ledgerproof_hash_artifact first and pass the result
to ledgerproof_issue_receipt as precomputed_sha256 — raw payloads are
rejected on this transport by design.
License
Apache-2.0
Maintenance
Resources
Unclaimed servers have limited discoverability.
Looking for Admin?
If you are the server author, to access and configure the admin panel.
Latest Blog Posts
- Your AI Chatbot Just Exposed Your CEO's Salary to an InternBy Om-Shree-0709 on .Agent IdentityMCP SecurityOAuth Delegation
- Why MCP Servers Need Execution Sandboxing (And Why Your Current Stack Isn't Enough)By Om-Shree-0709 on .Agentic AiPrompt InjectionWebAssembly
MCP directory API
We provide all the information about MCP servers via our MCP API.
curl -X GET 'https://glama.ai/api/mcp/v1/servers/vsdawkins-creator/ledgerproof-mcp-server'
If you have feedback or need assistance with the MCP directory API, please join our Discord server