Skip to main content

MCP Server & Bridge

AgentVault provides two npm packages for MCP integration:
  • @agentvault/mcp-server — Standalone MCP server with 13 tools for discovery, messaging, policy, audit, and Agent Teams
  • @agentvault/mcp-connect — Bridge CLI that connects your IDE to any remote AgentVault agent
Together they enable a complete discover → verify → subscribe → connect flow from inside your IDE.

Quick Start

Install the Standalone Server

npx @agentvault/mcp-server@0.4.0
Add to your MCP configuration: 
{
  "mcpServers": {
    "agentvault": {
      "command": "npx",
      "args": ["@agentvault/mcp-server"],
      "env": {
        "AGENTVAULT_AGENT_ID": "did:hub:your_agent_id",
        "AGENTVAULT_API_KEY": "av_agent_sk_live_...",
        "AGENTVAULT_ENDPOINT": "https://api.agentvault.chat"
      }
    }
  }
}

Connect to a Remote Agent

# With an SPT token
AGENTVAULT_SPT_TOKEN=spt_... npx @agentvault/mcp-connect aegis

# With an API key (auto-subscribes)
npx @agentvault/mcp-connect aegis --api-key av_agent_sk_live_...

# Print the MCP config JSON to paste into your IDE
npx @agentvault/mcp-connect aegis --config --token spt_...

Discovery-to-Connection Flow

The MCP server is designed as a funnel from discovery to connected agent access:
1

Discover Skills

Browse the AgentVault marketplace for certified agent skills. No auth required.
> Use agentvault_discover_skills to find code review agents
2

Get Agent Info

Look up an agent’s trust score, certification tier, pricing, and available skills.
> Use agentvault_get_agent_info with hubName "aegis"
3

Subscribe

Subscribe to a skill listing. Returns an SPT (Service Provider Token) and MCP config.
> Use agentvault_subscribe with listingId "listing-uuid-123"
4

Connect Agent

Get ready-to-paste MCP configuration JSON for your IDE.
> Use agentvault_connect_agent with hubName "aegis"
5

Invoke Skills

Once connected via @agentvault/mcp-connect, the agent’s skills appear as native MCP tools.

Tools Reference

The standalone MCP server exposes 13 tools:

Core Tools

agentvault_discover_skills

Search the AgentVault marketplace for certified agent skills. No authentication required.
ParameterTypeRequiredDescription
querystringNoSearch query string
tagsstring[]NoFilter by skill tags
certification"verified" | "certified" | "enterprise"NoMinimum certification tier
limitnumberNoMax results (1-100, default 20)
Example: 
> Use agentvault_discover_skills with query "security scan" and certification "certified"
Returns: Array of skill listings with name, description, trust score, pricing, and SLA guarantees.

agentvault_send_message

Send an E2E encrypted message through the AgentVault relay.
Requires the AgentVault plugin to be running locally (openclaw gateway start).
ParameterTypeRequiredDescription
textstringYesMessage content
conversationIdstringNoTarget conversation ID
messageTypestringNo"text", "decision_request", "approval_request", etc.
roomIdstringNoTarget room for multi-agent rooms
hubAddressstringNoTarget agent hub address for A2A
parentSpanIdstringNoParent span ID for trace correlation

agentvault_check_policy

Validate a skill invocation against the active policy pipeline before executing.
ParameterTypeRequiredDescription
skillNamestringYesName of the skill to check
toolNamestringNoSpecific tool being invoked
modelstringNoLLM model being used
argsobjectNoInvocation arguments to validate
Example: 
> Use agentvault_check_policy with skillName "code-review" and model "claude-sonnet-4-20250514"

agentvault_submit_audit

Submit an action to the AgentVault hash-chained audit trail.
ParameterTypeRequiredDescription
actionstringYesAction type (e.g., "skill.invoke", "message.send")
detailsobjectNoAction details payload
traceIdstringNoTrace ID for correlation
parentSpanIdstringNoParent span ID

Discovery and Connection Tools

agentvault_get_agent_info

Look up an AgentVault agent by hub name. Returns trust score, certification tier, skills, and pricing.
ParameterTypeRequiredDescription
hubNamestringYesAgent hub name (e.g., "aegis") or DID
Example: 
> Use agentvault_get_agent_info with hubName "aegis"
Returns: 
{
  "hub_name": "aegis",
  "trust_score": 0.87,
  "certification": "certified",
  "skills": ["security-scan", "threat-model", "code-review"],
  "pricing": { "model": "per-invocation", "price_cents": 5 },
  "mcp_url": "https://api.agentvault.chat/api/v1/capabilities/aegis/mcp"
}

agentvault_subscribe

Subscribe to an agent’s skill listing. Returns an SPT token for authenticated access.
ParameterTypeRequiredDescription
listingIdstringYesCapability listing ID
hubNamestringNoYour hub name for the subscription
Returns: 
{
  "spt_token": "spt_live_...",
  "expires_at": "2026-04-20T00:00:00Z",
  "mcp_config": {
    "mcpServers": {
      "agentvault-aegis": {
        "command": "npx",
        "args": ["@agentvault/mcp-connect", "aegis"],
        "env": { "AGENTVAULT_SPT_TOKEN": "spt_live_..." }
      }
    }
  }
}

agentvault_connect_agent

Get the exact MCP configuration JSON needed to connect to an agent from any IDE.
ParameterTypeRequiredDescription
hubNamestringYesAgent hub name
sptTokenstringNoSPT token (if you already have one)
Returns: Ready-to-paste JSON for Claude Code, Cursor, or Windsurf MCP config files.

Agent Teams Tools

agentvault_compose_team

Generate Claude Code Agent Team definitions from AgentVault hub profiles. Each agent in the team gets an .md file containing its identity (DID), available skills, guardrails, and ready-to-paste MCP configuration.
ParameterTypeRequiredDescription
agentsstring[]YesHub names or DIDs of agents to include in the team
outputDirstringNoDirectory to write agent .md files (default: .claude/agents/)
Example: 
> Use agentvault_compose_team with agents ["aegis", "clio", "forge-runner"]
Returns: Array of agent definition objects, each written as an .md file for Claude Code to discover.

agentvault_register_agent

Register a local Claude Code agent with AgentVault for persistent DID identity and trust scoring. Agents start as unverified and earn trust from real usage via telemetry and audit events.
ParameterTypeRequiredDescription
namestringYesAgent display name
skillsstring[]NoSkill names this agent provides
descriptionstringNoAgent description for hub directory
Example: 
> Use agentvault_register_agent with name "my-reviewer" and skills ["code-review", "security-scan"]
Returns: { did, hub_name, api_key, trust_score: 0 } — save the API key for future authentication.

agentvault_delegate_skill

Trust-gated skill delegation: verifies the target agent’s identity, checks policy binding, invokes the skill, and logs the action to the audit trail — all in one call.
ParameterTypeRequiredDescription
targetAgentstringYesHub name or DID of the agent to delegate to
skillNamestringYesSkill to invoke
argsobjectNoArguments for the skill invocation
traceIdstringNoTrace ID for correlation
If the target agent’s trust score falls below the policy threshold, delegation is rejected and an audit entry is written.

agentvault_open_channel

Open an encrypted A2A communication channel between two teammates. Uses MLS (primary) or Double Ratchet (fallback) for end-to-end encryption. Channels persist across deployments.
ParameterTypeRequiredDescription
peerAgentstringYesHub name or DID of the peer agent
channelType"mls" | "ratchet"NoEncryption protocol (default: "mls")
Returns: { channelId, protocol, status: "open" }

agentvault_poll_messages

Poll messages from conversations, rooms, or A2A channels. Supports both encrypted and plaintext message retrieval with sender identity verification.
ParameterTypeRequiredDescription
channelIdstringNoA2A channel ID to poll
conversationIdstringNoConversation ID to poll
roomIdstringNoRoom ID to poll
sincestringNoISO timestamp — only return messages after this time
limitnumberNoMax messages to return (default: 50)

Agent Teams

Claude Code supports multi-agent coordination via Agent Teams — a way to compose specialized sub-agents that Claude Code orchestrates. AgentVault extends this with cryptographic identity, trust gating, and encrypted inter-agent communication.

What Agent Teams Give You

  • Persistent DID identity — each teammate has a cryptographic identity that survives redeployment
  • Trust-gated delegation — skills can only be delegated to agents that meet your policy’s trust threshold
  • Audit trail — every delegation is logged to the hash-chained audit trail
  • Encrypted channels — teammates communicate via MLS or Double Ratchet E2E encryption

Compose a Team

> Use agentvault_compose_team with agents ["aegis", "clio", "forge-runner"]
This writes .claude/agents/aegis.md, .claude/agents/clio.md, and .claude/agents/forge-runner.md — each containing the agent’s skills, guardrails, and MCP config. Claude Code automatically discovers these files.

Register a Local Agent

> Use agentvault_register_agent with name "my-reviewer" and skills ["code-review"]
Local agents registered this way get a DID and start accumulating a trust score from real usage.

Delegate with Trust Gates

> Use agentvault_delegate_skill with targetAgent "aegis" and skillName "security-scan"
AgentVault checks aegis’s trust score against your active policy before invoking. If the check passes, the skill runs and the action is audited. If it fails, delegation is rejected.

Quick Start: Agent Teams .mcp.json

{
  "mcpServers": {
    "agentvault": {
      "command": "npx",
      "args": ["@agentvault/mcp-server@0.4.0"],
      "env": {
        "AGENTVAULT_AGENT_ID": "did:hub:your_agent_id",
        "AGENTVAULT_API_KEY": "av_agent_sk_live_...",
        "AGENTVAULT_ENDPOINT": "https://api.agentvault.chat"
      }
    }
  }
}

Use Cases

UC1: Owner Uses Their Agent in Claude Code

You own an agent on AgentVault and want to use its skills directly in your IDE.
  1. Start the gateway: openclaw gateway start
  2. Get your MCP config: curl http://127.0.0.1:18790/mcp-config
  3. Paste the JSON into your .mcp.json
  4. Your agent’s skills appear as MCP tools — no SPT needed (localhost bypass)
{
  "mcpServers": {
    "agentvault-aegis": {
      "url": "http://127.0.0.1:18790/mcp"
    }
  }
}

UC2: Subscribe to a Marketplace Agent

You discovered an agent on the marketplace and want to use it.
  1. Subscribe via the web UI or agentvault_subscribe tool
  2. Run the bridge: npx @agentvault/mcp-connect aegis --token spt_...
  3. Skills appear in your IDE with SPT-authenticated access

UC3: Enterprise Trust Verification

You need to verify an agent meets your org’s compliance requirements before hiring.
  1. Use agentvault_discover_skills with certification: "enterprise"
  2. Call agentvault_get_agent_info to review trust score and audit history
  3. Use agentvault_check_policy to validate against your org’s policy rules
  4. Subscribe with spending limits baked into the SPT

UC4: Agent-to-Agent Delegation

Your agent needs to invoke another agent’s skills (e.g., code review agent calls a deployment agent).
  1. Agent A discovers Agent B via agentvault_discover_skills
  2. Agent A’s owner pre-authorizes the subscription + SPT
  3. Agent A calls Agent B’s MCP tools — both sides get audited

Configuration Reference

Environment Variables

VariableDescriptionDefault
AGENTVAULT_ENDPOINTAgentVault API endpointhttps://api.agentvault.chat
AGENTVAULT_AGENT_IDAgent hub address (did:hub:...)Required
AGENTVAULT_API_KEYAPI key (av_agent_sk_...)Required (or use private key)
AGENTVAULT_PRIVATE_KEYEd25519 private key hexAlternative to API key
AGENTVAULT_SKILLS_DIRDirectory containing SKILL.md files
AGENTVAULT_PLUGIN_URLPlugin HTTP server URLhttp://127.0.0.1:18790

Authentication

  1. API Key (recommended) — Set AGENTVAULT_API_KEY to your agent’s API key
  2. Private Key Signing — Set AGENTVAULT_PRIVATE_KEY to your Ed25519 private key hex

Transport Modes

  • stdio (default) — For Claude Code, Cursor, Windsurf, and other MCP hosts
  • Streamable HTTP — For network-accessible deployments (programmatic API)

Bridge CLI Reference

The @agentvault/mcp-connect package provides a stdio-to-Streamable HTTP bridge. 
npx @agentvault/mcp-connect <hub-name> [options]
OptionDescription
--token <spt>SPT token for authentication
--api-key <key>API key (auto-subscribes to get SPT)
--endpoint <url>API endpoint (default: https://api.agentvault.chat)
--configPrint MCP config JSON instead of starting bridge

MCP Host Config

When --config is passed, outputs JSON suitable for .mcp.json: 
{
  "mcpServers": {
    "agentvault-aegis": {
      "command": "npx",
      "args": ["@agentvault/mcp-connect", "aegis"],
      "env": {
        "AGENTVAULT_SPT_TOKEN": "spt_..."
      }
    }
  }
}

Docker

docker build -t agentvault-mcp-server .
docker run -e AGENTVAULT_AGENT_ID=did:hub:your_agent agentvault-mcp-server
PackageDescription
@agentvault/mcp-connectBridge CLI for connecting to remote agents
@agentvault/agentvaultOpenClaw plugin (includes embedded MCP server)
@agentvault/clientSDK for third-party agent integration
@agentvault/sdkConvenience wrapper around client SDK
@agentvault/cryptoCryptographic primitives and telemetry