TrustNotch

Submit, retrieve, and cryptographically verify tamper-evident audit logs for AI agent actions so you can ship and operate agents with defensible proof bundles.

Overview

TrustNotch is a Ship-phase Security MCP server that lets agents submit, fetch, and verify tamper-evident audit logs and cryptographic proof bundles via the TrustNotch API.

What is this MCP server?

stdio MCP via PyPI package trustnotch-mcp with runtime hint uvx
Submit, fetch, and verify tamper-evident audit logs with cryptographic proof bundles
Required TRUSTNOTCH_API_KEY (tn_live_... or tn_test_...)
Optional TRUSTNOTCH_PUBKEYS_PATH for offline public-key pinning verification
Configurable TRUSTNOTCH_API_URL defaulting to https://api.trustnotch.com
Package version 0.1.0 on PyPI identifier trustnotch-mcp
Default API base https://api.trustnotch.com
Three documented environment variables (one required secret API key)

Compatible agents: Claude Code, Cursor, Codex, Windsurf

What problem does it solve?

You cannot prove what your AI agent did after the fact, which blocks security reviews, enterprise sales, and calm incident response.

Who is it for?

Indie builders shipping agents to paying users who need audit trails, compliance-friendly evidence, or post-incident verification without building crypto logging from scratch.

Skip if: Hobby projects with no accountability requirements or teams that only need unstructured debug console output.

What do I get? / Deliverables

Agent actions land in tamper-evident logs with verifiable proof bundles you can check in chat or offline with pinned public keys.

Submitted tamper-evident audit events from agent workflows
Fetched log records and proof bundles for review
Verified integrity of audit data using API or pinned public keys

Recommended MCP Servers

1Claw Vault1clawAI/1claw-mcp

1Claw Vault exposes a stdio MCP server (@1claw/mcp) that connects AI agents to HSM-backed secret storage with just-in-ti…2 stars

1passwordCakeRepository/1Password-MCP

The 1Password MCP server lets solo builders wire service-account access into Claude Code, Cursor, or other stdio MCP hos…16 stars

402sentinel Mcpkaditang/402sentinel-mcp

402 Sentinel MCP gives solo builders and agent authors a pre-flight check before honoring x402 payment flows on Base. In…1 stars

A2adependencyinspector Mcpclauxel/a2a-dependency-inspector-mcp

A2A Dependency Inspector MCP is a hosted Clauxel server for builders shipping agent-to-agent (A2A) workflows who must pr…

A2a Governance Bridge Mcp

A2A Governance Bridge is a Model Context Protocol server that exposes governance-oriented tools for multi-agent setups: …

A2aidentitytoll Mcpclauxel/a2a-identity-toll-mcp

A2A Identity Toll MCP is a Clauxel-hosted remote MCP server that acts as an identity and policy toll booth for agent-to-…

Journey fit

Primary fit

Tamper-evident audit trails are canonical on the Ship/security shelf because they address accountability before and after launch, even though logging also supports Operate monitoring. Security subphase fits submit/fetch/verify proof bundles that defend against repudiation and support compliance narratives, not generic error dashboards alone.

How it compares

Cryptographic audit-log MCP for agents, not a generic application performance monitoring server.

Common Questions / FAQ

Who is TrustNotch MCP for?

Developers running Claude Code, Cursor, or similar agents who need tamper-evident audit logs and verifiable proof bundles for production or pre-launch agent workflows.

When should I use TrustNotch MCP?

During Ship security hardening and Operate monitoring when you must record agent actions, export evidence for reviewers, or verify logs were not altered.

How do I add TrustNotch MCP to my agent?

Install trustnotch-mcp from PyPI (uvx runtime hint), set TRUSTNOTCH_API_KEY, optionally TRUSTNOTCH_API_URL and TRUSTNOTCH_PUBKEYS_PATH, and register the stdio server in your MCP client.

TrustNotch

Submit, retrieve, and cryptographically verify tamper-evident audit logs for AI agent actions so you can ship and operate agents with defensible proof bundles.

Overview

TrustNotch is a Ship-phase Security MCP server that lets agents submit, fetch, and verify tamper-evident audit logs and cryptographic proof bundles via the TrustNotch API.

What is this MCP server?

stdio MCP via PyPI package trustnotch-mcp with runtime hint uvx
Submit, fetch, and verify tamper-evident audit logs with cryptographic proof bundles
Required TRUSTNOTCH_API_KEY (tn_live_... or tn_test_...)
Optional TRUSTNOTCH_PUBKEYS_PATH for offline public-key pinning verification
Configurable TRUSTNOTCH_API_URL defaulting to https://api.trustnotch.com
Package version 0.1.0 on PyPI identifier trustnotch-mcp
Default API base https://api.trustnotch.com
Three documented environment variables (one required secret API key)

Compatible agents: Claude Code, Cursor, Codex, Windsurf

What problem does it solve?

You cannot prove what your AI agent did after the fact, which blocks security reviews, enterprise sales, and calm incident response.

Who is it for?

Indie builders shipping agents to paying users who need audit trails, compliance-friendly evidence, or post-incident verification without building crypto logging from scratch.

Skip if: Hobby projects with no accountability requirements or teams that only need unstructured debug console output.

What do I get? / Deliverables

Agent actions land in tamper-evident logs with verifiable proof bundles you can check in chat or offline with pinned public keys.

Submitted tamper-evident audit events from agent workflows
Fetched log records and proof bundles for review
Verified integrity of audit data using API or pinned public keys

Recommended MCP Servers

1Claw Vault1clawAI/1claw-mcp

1Claw Vault exposes a stdio MCP server (@1claw/mcp) that connects AI agents to HSM-backed secret storage with just-in-ti…2 stars

1passwordCakeRepository/1Password-MCP

The 1Password MCP server lets solo builders wire service-account access into Claude Code, Cursor, or other stdio MCP hos…16 stars

402sentinel Mcpkaditang/402sentinel-mcp

402 Sentinel MCP gives solo builders and agent authors a pre-flight check before honoring x402 payment flows on Base. In…1 stars

A2adependencyinspector Mcpclauxel/a2a-dependency-inspector-mcp

A2A Dependency Inspector MCP is a hosted Clauxel server for builders shipping agent-to-agent (A2A) workflows who must pr…

A2a Governance Bridge Mcp

A2A Governance Bridge is a Model Context Protocol server that exposes governance-oriented tools for multi-agent setups: …

A2aidentitytoll Mcpclauxel/a2a-identity-toll-mcp

A2A Identity Toll MCP is a Clauxel-hosted remote MCP server that acts as an identity and policy toll booth for agent-to-…

Journey fit

Primary fit

How it compares

Cryptographic audit-log MCP for agents, not a generic application performance monitoring server.

Common Questions / FAQ

Who is TrustNotch MCP for?

Developers running Claude Code, Cursor, or similar agents who need tamper-evident audit logs and verifiable proof bundles for production or pre-launch agent workflows.

When should I use TrustNotch MCP?

During Ship security hardening and Operate monitoring when you must record agent actions, export evidence for reviewers, or verify logs were not altered.

How do I add TrustNotch MCP to my agent?

Install trustnotch-mcp from PyPI (uvx runtime hint), set TRUSTNOTCH_API_KEY, optionally TRUSTNOTCH_API_URL and TRUSTNOTCH_PUBKEYS_PATH, and register the stdio server in your MCP client.

Overview

What is this MCP server?

What problem does it solve?

Who is it for?

What do I get? / Deliverables

Recommended MCP Servers

Journey fit

Who is TrustNotch MCP for?

When should I use TrustNotch MCP?

How do I add TrustNotch MCP to my agent?

This week for builders

Overview

What is this MCP server?

What problem does it solve?

Who is it for?

What do I get? / Deliverables

Recommended MCP Servers

Journey fit

Who is TrustNotch MCP for?

When should I use TrustNotch MCP?

How do I add TrustNotch MCP to my agent?