Api Governance

Name: Api Governance
Author: coderifts

coderifts/self-hosted

Let coding agents call external APIs only after breaking-change detection, blast-radius scoring, and unsafe-call blocking.

Overview

io.github.coderifts/api-governance is a Ship-phase MCP server that detects breaking API changes, scores blast radius, and blocks unsafe agent API calls.

What is this MCP server?

Detects breaking API changes before agent-driven calls ship
Scores blast radius so you prioritize review on high-impact endpoints
Blocks unsafe calls instead of silently forwarding bad requests
Remote SSE endpoint at app.coderifts.com with Bearer API key auth
Version 1.0.0 MCP server schema with hosted remote transport
MCP server version 1.0.0
Remote transport type SSE at app.coderifts.com/mcp
Requires Authorization Bearer API key header

Compatible agents: Claude Code, Cursor, Codex, any compatible agent

What problem does it solve?

AI agents can call or change APIs without the guardrails your team would apply in code review, so one bad tool invocation can break clients or trigger dangerous operations.

Who is it for?

Solo builders shipping agent workflows against evolving REST or OpenAPI APIs who want automated governance before production traffic.

Skip if: Teams with no external APIs, or builders who only need static OpenAPI linting without runtime agent call blocking.

What do I get? / Deliverables

After you register the server and API key, agents get governance signals and blocked unsafe calls instead of uncontrolled API access.

Breaking-change detection signals for agent API work
Blast-radius scores to prioritize review
Blocked unsafe API calls from agent tool use

Recommended MCP Servers

1Claw Vault1clawAI/1claw-mcp

1Claw Vault exposes a stdio MCP server (@1claw/mcp) that connects AI agents to HSM-backed secret storage with just-in-ti…2 stars

1passwordCakeRepository/1Password-MCP

The 1Password MCP server lets solo builders wire service-account access into Claude Code, Cursor, or other stdio MCP hos…16 stars

402sentinel Mcpkaditang/402sentinel-mcp

402 Sentinel MCP gives solo builders and agent authors a pre-flight check before honoring x402 payment flows on Base. In…1 stars

A2adependencyinspector Mcpclauxel/a2a-dependency-inspector-mcp

A2A Dependency Inspector MCP is a hosted Clauxel server for builders shipping agent-to-agent (A2A) workflows who must pr…

A2a Governance Bridge Mcp

A2A Governance Bridge is a Model Context Protocol server that exposes governance-oriented tools for multi-agent setups: …

A2aidentitytoll Mcpclauxel/a2a-identity-toll-mcp

A2A Identity Toll MCP is a Clauxel-hosted remote MCP server that acts as an identity and policy toll booth for agent-to-…

Journey fit

Primary fit

API contract safety belongs in the Ship phase before releases and while agents touch production integrations. Security subphase covers governance gates that prevent agents from executing high-risk or breaking API operations.

How it compares

MCP governance integration for live agent calls, not a standalone OpenAPI linter skill.

Common Questions / FAQ

Who is io.github.coderifts/api-governance for?

It is for indie builders and small teams using AI coding agents against real APIs who need breaking-change detection and unsafe-call blocking at the MCP layer.

When should I use io.github.coderifts/api-governance?

Use it during Ship and security review when agents integrate with third-party or internal APIs and you want blast-radius scoring before unsafe operations run.

How do I add io.github.coderifts/api-governance to my agent?

Register the remote SSE URL https://app.coderifts.com/mcp in your MCP client and set Authorization to Bearer plus your cr_live CodeRifts API key.

Api Governance

coderifts/self-hosted

Let coding agents call external APIs only after breaking-change detection, blast-radius scoring, and unsafe-call blocking.

Overview

io.github.coderifts/api-governance is a Ship-phase MCP server that detects breaking API changes, scores blast radius, and blocks unsafe agent API calls.

What is this MCP server?

Detects breaking API changes before agent-driven calls ship
Scores blast radius so you prioritize review on high-impact endpoints
Blocks unsafe calls instead of silently forwarding bad requests
Remote SSE endpoint at app.coderifts.com with Bearer API key auth
Version 1.0.0 MCP server schema with hosted remote transport
MCP server version 1.0.0
Remote transport type SSE at app.coderifts.com/mcp
Requires Authorization Bearer API key header

Compatible agents: Claude Code, Cursor, Codex, any compatible agent

What problem does it solve?

AI agents can call or change APIs without the guardrails your team would apply in code review, so one bad tool invocation can break clients or trigger dangerous operations.

Who is it for?

Solo builders shipping agent workflows against evolving REST or OpenAPI APIs who want automated governance before production traffic.

Skip if: Teams with no external APIs, or builders who only need static OpenAPI linting without runtime agent call blocking.

What do I get? / Deliverables

After you register the server and API key, agents get governance signals and blocked unsafe calls instead of uncontrolled API access.

Breaking-change detection signals for agent API work
Blast-radius scores to prioritize review
Blocked unsafe API calls from agent tool use

Recommended MCP Servers

1Claw Vault1clawAI/1claw-mcp

1Claw Vault exposes a stdio MCP server (@1claw/mcp) that connects AI agents to HSM-backed secret storage with just-in-ti…2 stars

1passwordCakeRepository/1Password-MCP

The 1Password MCP server lets solo builders wire service-account access into Claude Code, Cursor, or other stdio MCP hos…16 stars

402sentinel Mcpkaditang/402sentinel-mcp

402 Sentinel MCP gives solo builders and agent authors a pre-flight check before honoring x402 payment flows on Base. In…1 stars

A2adependencyinspector Mcpclauxel/a2a-dependency-inspector-mcp

A2A Dependency Inspector MCP is a hosted Clauxel server for builders shipping agent-to-agent (A2A) workflows who must pr…

A2a Governance Bridge Mcp

A2A Governance Bridge is a Model Context Protocol server that exposes governance-oriented tools for multi-agent setups: …

A2aidentitytoll Mcpclauxel/a2a-identity-toll-mcp

A2A Identity Toll MCP is a Clauxel-hosted remote MCP server that acts as an identity and policy toll booth for agent-to-…

Journey fit

Primary fit

How it compares

MCP governance integration for live agent calls, not a standalone OpenAPI linter skill.

Common Questions / FAQ

Who is io.github.coderifts/api-governance for?

It is for indie builders and small teams using AI coding agents against real APIs who need breaking-change detection and unsafe-call blocking at the MCP layer.

When should I use io.github.coderifts/api-governance?

Use it during Ship and security review when agents integrate with third-party or internal APIs and you want blast-radius scoring before unsafe operations run.

How do I add io.github.coderifts/api-governance to my agent?

Register the remote SSE URL https://app.coderifts.com/mcp in your MCP client and set Authorization to Bearer plus your cr_live CodeRifts API key.

Overview

What is this MCP server?

What problem does it solve?

Who is it for?

What do I get? / Deliverables

Recommended MCP Servers

Journey fit

Who is io.github.coderifts/api-governance for?

When should I use io.github.coderifts/api-governance?

How do I add io.github.coderifts/api-governance to my agent?

This week for builders

Overview

What is this MCP server?

What problem does it solve?

Who is it for?

What do I get? / Deliverables

Recommended MCP Servers

Journey fit

Who is io.github.coderifts/api-governance for?

When should I use io.github.coderifts/api-governance?

How do I add io.github.coderifts/api-governance to my agent?