Quill

Name: Quill
Author: manumarri-sudo

manumarri-sudo/quill

Approve risky agent tool calls with Touch ID and keep a tamper-evident log before destructive automation ships.

Overview

Quill is a MCP server for the Ship phase that gates AI-agent tool calls behind Touch ID approval and writes a tamper-evident audit log.

What is this MCP server?

Pre-execution gate intercepts AI-agent tool calls before they run
Touch ID approval on supported Apple hardware for high-risk actions
Tamper-evident audit log for accountability and post-incident review
PyPI package quillx (v0.2.0a5) with uvx runtime hint and stdio MCP
Alpha-stage security MCP—pair with agent workflows, not replace full IAM
Version 0.2.0a5 (alpha)
PyPI identifier: quillx
Transport: stdio

Compatible agents: Claude Code, Cursor, Codex, any compatible agent

What problem does it solve?

Autonomous agents can run dangerous tools instantly with no human checkpoint or trustworthy record of what executed.

Who is it for?

Mac-based solo builders running powerful MCP tools who need explicit approval and logging before production agent automation.

Skip if: Teams that need enterprise SSO-only gates without local biometrics, or builders who never expose write/delete tools to agents.

What do I get? / Deliverables

After setup, sensitive tool invocations wait for your approval and leave an auditable trail you can review after shipping agent features.

Intercepted tool-call pipeline with explicit approval step
Tamper-evident audit log of agent tool executions
Lower blast radius before shipping autonomous agent features

Recommended MCP Servers

1Claw Vault1clawAI/1claw-mcp

1Claw Vault exposes a stdio MCP server (@1claw/mcp) that connects AI agents to HSM-backed secret storage with just-in-ti…2 stars

1passwordCakeRepository/1Password-MCP

The 1Password MCP server lets solo builders wire service-account access into Claude Code, Cursor, or other stdio MCP hos…16 stars

402sentinel Mcpkaditang/402sentinel-mcp

402 Sentinel MCP gives solo builders and agent authors a pre-flight check before honoring x402 payment flows on Base. In…1 stars

A2adependencyinspector Mcpclauxel/a2a-dependency-inspector-mcp

A2A Dependency Inspector MCP is a hosted Clauxel server for builders shipping agent-to-agent (A2A) workflows who must pr…

A2a Governance Bridge Mcp

A2A Governance Bridge is a Model Context Protocol server that exposes governance-oriented tools for multi-agent setups: …

A2aidentitytoll Mcpclauxel/a2a-identity-toll-mcp

A2A Identity Toll MCP is a Clauxel-hosted remote MCP server that acts as an identity and policy toll booth for agent-to-…

Journey fit

Primary fit

Human-in-the-loop gates matter right before and after you trust agents with production-capable tools—ship-phase security, not initial ideation. Pre-execution approval and audit trails are application-security controls for autonomous tool use, not generic error monitoring.

How it compares

Agent tool-call gate and audit MCP, not a vulnerability scanner or a generic code-review skill.

Common Questions / FAQ

Who is Quill for?

Solo and small-team builders who deploy AI agents with real side effects and want Touch ID approval plus tamper-evident logging on Apple setups.

When should I use Quill?

Use it in the ship and security subphase when wiring MCP tools that can modify systems, spend money, or leak data if mis-invoked.

How do I add Quill to my agent?

Install quillx from PyPI via uvx or your Python workflow, register the stdio MCP server in Claude Code or Cursor, and route high-risk tools through Quill’s gate per its docs.

Quill

manumarri-sudo/quill

Approve risky agent tool calls with Touch ID and keep a tamper-evident log before destructive automation ships.

Overview

Quill is a MCP server for the Ship phase that gates AI-agent tool calls behind Touch ID approval and writes a tamper-evident audit log.

What is this MCP server?

Pre-execution gate intercepts AI-agent tool calls before they run
Touch ID approval on supported Apple hardware for high-risk actions
Tamper-evident audit log for accountability and post-incident review
PyPI package quillx (v0.2.0a5) with uvx runtime hint and stdio MCP
Alpha-stage security MCP—pair with agent workflows, not replace full IAM
Version 0.2.0a5 (alpha)
PyPI identifier: quillx
Transport: stdio

Compatible agents: Claude Code, Cursor, Codex, any compatible agent

What problem does it solve?

Autonomous agents can run dangerous tools instantly with no human checkpoint or trustworthy record of what executed.

Who is it for?

Mac-based solo builders running powerful MCP tools who need explicit approval and logging before production agent automation.

Skip if: Teams that need enterprise SSO-only gates without local biometrics, or builders who never expose write/delete tools to agents.

What do I get? / Deliverables

After setup, sensitive tool invocations wait for your approval and leave an auditable trail you can review after shipping agent features.

Intercepted tool-call pipeline with explicit approval step
Tamper-evident audit log of agent tool executions
Lower blast radius before shipping autonomous agent features

Recommended MCP Servers

1Claw Vault1clawAI/1claw-mcp

1Claw Vault exposes a stdio MCP server (@1claw/mcp) that connects AI agents to HSM-backed secret storage with just-in-ti…2 stars

1passwordCakeRepository/1Password-MCP

The 1Password MCP server lets solo builders wire service-account access into Claude Code, Cursor, or other stdio MCP hos…16 stars

402sentinel Mcpkaditang/402sentinel-mcp

402 Sentinel MCP gives solo builders and agent authors a pre-flight check before honoring x402 payment flows on Base. In…1 stars

A2adependencyinspector Mcpclauxel/a2a-dependency-inspector-mcp

A2A Dependency Inspector MCP is a hosted Clauxel server for builders shipping agent-to-agent (A2A) workflows who must pr…

A2a Governance Bridge Mcp

A2A Governance Bridge is a Model Context Protocol server that exposes governance-oriented tools for multi-agent setups: …

A2aidentitytoll Mcpclauxel/a2a-identity-toll-mcp

A2A Identity Toll MCP is a Clauxel-hosted remote MCP server that acts as an identity and policy toll booth for agent-to-…

Journey fit

Primary fit

How it compares

Agent tool-call gate and audit MCP, not a vulnerability scanner or a generic code-review skill.

Common Questions / FAQ

Who is Quill for?

Solo and small-team builders who deploy AI agents with real side effects and want Touch ID approval plus tamper-evident logging on Apple setups.

When should I use Quill?

Use it in the ship and security subphase when wiring MCP tools that can modify systems, spend money, or leak data if mis-invoked.

How do I add Quill to my agent?

Install quillx from PyPI via uvx or your Python workflow, register the stdio MCP server in Claude Code or Cursor, and route high-risk tools through Quill’s gate per its docs.

Overview

What is this MCP server?

What problem does it solve?

Who is it for?

What do I get? / Deliverables

Recommended MCP Servers

Journey fit

Who is Quill for?

When should I use Quill?

How do I add Quill to my agent?

This week for builders

Overview

What is this MCP server?

What problem does it solve?

Who is it for?

What do I get? / Deliverables

Recommended MCP Servers

Journey fit

Who is Quill for?

When should I use Quill?

How do I add Quill to my agent?