@neus/mcp-server 1.0.2 → 1.1.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Files changed (3) hide show
  1. package/README.md +19 -25
  2. package/package.json +8 -3
  3. package/server.json +25 -32
package/README.md CHANGED
@@ -1,40 +1,34 @@
1
1
  # @neus/mcp-server
2
2
 
3
- Model Context Protocol server for NEUS trust receipts, verification, and agent flows.
3
+ Public **discovery metadata** for the hosted NEUS MCP at **`https://mcp.neus.network/mcp`**. This package does not ship a runtime server.
4
4
 
5
- ## Prefer the hosted endpoint
5
+ ## Connect (recommended)
6
6
 
7
- For almost all integrations, connect to **`https://mcp.neus.network/mcp`** and follow **[MCP setup](https://docs.neus.network/mcp/setup)** (transport, auth, and access keys).
7
+ ```bash
8
+ npx -y -p @neus/sdk neus setup
9
+ npx -y -p @neus/sdk neus auth
10
+ npx -y -p @neus/sdk neus doctor --live
11
+ ```
8
12
 
9
- This npm package ships **public discovery metadata** (for example `server.json`) for registries and installers. The hosted MCP server runs at **`https://mcp.neus.network/mcp`** — see the [MCP docs](https://docs.neus.network/mcp/overview) for setup and usage.
13
+ Sign in with **`neus auth`** (OAuth). For servers and CI only, use a Profile access key:
10
14
 
11
- ## Golden path (nine tools)
15
+ ```bash
16
+ npx -y -p @neus/sdk neus setup --access-key <npk_...>
17
+ ```
12
18
 
13
- Models should **call neus_context first** every session, then follow the tool order your client needs:
19
+ Install and auth guides: [docs.neus.network/mcp/setup](https://docs.neus.network/mcp/setup)
14
20
 
15
- | Tool | Role |
16
- | --- | --- |
17
- | `neus_context` | Session home — setup, verifier summaries, golden path |
18
- | `neus_verifiers_catalog` | Verifier metadata and JSON schemas |
19
- | `neus_proofs_check` | Eligibility only (does not create proofs) |
20
- | `neus_verify` | Start or continue verification when prerequisites already match |
21
- | `neus_verify_or_guide` | Guided flow when setup or consent is still missing |
22
- | `neus_proofs_get` | Read proof records, tags, and delegated context |
23
- | `neus_me` | Signed-in Profile when a personal access key is configured on the session |
24
- | `neus_agent_link` | Confirm agent identity and delegation readiness |
25
- | `neus_agent_create` | Prepare agent identity and delegation when setup is missing |
21
+ ## Registry manifest
26
22
 
27
- With a Profile access key on the MCP session, call **`neus_me`** and expect a successful status before relying on account-scoped behavior.
23
+ `server.json` lists the twelve public MCP tools and the hosted endpoint for MCP registries and installers. OAuth discovery:
28
24
 
29
- ## Auth and safety
25
+ - `https://mcp.neus.network/.well-known/mcp.json`
26
+ - `https://mcp.neus.network/.well-known/oauth-protected-resource`
30
27
 
31
- Use **`Authorization: Bearer`** with the **personal access key** from the NEUS app (Profile → Account). Do not embed secrets in public repos or client-side bundles. Inputs are validated at runtime.
28
+ ## Related package
32
29
 
33
- ## Docs and support
34
-
35
- - **Product MCP guides:** [docs.neus.network/mcp](https://docs.neus.network/mcp/overview)
36
- - **Issues (public):** [github.com/neus/network/issues](https://github.com/neus/network/issues)
30
+ Use **`@neus/sdk`** for the JavaScript SDK, widgets, and the `neus` CLI (`neus setup`, `neus auth`, import/export).
37
31
 
38
32
  ## License
39
33
 
40
- Apache-2.0 (see the `license` field in `package.json`).
34
+ Apache-2.0
package/package.json CHANGED
@@ -1,6 +1,6 @@
1
1
  {
2
2
  "name": "@neus/mcp-server",
3
- "version": "1.0.2",
3
+ "version": "1.1.0",
4
4
  "description": "Public discovery metadata for the hosted NEUS MCP (streamable HTTP). Runtime is not shipped in this package.",
5
5
  "type": "module",
6
6
  "main": "./index.mjs",
@@ -9,19 +9,20 @@
9
9
  },
10
10
  "license": "Apache-2.0",
11
11
  "author": "NEUS Network <info@neus.network>",
12
- "homepage": "https://neus.network",
12
+ "homepage": "https://docs.neus.network/mcp/overview",
13
13
  "bugs": {
14
14
  "url": "https://github.com/neus/network/issues"
15
15
  },
16
16
  "repository": {
17
17
  "type": "git",
18
18
  "url": "git+https://github.com/neus/network.git",
19
- "directory": "mcp"
19
+ "directory": "mcp/npm-dist"
20
20
  },
21
21
  "keywords": [
22
22
  "neus",
23
23
  "mcp",
24
24
  "model-context-protocol",
25
+ "oauth",
25
26
  "verification",
26
27
  "trust-receipts",
27
28
  "proofs",
@@ -34,5 +35,9 @@
34
35
  ],
35
36
  "engines": {
36
37
  "node": ">=20.0.0"
38
+ },
39
+ "publishConfig": {
40
+ "access": "public",
41
+ "registry": "https://registry.npmjs.org"
37
42
  }
38
43
  }
package/server.json CHANGED
@@ -3,7 +3,7 @@
3
3
  "name": "io.github.neus/neus-mcp",
4
4
  "title": "NEUS MCP",
5
5
  "description": "NEUS hosted MCP: verifiers, proofs, verify flows, agents. Always call neus_context first.",
6
- "version": "1.0.1",
6
+ "version": "1.1.0",
7
7
  "repository": {
8
8
  "url": "https://github.com/neus/network",
9
9
  "source": "github"
@@ -11,7 +11,7 @@
11
11
  "websiteUrl": "https://docs.neus.network/mcp/overview",
12
12
  "icons": [
13
13
  {
14
- "src": "https://neus.network/images/neus-brand-pack/neus-mark-128.png",
14
+ "src": "https://neus.network/images/neus-brand-pack/apple-touch-icon.png",
15
15
  "sizes": ["128x128"],
16
16
  "mimeType": "image/png"
17
17
  }
@@ -22,6 +22,10 @@
22
22
  "url": "https://mcp.neus.network/mcp"
23
23
  }
24
24
  ],
25
+ "authorization": {
26
+ "type": "oauth2",
27
+ "resourceMetadataUrl": "https://mcp.neus.network/.well-known/oauth-protected-resource"
28
+ },
25
29
  "capabilities": {
26
30
  "tools": {
27
31
  "supported": true,
@@ -34,7 +38,7 @@
34
38
  "tools": [
35
39
  {
36
40
  "name": "neus_context",
37
- "description": "NEUS MCP session home: product summary, setup, access-key mode, verifier summaries, reuse-first workflow, tools, and safety rules. Always call first."
41
+ "description": "NEUS MCP session home: product summary, setup, OAuth sign-in, verifier summaries, reuse-first workflow, tools, and safety rules. Always call first."
38
42
  },
39
43
  {
40
44
  "name": "neus_verifiers_catalog",
@@ -54,11 +58,11 @@
54
58
  },
55
59
  {
56
60
  "name": "neus_proofs_get",
57
- "description": "Reads proof records, tags, delegated agent reads, Profile summary fields, and live proof state. qHashes in the response are authoritative."
61
+ "description": "Reads proof records, tags, delegated agent reads, Profile summary fields, and live proof state. Use returned proof records as receipt references."
58
62
  },
59
63
  {
60
64
  "name": "neus_me",
61
- "description": "Returns the signed-in NEUS Profile when a personal access key from Profile Account is configured on this MCP session."
65
+ "description": "Returns the signed-in NEUS Profile when the MCP call has a NEUS session bearer or local Profile access key."
62
66
  },
63
67
  {
64
68
  "name": "neus_agent_link",
@@ -67,6 +71,18 @@
67
71
  {
68
72
  "name": "neus_agent_create",
69
73
  "description": "Prepares agent-identity and agent-delegation payloads (signatures and/or hostedVerifyUrl). Does not finalize receipts; confirm with neus_agent_link after signing. Skills/services fields are metadata only, not secrets."
74
+ },
75
+ {
76
+ "name": "neus_secret_create",
77
+ "description": "Store an env-style secret as an encrypted proof. Creates an ownership-basic proof with secret-storage tags. Values are AES-256-GCM sealed and never returned in plaintext via MCP."
78
+ },
79
+ {
80
+ "name": "neus_secret_list",
81
+ "description": "List env-style secret proofs for a wallet. Returns metadata only (qHash, alias, type, updatedAt). Values are never exposed."
82
+ },
83
+ {
84
+ "name": "neus_secret_revoke",
85
+ "description": "Revoke a stored secret proof by qHash. Removes the proof and cleans up any agent bindings. Requires authenticated ownership."
70
86
  }
71
87
  ],
72
88
  "license": "Apache-2.0",
@@ -79,50 +95,27 @@
79
95
  "neus",
80
96
  "mcp",
81
97
  "model-context-protocol",
98
+ "oauth",
82
99
  "verification",
83
100
  "trust-receipts",
84
101
  "proofs",
85
- "delegation",
86
- "identity",
87
- "agents",
88
- "profile",
89
- "wallet",
90
- "ai-agents",
91
- "ethereum",
92
- "solana",
93
- "did",
94
- "x402"
102
+ "agents"
95
103
  ],
96
104
  "examples": [
97
105
  {
98
106
  "title": "Bootstrap a session",
99
107
  "description": "Load the MCP session home plus verifier summaries.",
100
- "prompt": "Call neus_context first, then follow the returned goldenPath. If Bearer is configured, call neus_me before any account-aware work."
108
+ "prompt": "Call neus_context first, then follow the returned recommendedFlow. If Bearer is configured (OAuth or Profile key), call neus_me before any account-aware work."
101
109
  },
102
110
  {
103
111
  "title": "Register an AI agent",
104
112
  "description": "Identity and delegation proofs for an agent wallet; confirm readiness before use.",
105
113
  "prompt": "Use neus_agent_link first when an agent wallet already exists. Use neus_agent_create only when setup is missing. If a hosted URL is returned, share it exactly, then call neus_agent_link after completion."
106
114
  },
107
- {
108
- "title": "Gate before a new verification",
109
- "description": "Eligibility only—no new proof creation.",
110
- "prompt": "Use neus_proofs_check for wallet 0x... and verifier IDs [\"ownership-basic\", \"proof-of-human\"]. Report only whether requirements are satisfied and which verifiers matched—do not start a new verification. Use qHash as the trust receipt reference; contentHash identifies proven content."
111
- },
112
115
  {
113
116
  "title": "Reuse first, guide only when missing",
114
117
  "description": "Check existing trust before any browser handoff.",
115
- "prompt": "Call neus_proofs_check for wallet 0x... and verifier IDs [\"ownership-basic\"]. If eligible, continue without hosted verify. If not eligible, call neus_verify_or_guide, share any returned hosted URL exactly, then call neus_proofs_get after completion and report the qHash from the proof record."
116
- },
117
- {
118
- "title": "Tag-filtered proof inventory (delegated context)",
119
- "description": "Filter proof reads by tags—for memory, skills, jobs—same tool as listing proofs.",
120
- "prompt": "For wallet 0x..., call neus_proofs_get with tags=memory,skill and optional agentWallet only when delegated reads apply. Summarize proof titles, tags, and qHashes only—no invented records."
121
- },
122
- {
123
- "title": "Instant verification with Profile access key",
124
- "description": "When MCP carries your NEUS access key and the profile wallet matches, some instant verifiers may submit without a wallet signature.",
125
- "prompt": "My NEUS personal access key is configured on this MCP connection and walletAddress 0x... matches my NEUS profile wallet. Call neus_context, then neus_me, then neus_proofs_check. If the existing receipt satisfies the request, stop. If not, call neus_verify only when prerequisites match; otherwise explain the next returned setup step."
118
+ "prompt": "Call neus_proofs_check for wallet 0x... and verifier IDs [\"ownership-basic\"]. If eligible, continue without hosted verify. If not eligible, call neus_verify_or_guide, share any returned hosted URL exactly, then call neus_proofs_get after completion."
126
119
  }
127
120
  ],
128
121
  "compatibility": {