Spend authorization, token budgets, and an encrypted credential vault for AI agents.
Config is the same across clients — only the file and path differ.
{
"mcpServers": {
"sanction": {
"env": {
"SANCTION_API_KEY": "pxy_...",
"SANCTION_API_URL": "https://onesanction.com/api/v1",
"SANCTION_WALLET_ID": "wallet_..."
},
"args": [
"sanction-mcp"
],
"command": "npx"
}
}
}Are you the author?
Add this badge to your README to show your security score and help users find safe servers.
The trust and governance layer for autonomous AI agents.
No automated test available for this server. Check the GitHub README for setup instructions.
Five weighted categories — click any category to see the underlying evidence.
No known CVEs.
No package registry to scan.
Be the first to review
Have you used this server?
Share your experience — it helps other developers decide.
Sign in to write a review.
Others in security / ai-ml
Dynamic problem-solving through sequential thought chains
Persistent memory using a knowledge graph
An autonomous agent that conducts deep research on any data using any LLM providers
🌊 The leading agent orchestration platform for Claude. Deploy intelligent multi-agent swarms, coordinate autonomous workflows, and build conversational AI systems. Features enterprise-grade architecture, distributed swarm intelligence, RAG integration, and native Claude Code / Codex Integration
MCP Security Weekly
Get CVE alerts and security updates for io.github.ericlovold/sanction and similar servers.
Start a conversation
Ask a question, share a tip, or report an issue.
Sign in to join the discussion.
The trust and governance layer for autonomous AI agents.
Sanction gives agents a wallet, a credential vault, and a clearance system — so they can act autonomously without acting without limits.
Autonomous agents need permission to spend money, access credentials, and operate in sensitive domains. Sanction is the layer that grants that permission, enforces policy, and logs everything.
| Pillar | Capability |
|---|---|
| Agent Wallet | Spend authorization with configurable policy. Auto-approve under threshold, escalate over it, deny what's blocked. Daily and monthly budgets per agent. |
| Credential Vault | AES-256-GCM encrypted secrets. Scoped execution JWTs (15-minute TTL) gate every injection. Every access is audit-logged. |
| Clearance Levels | 1–5 clearance system for domain authorization. Agents only access what they're cleared for. |
Sanction is available through three channels:
x-api-key authagentId: JXRNIJRMCX, us-east-1)Base URL: https://getsanction.com/api/v1
Integrating a multi-tenant platform? Start with the Multi-Tenant Integration Runbook — provision an agent per tenant, govern budgets centrally, meter LLM calls through the gateway, rotate keys. Using the Vercel AI SDK? See the AI SDK guide.
POST /wallets — Create a wallet (master account) + spend policy
GET /wallets/stats — Dashboard stats (today + MTD)
GET /wallets/policy — Read the wallet spend policy
PATCH /wallets/policy — Update budgets, thresholds, categories
POST /agents — Register (provision) an agent under a wallet
GET /agents — List a wallet's agents
PATCH /agents — Per-agent budgets, clearance, revoke/reactivate
POST /agents/rotate — Rotate an agent's key (old dies immediately)
POST /authorize — Authorize a spend action before any transaction
POST /tokens — Log LLM token consumption for budget tracking
POST /exec — Issue a scoped execution JWT (15-min TTL)
POST /credentials/vault — Store an encrypted credential
POST /credentials/inject — Inject a decrypted credential (requires JWT)
GET /api/openapi.json — OpenAPI 3.0 spec (Bedrock compatible)
The LLM gateway lives at https://getsanction.com/api/gateway/<provider> (point
your model SDK's base URL there, send x-sanction-key).
Agent API calls use x-api-key: pxy_... header. Credential injection requires a short-lived Bearer JWT issued by /exec.
{
"mcpServers": {
"sanction": {
"command": "npx",
"args": ["sanction-mcp"],
"env": {
"SANCTION_API_URL": "https://getsanction.com/api/v1",
"SANCTION_API_KEY": "pxy_...",
"SANCTION_WALLET_ID": "wallet_..."
}
}
}
}
| Tier | Price | Agents | Token Budget |
|---|---|---|---|
| Free | $0 | 1 | $10/mo |
| Pro | $19/mo | 5 | $100/mo |
| Team | $49/mo | 25 | $500/mo |
| Enterprise | Custom | Unlimited | Custom |
packages/sanction-mcp (the MCP client) — MIT. Embed it anywhere.