@voltanotes/mcp
MCP server for Volta Notes — create and read burn-after-read encrypted notes from any AI agent.
Notes are end-to-end encrypted using AES-256-GCM. The decryption key lives only in the URL fragment — it is never sent to any server. Notes are stored on the Internet Computer and permanently destroyed after a single read.
Why
AI agents regularly need sensitive information at runtime — API keys, passwords, credentials. Today, users paste these into chat where they're stored permanently in conversation history.
With this MCP server, the pattern becomes:
- User creates a note at voltanotes.com and sends the one-time URL
- Agent calls
read_volta_note — secret returned, note permanently destroyed
- Nothing sensitive ever appears in chat history
Or in reverse — an agent can use create_volta_note to send credentials to a user via a self-destructing link.
Quick Start
Claude Code (CLI & Desktop App)
Step 1 — Install globally:
npm install -g @voltanotes/mcp
Step 2 — Register the server:
claude mcp add -s user volta -- node $(npm root -g)/@voltanotes/mcp/dist/index.js
That's it. Restart Claude Code and the create_volta_note and read_volta_note tools will be available.
Why claude mcp add instead of editing config files? Claude Code reads MCP servers from its own registry, not from ~/.claude/mcp.json. Using the CLI ensures the server is registered correctly. The -s user flag makes it available across all projects.
node not found? Use the full path: replace node with the output of which node (e.g. /usr/local/bin/node).
Claude Desktop (Standalone)
Add to your claude_desktop_config.json:
{
"mcpServers": {
"volta": {
"command": "npx",
"args": ["-y", "@voltanotes/mcp"]
}
}
}
Other MCP-compatible clients
The npx config above works with any client that supports the standard command/args MCP format — including Cursor, Windsurf, Cline, Continue.dev, and others. Check your client's MCP documentation for where to add server config.
Windows (Claude Code CLI)
The $(npm root -g) syntax doesn't work in PowerShell or CMD. Use this instead:
claude mcp add -s user volta -- node "%APPDATA%\npm\node_modules\@voltanotes\mcp\dist\index.js"
Or use the Claude Desktop / npx method above, which works cross-platform.
Workflows
Agent receiving a secret from the user
Use this when you need a password, API key, or credentials from the user:
- Ask the user to go to app.voltanotes.com, paste their secret, and copy the one-time URL
- User sends you the URL
- Call
read_volta_note with the URL — secret is returned and note is permanently destroyed
Agent sending a secret to the user
Use this when you've generated something sensitive (a password, a key, credentials) that the user needs to see:
- Call
create_volta_note with the content
- Share the returned URL with the user
- User opens it once — content displayed, note destroyed
Do not call create_volta_note to ask the user to reply with a secret. Notes are read-only after creation — the user can't put content into a note you created. Use the first workflow above instead.
Tools
create_volta_note
Creates an encrypted note and returns a one-time URL. Use this to send sensitive information to a user.
Not for receiving secrets. To receive a secret from the user, ask them to create the note and send you the URL — then call read_volta_note.
| Parameter | Type | Description |
|-----------|--------|--------------------------------------|
... View full README on GitHub
