Is io.github.srotzin/hive-mcp-ledger-bridge safe to use?

io.github.srotzin/hive-mcp-ledger-bridge has no known CVEs as of the latest MCPpedia security scan. It does not require authentication, so any local process can connect — keep this in mind in shared environments.

How do I install io.github.srotzin/hive-mcp-ledger-bridge?

io.github.srotzin/hive-mcp-ledger-bridge can be installed by cloning its GitHub repository and following the setup instructions in the README.

What AI clients work with io.github.srotzin/hive-mcp-ledger-bridge?

io.github.srotzin/hive-mcp-ledger-bridge is compatible with claude-desktop, cursor, claude-code. It uses stdio transport.

Is io.github.srotzin/hive-mcp-ledger-bridge actively maintained?

io.github.srotzin/hive-mcp-ledger-bridge is actively maintained — last commit was 15 days ago.

io.github.srotzin/hive-mcp-ledger-bridge

Hive MCP server implementing the EIP-712 over USB/DMK ledger-bridge integration spec…

0 tools GitHub

No known CVEs

No license

Actively maintained

Last commit 15d ago

Works with most clients

Transport:

0 tools

Grade F

Edit this pageView history

Finance

Step 1

Install in your client

Config is the same across clients — only the file and path differ.

Supported in Claude Desktopstdio · Node 18+

Paste into ~/Library/Application Support/Claude/claude_desktop_config.json

{
  "mcpServers": {
    "io-github-srotzin-hive-mcp-ledger-bridge": {
      "command": "<see-readme>",
      "args": []
    }
  }
}

Are you the author?

Add this badge to your README to show your security score and help users find safe servers.

Embed in your READMEAbout badges →

[![MCPpedia Score](https://mcppedia.org/api/badge/io-github-srotzin-hive-mcp-ledger-bridge)](https://mcppedia.org/s/io-github-srotzin-hive-mcp-ledger-bridge)

Read me

What io.github.srotzin/hive-mcp-ledger-bridge does

Hive Civilization — EIP-712 over USB/DMK ledger-bridge MCP server.

Test This Server

No automated test available for this server. Check the GitHub README for setup instructions.

Loading README…

Scored, not listed

Why this score

Five weighted categories — click any category to see the underlying evidence.

Score breakdown

26/100across 5 weighted dimensions

How we score →

0255075100

−74

Security

Maintenance

Efficiency

Documentation

Compatibility

Categoriesclick a row to see evidence

Security

OSV.dev

No known CVEs.

No package registry to scan.

Community

Reviews

Be the first to review

Have you used this server?

Share your experience — it helps other developers decide.

How easy was setup?Did it work reliably?How was the documentation?

Frequently Asked Questions

Is io.github.srotzin/hive-mcp-ledger-bridge safe to use?: io.github.srotzin/hive-mcp-ledger-bridge has no known CVEs as of the latest MCPpedia security scan. It does not require authentication, so any local process can connect — keep this in mind in shared environments.
How do I install io.github.srotzin/hive-mcp-ledger-bridge?: io.github.srotzin/hive-mcp-ledger-bridge can be installed by cloning its GitHub repository and following the setup instructions in the README.
What AI clients work with io.github.srotzin/hive-mcp-ledger-bridge?: io.github.srotzin/hive-mcp-ledger-bridge is compatible with claude-desktop, cursor, claude-code. It uses stdio transport.
Is io.github.srotzin/hive-mcp-ledger-bridge actively maintained?: io.github.srotzin/hive-mcp-ledger-bridge is actively maintained — last commit was 15 days ago.

Similar servers

Others in finance

View all →

Alpha Vantage Mcp93

Real-time financial market data: stocks, forex, crypto, commodities, and economic indicators

150 3

io.github.rezmeplxrf/insightsentry_mcp91

MCP server for InsightSentry financial data API - market data, options, screeners, and more

Actual Mcp90

Model Context Protocol for Actual Budget API

141 22

Xero Mcp90

A Model Context Protocol server allows Clients to interact with Xero

20 2

MCP Security Weekly

Get CVE alerts and security updates for io.github.srotzin/hive-mcp-ledger-bridge and similar servers.

Community

Discussion

Start a conversation

Ask a question, share a tip, or report an issue.

Has anyone used this with Cursor?How do you handle auth?Any alternatives?

Edit this pageView history

Finance

Step 1

Install in your client

Config is the same across clients — only the file and path differ.

Supported in Claude Desktopstdio · Node 18+

Paste into ~/Library/Application Support/Claude/claude_desktop_config.json

{
  "mcpServers": {
    "io-github-srotzin-hive-mcp-ledger-bridge": {
      "command": "<see-readme>",
      "args": []
    }
  }
}

Are you the author?

Add this badge to your README to show your security score and help users find safe servers.

Embed in your READMEAbout badges →

[![MCPpedia Score](https://mcppedia.org/api/badge/io-github-srotzin-hive-mcp-ledger-bridge)](https://mcppedia.org/s/io-github-srotzin-hive-mcp-ledger-bridge)

Read me

What io.github.srotzin/hive-mcp-ledger-bridge does

Hive Civilization — EIP-712 over USB/DMK ledger-bridge MCP server.

Test This Server

No automated test available for this server. Check the GitHub README for setup instructions.

README

hive-mcp-ledger-bridge

Hive Civilization — EIP-712 over USB/DMK ledger-bridge MCP server.

Implements the same signer-backend contract that shisa-ai/shisad exposes through contrib/ledger-bridge. Ledger is a partner. This server complements shisad — it does not replace it.

Partner Doctrine

Layer	Operator	Function
Hardware countersignature	Ledger device	EIP-712 signature over `intent_envelope_hash` after on-device review
ledger-bridge	shisa-ai (in `contrib/`)	Signer-backend contract; HTTP-to-USB/DMK adapter
8-layer PEP + ConfirmationLevel	shisad	Per-call policy enforcement; routes confirmation to backend
DID resolution + identity passport	Hive (`hivetrust`, `hive-mcp-identity`)	Read-only identity surface
Spectral receipts	Hive	Settlement audit record per fee event

No overlap. The hardware tier remains Ledger's. The runtime policy tier remains shisad's. Hive contributes IntentEnvelope construction, hash verification, confirmation-level policy, and settlement attestation — all above the PEP, without modifying the ConfirmationLevel enum or the signer-backend contract.

ConfirmationLevel Enum

From the shisa-ai/shisad specification:

Level	Name	Integer
L0	`SOFTWARE`	0
L1	`REAUTHENTICATED`	1
L2	`BOUND_APPROVAL`	2
L3	`SIGNED_AUTHORIZATION`	3
L4	`TRUSTED_DISPLAY_AUTHORIZATION`	4

This server uses the enum verbatim. No extensions, no invented tiers.

Tools

Tool	Description	Default ConfirmationLevel
`ledger_intent_envelope_create`	Build an `IntentEnvelope` with EIP-712 domain separator and `intent_envelope_hash`	Derived from `action`
`ledger_intent_envelope_verify`	Verify `intent_envelope_hash` matches envelope contents	Read-only / none
`ledger_confirmation_level_query`	Return required `ConfirmationLevel` for an intent	Read-only / none
`ledger_signed_authorization_attest`	Hive-side attestation that an intent reached L3 or L4	L3 / L4 required
`ledger_partner_directory`	Partner integration directory: shisad reference, Ledger Live, Hive contact	Read-only / none

`ledger_intent_envelope_create`

Build a signed-ready IntentEnvelope. The server produces the EIP-712 domain separator and intent_envelope_hash — the hash is what the Ledger device signs.

{
  "intent_id": "uuid-or-did-fragment",
  "agent_did": "did:hive:0xabc...",
  "action": "transfer",
  "target": "0xRecipientAddress",
  "amount": "1000.00",
  "chain_id": 8453,
  "nonce": 1,
  "deadline": 1777699200,
  "verifying_contract": "0x0000000000000000000000000000000000000000"
}

Response includes envelope, intent_envelope_hash, domain_separator, and suggested_confirmation_level.

`ledger_intent_envelope_verify`

Supply an IntentEnvelope body and an intent_envelope_hash. Returns match: true|false and the recomputed hash.

`ledger_confirmation_level_query`

{ "action": "transfer", "amount_usd": 50000 }

Returns the integer level and name. Useful for pre-call policy checks before routing to the ledger-bridge.

`ledger_signed_authorization_attest`

Record a Hive-side attestation that a device returned an ECDSA signature at L3 or L4. This is not on-chain settlement — it is an audit record that the intent_envelope_hash was device-countersigned.

{
  "intent_envelope_hash": "0xabc...",
  "agent_did": "did:hive:0xabc...",
  "confirmation_level": 4,
  "ecdsa_signature": "0xsignatureHex..."
}

`ledger_partner_directory`

Returns the full partner directory with URLs, roles, and contact information.

Endpoints

Path	Method	Description
`/health`	GET

... View full README on GitHub

Loading README…

Scored, not listed

Why this score

Five weighted categories — click any category to see the underlying evidence.

Score breakdown

26/100across 5 weighted dimensions

How we score →

0255075100

−74

Security

Maintenance

Efficiency

Documentation

Compatibility

Categoriesclick a row to see evidence

Security

OSV.dev

No known CVEs.

No package registry to scan.

Community

Reviews

Be the first to review

Have you used this server?

Share your experience — it helps other developers decide.

How easy was setup?Did it work reliably?How was the documentation?

Frequently Asked Questions

Is io.github.srotzin/hive-mcp-ledger-bridge safe to use?: io.github.srotzin/hive-mcp-ledger-bridge has no known CVEs as of the latest MCPpedia security scan. It does not require authentication, so any local process can connect — keep this in mind in shared environments.
How do I install io.github.srotzin/hive-mcp-ledger-bridge?: io.github.srotzin/hive-mcp-ledger-bridge can be installed by cloning its GitHub repository and following the setup instructions in the README.
What AI clients work with io.github.srotzin/hive-mcp-ledger-bridge?: io.github.srotzin/hive-mcp-ledger-bridge is compatible with claude-desktop, cursor, claude-code. It uses stdio transport.
Is io.github.srotzin/hive-mcp-ledger-bridge actively maintained?: io.github.srotzin/hive-mcp-ledger-bridge is actively maintained — last commit was 15 days ago.