How do I install True402?

True402 is a local plugin. Install it using npm package: @true402.dev/mcp-server and add the generated configuration snippet to your AI app's MCP config file. Then restart your AI app.

Is True402 safe to use?

True402 was flagged by MCP Marketplace's security scan, scoring 4.8/10 (high risk). It has 5 high or critical findings to review. Review the security report on this page carefully before installing it.

What credentials does True402 need?

True402 requires the following credentials or environment variables: WALLET_PRIVATE_KEY, SERVER_URL, MAX_PAYMENT_USDC. You can find setup instructions on the server detail page.

What AI apps work with True402?

True402 uses the Model Context Protocol (MCP) and works with any MCP-compatible AI app, including Claude, ChatGPT / Codex, Gemini, Copilot, Cursor, and more.

Back to Browse

True402 MCP Server

by True402

Developer ToolsUse Caution4.8MCP RegistryLocal

Free

Server data from the Official MCP Registry

Pay-per-call agent tools over x402 on Base: token/rug safety, DeFi signals, SEO, LLM. No keys.

About

Pay-per-call agent tools over x402 on Base: token/rug safety, DeFi signals, SEO, LLM. No keys.

Security Report

4.8

Use Caution4.8High Risk

This MCP server implements a secure x402 payment protocol for pay-per-call access to AI and web tools. The code demonstrates strong security practices around cryptographic key handling, wallet protection, and payment validation. The private key is never logged or exposed, and there are multiple layers of guards against malicious payment requirements (amount caps, asset/network pinning, secure URL enforcement). Some minor code quality concerns exist around exception handling breadth and input validation, but these do not materially impact security. Supply chain analysis found 5 known vulnerabilities in dependencies (2 critical, 3 high severity). Package verification found 1 issue.

8 files analyzed · 11 issues found

Security scores are indicators to help you make informed decisions, not guarantees. Always review permissions before connecting any MCP server.

Permissions Required

This plugin requests these system permissions. Most are normal for its category.

env_vars

Check that this permission is expected for this type of plugin.

HTTP Network Access

Connects to external APIs or services over the internet.

network_https

Check that this permission is expected for this type of plugin.

What You'll Need

Set these up before or after installing:

Funded Base wallet private key for x402 payment signing (optional; without it, paid tools return the 402 requirements).Required

Environment variable: WALLET_PRIVATE_KEY

true402 API base (default https://true402.dev/api). Must be https (or localhost) — the signer refuses to send a payment over cleartext.Optional

Environment variable: SERVER_URL

Client-side per-call spend ceiling in USDC (default 0.10). The signer refuses to auto-pay a 402 whose amount exceeds this — protects the wallet from a hostile endpoint.Optional

Environment variable: MAX_PAYMENT_USDC

How to Install

Add this to your MCP configuration file:

{
  "mcpServers": {
    "dev-true402-mcp-server": {
      "env": {
        "SERVER_URL": "your-server-url-here",
        "MAX_PAYMENT_USDC": "your-max-payment-usdc-here",
        "WALLET_PRIVATE_KEY": "your-wallet-private-key-here"
      },
      "args": [
        "-y",
        "@true402.dev/mcp-server"
      ],
      "command": "npx"
    }
  }
}

Documentation

View on GitHub

From the project's GitHub README.

@true402.dev/mcp-server

MCP server for the true402 machine-native marketplace — give your agent pay-per-call access to AI inference and web tools over x402 (HTTP 402 micropayments in USDC on Base).

No accounts, no API keys. The agent's wallet is its identity: each paid tool returns an HTTP 402 challenge, the server signs an EIP-3009 USDC authorization, and the call settles on-chain. Configure a funded wallet to auto-pay, or run without one and the paid tools will surface the exact payment requirements instead of failing.

Tools

Tool	Price	What it does
`chat`	per-token + 3%	OpenAI-compatible LLM inference across many models
`list_models`	free	List available models + pricing
`token_safety`	$0.005	ERC-20 rug/honeypot pre-check on Base → 0–100 score, risk band, flags, liquidity depth + a buy/sell honeypot simulation
`seo_audit`	$0.015	SEO + GEO (generative-engine-optimization) audit of a page → structured report
`web_extract`	$0.005	Fetch a URL → clean text + markdown + links + metadata
`link_preview`	$0.003	Fetch a URL → Open Graph / unfurl card
`robots_check`	$0.003	A site's AI-crawler policy (GPTBot, ClaudeBot, Google-Extended, PerplexityBot, …) + sitemaps + llms.txt
`headers_check`	$0.003	HTTP security-headers analysis (HSTS, CSP, …) + a 0–100 score
`new_pairs`	$0.003	Newly created Base DEX pairs (Uniswap V3 / Aerodrome) — fresh token launches
`liquidity_pulls`	$0.003	Liquidity-removal / rug alerts on Base pools
`whale_swaps`	$0.005	Large swaps on Base by USD size — whale flow
`token_report`	$0.01	Fuller on-chain token report

Tools are auto-discovered from the live catalog, so new marketplace stalls appear automatically. Prices are illustrative; the live 402 challenge is authoritative.

Example: add token-safety to your agent

A copy-paste reference in examples/token-safety/ — a framework-agnostic x402 client plus a drop-in LangChain tool that rug/honeypot-checks any Base token for $0.005/call.

Install

Requires Node.js ≥ 20. Runs over stdio — point any MCP client at it via npx.

Claude Desktop / Claude Code

Add to your MCP config (claude_desktop_config.json, or .mcp.json for Claude Code):

{
  "mcpServers": {
    "true402": {
      "command": "npx",
      "args": ["-y", "@true402.dev/mcp-server"],
      "env": {
        "WALLET_PRIVATE_KEY": "0xYOUR_FUNDED_BASE_WALLET_KEY"
      }
    }
  }
}

Cursor / Cline / other MCP clients

Same idea — command npx, args ["-y", "@true402.dev/mcp-server"], and the WALLET_PRIVATE_KEY env var.

Configuration

Env var	Default	Description
`SERVER_URL`	`https://true402.dev/api`	true402 API base. Override to point at a self-hosted instance.
`WALLET_PRIVATE_KEY`	(none)	A funded Base wallet private key used to sign x402 payments. Needs USDC (gas is sponsored by the facilitator — no ETH required). Without it, paid tools return the 402 requirements instead of paying.

Security: the key is read only from the environment and is never logged, echoed, or returned. Use a dedicated low-balance wallet — fund it with only what you intend to spend.

How payment works

The tool calls the true402 endpoint with no payment.
The server replies 402 with accepted payment options (USDC on Base).
This MCP server signs an EIP-3009 transferWithAuthorization with your wallet.
It retries with the signed X-PAYMENT header; the service verifies and responds.
Settlement happens on-chain. Your wallet pays only USDC — the facilitator sponsors gas.

License

MIT

Reviews

No reviews yet

Be the first to review this server!

More Developer Tools MCP Servers

Git

Free

by Modelcontextprotocol · Developer Tools

Read, search, and manipulate Git repositories programmatically

Fetch

Free

by Modelcontextprotocol · Developer Tools

Web content fetching and conversion for efficient LLM usage

Toleno

Free

by Toleno · Developer Tools

Toleno Network MCP Server — Manage your Toleno mining account with Claude AI using natural language.

mcp-creator-python

Free

by mcp-marketplace · Developer Tools

Create, build, and publish Python MCP servers to PyPI — conversationally.

MarkItDown

Free

by Microsoft · Content & Media

Convert files (PDF, Word, Excel, images, audio) to Markdown for LLM consumption

FinAgent

Free

by mcp-marketplace · Finance

Free stock data and market news for any MCP-compatible AI assistant.

True402 MCP Server

About

Security Report

Findings (11)Action required

Permissions Required

What You'll Need

How to Install

Documentation

@true402.dev/mcp-server

Tools

Example: add token-safety to your agent

Install

Claude Desktop / Claude Code

Cursor / Cline / other MCP clients

Configuration

How payment works

Links

License

Reviews

No reviews yet

More Developer Tools MCP Servers

Git

Fetch

Toleno

mcp-creator-python

MarkItDown

FinAgent

True402 MCP Server

About

Security Report

Findings (11)Action required

Permissions Required

What You'll Need

How to Install

Documentation

@true402.dev/mcp-server

Tools

Example: add token-safety to your agent

Install

Claude Desktop / Claude Code

Cursor / Cline / other MCP clients

Configuration

How payment works

Links

License

Reviews

No reviews yet

More Developer Tools MCP Servers

Git

Fetch

Toleno

mcp-creator-python

MarkItDown

FinAgent