Is Agent Policy Enforcement free?

Yes, Agent Policy Enforcement is free to use.

How do I install Agent Policy Enforcement?

Agent Policy Enforcement is a local plugin. Install it using PyPI package: agent-policy-enforcement-mcp and add the generated configuration snippet to your AI app's MCP config file. Then restart your AI app.

What AI apps work with Agent Policy Enforcement?

Agent Policy Enforcement uses the Model Context Protocol (MCP) and works with any MCP-compatible AI app, including Claude, ChatGPT / Codex, Gemini, Copilot, Cursor, and more.

Back to Browse

Agent Policy Enforcement MCP Server

by CSOAI ORG

Developer ToolsUse Caution3.2MCP RegistryLocal

Free

Server data from the Official MCP Registry

Per-agent-pair IAM for A2A. Define policies ('orchestrator may call billing only when amount<100...

About

Per-agent-pair IAM for A2A. Define policies ('orchestrator may call billing only when amount<100...

Security Report

3.2

Use Caution3.2High Risk

This MCP server implements agent-to-agent policy enforcement with several security strengths (API key-based tier access, no hardcoded credentials, proper policy evaluation logic) but has notable concerns that prevent a higher score. The server makes unauthenticated network calls to external attestation APIs without verification, stores all policy decisions and logs in memory without persistence or encryption, lacks input validation on the DSL condition parser (potential injection risk), and the free tier check is bypassable due to client-side API key control. Additionally, the authentication fallback and optional external module dependencies create unclear security boundaries. Supply chain analysis found 3 known vulnerabilities in dependencies (0 critical, 3 high severity). Package verification found 1 issue (1 critical, 0 high severity).

5 files analyzed · 14 issues found

Security scores are indicators to help you make informed decisions, not guarantees. Always review permissions before connecting any MCP server.

Permissions Required

This plugin requests these system permissions. Most are normal for its category.

env_vars

Check that this permission is expected for this type of plugin.

HTTP Network Access

Connects to external APIs or services over the internet.

process_spawn

Check that this permission is expected for this type of plugin.

Unverified package source

We couldn't verify that the installable package matches the reviewed source code. Proceed with caution.

How to Install

Add this to your MCP configuration file:

{
  "mcpServers": {
    "io-github-csoai-org-agent-policy-enforcement-mcp": {
      "args": [
        "agent-policy-enforcement-mcp"
      ],
      "command": "uvx"
    }
  }
}

Documentation

View on GitHub

From the project's GitHub README.

Agent Policy Enforcement MCP

Per-agent-pair IAM for A2A orchestration

The runtime-governance primitive that EU AI Act Article 14 (human oversight) + ISO 42001 Annex A.7 (authorisation) demand for agent-to-agent systems.

By MEOK AI Labs.

Install

pip install agent-policy-enforcement-mcp

Tools

define_policy
evaluate_call
list_policies
remove_policy
decision_log
sign_policy_attestation

Claude Desktop

{
  "mcpServers": {
    "agentpolicyenforcement": { "command": "agent-policy-enforcement-mcp" }
  }
}

Tiers

Free — generous daily limit (100-1,000 depending on operation)
Pro £199/mo — unlimited + signed HMAC attestations with public verify URLs — subscribe
Enterprise £1,499/mo — multi-tenant + custom predicate DSL + SIEM webhook push — subscribe

Why this exists

The EU AI Act (Aug 2026), DORA (live), ISO 42001, and OWASP LLM01 Top-10 all demand runtime controls for agent systems — not just deployment-time audits. This MCP is that runtime control layer, emitting cryptographically signed evidence your auditor accepts.

Related MEOK A2A MCPs

agent-policy-enforcement-mcp — per-pair IAM
agent-handoff-certified-mcp — signed delegation chain
agent-prompt-injection-firewall-mcp — prompt injection WAF
agent-rate-limiter-mcp — fleet-wide quota
agent-audit-logger-mcp — hash-chained signed log
a2a-governance-bridge-mcp — map A2A to compliance frameworks
meok-attestation-verify — independent cert verifier

License

MIT — MEOK AI Labs, 2026.

Reviews

No reviews yet

Be the first to review this server!

More Developer Tools MCP Servers

Git

Free

by Modelcontextprotocol · Developer Tools

Read, search, and manipulate Git repositories programmatically

Toleno

Free

by Toleno · Developer Tools

Toleno Network MCP Server — Manage your Toleno mining account with Claude AI using natural language.

mcp-creator-python

Free

by mcp-marketplace · Developer Tools

Create, build, and publish Python MCP servers to PyPI — conversationally.

MarkItDown

Free

by Microsoft · Content & Media

Convert files (PDF, Word, Excel, images, audio) to Markdown for LLM consumption

mcp-creator-typescript

Free

by mcp-marketplace · Developer Tools

Scaffold, build, and publish TypeScript MCP servers to npm — conversationally

FinAgent

Free

by mcp-marketplace · Finance

Free stock data and market news for any MCP-compatible AI assistant.

Agent Policy Enforcement MCP Server

About

Security Report

Findings (14)Action required

Permissions Required

How to Install

Documentation

Agent Policy Enforcement MCP

Install

Tools

Claude Desktop

Tiers

Why this exists

Related MEOK A2A MCPs

License

Reviews

No reviews yet

More Developer Tools MCP Servers

Git

Toleno

mcp-creator-python

MarkItDown

mcp-creator-typescript

FinAgent

Agent Policy Enforcement MCP Server

About

Security Report

Findings (14)Action required

Permissions Required

How to Install

Documentation

Agent Policy Enforcement MCP

Install

Tools

Claude Desktop

Tiers

Why this exists

Related MEOK A2A MCPs

License

Reviews

No reviews yet

More Developer Tools MCP Servers

Git

Toleno

mcp-creator-python

MarkItDown

mcp-creator-typescript

FinAgent