Back to Browse
Free
Server data from the Official MCP Registry
Gate AI agent actions behind a consent policy with human approval via Telegram. Fail-closed.
About
Gate AI agent actions behind a consent policy with human approval via Telegram. Fail-closed.
Security Report
5.2
Moderate5.2Moderate RiskThe ConsentGate MCP server is well-designed with proper authentication, secure credential handling, and appropriate error handling. The server correctly uses environment variables for API keys, implements fail-closed security semantics, and has clean code with good input validation. Minor issues around logging and broad catch blocks do not materially impact security. Supply chain analysis found 3 known vulnerabilities in dependencies (0 critical, 3 high severity). Package verification found 1 issue.
4 files analyzed · 7 issues found
Security scores are indicators to help you make informed decisions, not guarantees. Always review permissions before connecting any MCP server.
Permissions Required
This plugin requests these system permissions. Most are normal for its category.
What You'll Need
Set these up before or after installing:
ConsentGate API key (cg_…) from https://consentgate.fyi/dashboard/keysRequired
Environment variable: CONSENTGATE_API_KEY
Override the API base URL (defaults to https://consentgate.fyi)
Environment variable: CONSENTGATE_BASE_URL
How to Install
Add this to your MCP configuration file:
{
"mcpServers": {
"io-github-jessepetersondev-consentgate-mcp": {
"env": {
"CONSENTGATE_API_KEY": "your-consentgate-api-key-here",
"CONSENTGATE_BASE_URL": "your-consentgate-base-url-here"
},
"args": [
"-y",
"consentgate-mcp"
],
"command": "npx"
}
}
}Documentation
View on GitHubFrom the project's GitHub README.
consentgate-mcp
A Model Context Protocol server that lets any MCP-capable agent (Claude Desktop, Claude Code, Cursor, custom agents, …) gate its own actions behind a human's consent policy via ConsentGate.
The agent asks before it acts; you stay in control. High-stakes actions can block on an explicit Approve / Deny tap delivered to your Telegram.
Tools
| Tool | Blocks? | What it does |
|---|---|---|
check_action | no | Evaluates an action against your consent rules. Returns allow, deny, or ask (no rule matched). Use it before any sensitive/irreversible action. |
request_approval | yes (≤120s) | Sends an Approve/Deny prompt to your Telegram and blocks until you tap or it times out. Returns allow only on an explicit human Approve; everything else (deny, timeout, not-available) is deny. |
Both fail closed: anything other than an explicit allow means do not proceed.
Prerequisites
- A ConsentGate account and an API key → https://consentgate.fyi/dashboard/keys (
cg_…). - For
request_approval(interactive approvals): the Pro plan and a linked Telegram account (Dashboard → Telegram → Connect).check_actionworks on any plan.
Configuration
Environment variables:
| Var | Required | Default | Notes |
|---|---|---|---|
CONSENTGATE_API_KEY | ✅ | — | Your cg_… key. |
CONSENTGATE_BASE_URL | — | https://consentgate.fyi | Override for self-hosted instances. |
Claude Desktop
Add to claude_desktop_config.json (Settings → Developer → Edit Config):
{
"mcpServers": {
"consentgate": {
"command": "npx",
"args": ["-y", "consentgate-mcp"],
"env": { "CONSENTGATE_API_KEY": "cg_your_key_here" }
}
}
}
Claude Code
claude mcp add consentgate --env CONSENTGATE_API_KEY=cg_your_key_here -- npx -y consentgate-mcp
Generic MCP client
Run npx -y consentgate-mcp (stdio transport) with CONSENTGATE_API_KEY in the environment.
Run from source
Until the package is published to npm, point your client at the built file (
node /abs/path/to/mcp/dist/index.js) instead ofnpx consentgate-mcp.
cd mcp
npm install # also builds via the `prepare` script
npm run build # -> dist/index.js
CONSENTGATE_API_KEY=cg_… npm run smoke # lists tools + a live check_action
How an agent should use it
A good agent policy:
Before performing any action that sends messages, spends money, deletes data, posts publicly, or changes external state, call
check_action. If the result isallow, proceed. Ifdeny, stop. Ifask(or the action is high-stakes), callrequest_approvaland proceed only on an explicitallow.
Example (request_approval):
{
"action": "transfer_funds",
"category": "spending",
"metadata": { "amount": "$500", "to": "Acme Corp" },
"wait_seconds": 90
}
// -> blocks; you tap Approve in Telegram -> { "decision": "allow", "resolved_by": "human" }
License
MIT
Reviews
No reviews yet
Be the first to review this server!
More Developer Tools MCP Servers
Git
Freeby Modelcontextprotocol · Developer Tools
Read, search, and manipulate Git repositories programmatically
80.0K
Stars
4
Installs
6.5
Security
No ratings yet
Local
Fetch
Freeby Modelcontextprotocol · Developer Tools
Web content fetching and conversion for efficient LLM usage
80.0K
Stars
4
Installs
5.3
Security
No ratings yet
Local
Toleno
Freeby Toleno · Developer Tools
Toleno Network MCP Server — Manage your Toleno mining account with Claude AI using natural language.
137
Stars
490
Installs
8.0
Security
4.8
Local