Yes, 402sentinel is free to use.

How do I install 402sentinel?

402sentinel is a local plugin. Install it using npm package: @kaditang/402sentinel-mcp and add the generated configuration snippet to your AI app's MCP config file. Then restart your AI app.

What credentials does 402sentinel need?

402sentinel requires the following credentials or environment variables: CLIENT_PRIVATE_KEY, SENTINEL_URL. You can find setup instructions on the server detail page.

What AI apps work with 402sentinel?

402sentinel uses the Model Context Protocol (MCP) and works with any MCP-compatible AI app, including Claude, ChatGPT / Codex, Gemini, Copilot, Cursor, and more.

Back to Browse

402sentinel MCP Server

by Kaditang

SecurityUse Caution4.0MCP RegistryLocal

Free

Server data from the Official MCP Registry

Assess an x402 counterparty's risk BEFORE paying: allow/review/block, scored on-chain (Base).

About

Assess an x402 counterparty's risk BEFORE paying: allow/review/block, scored on-chain (Base).

Security Report

4.0

Use Caution4.0High Risk

The server is a thin client for a hosted risk assessment service that requires a private key for payment processing. While the architecture is reasonable (server-side logic is closed), there are significant security concerns: the private key is stored in plaintext environment variables without validation, no input sanitization on user-provided arguments before forwarding to the backend, and missing error handling for edge cases. The permission scope (network_http, env_vars, process capability) is appropriate for its purpose, but key management practices and input validation need improvement. Supply chain analysis found 2 known vulnerabilities in dependencies (0 critical, 2 high severity). Package verification found 1 issue.

3 files analyzed · 10 issues found

Security scores are indicators to help you make informed decisions, not guarantees. Always review permissions before connecting any MCP server.

Permissions Required

This plugin requests these system permissions. Most are normal for its category.

env_vars

Check that this permission is expected for this type of plugin.

HTTP Network Access

Connects to external APIs or services over the internet.

process_spawn

Check that this permission is expected for this type of plugin.

What You'll Need

Set these up before or after installing:

A Base wallet (with USDC in its Circle Gateway balance) — pays $0.01 per assessment.Required

Environment variable: CLIENT_PRIVATE_KEY

Override the service base URL (default https://402sentinel.com).Optional

Environment variable: SENTINEL_URL

How to Install

Add this to your MCP configuration file:

{
  "mcpServers": {
    "io-github-kaditang-402sentinel-mcp": {
      "env": {
        "SENTINEL_URL": "your-sentinel-url-here",
        "CLIENT_PRIVATE_KEY": "your-client-private-key-here"
      },
      "args": [
        "-y",
        "@kaditang/402sentinel-mcp"
      ],
      "command": "npx"
    }
  }
}

Documentation

View on GitHub

From the project's GitHub README.

402sentinel-mcp

MCP tools that let your AI agent check an x402 counterparty's risk before it pays — and turn that risk into an enforceable wallet spending policy. Give it a payTo address, get back a 0–100 risk score + an allow / review / block decision, scored from on-chain settlement behaviour on Base (address age, facilitator-aware payer diversity, settlement maturity) + a delivery-outcome flywheel, with honest confidence/coverage.

Tools:

assess_counterparty ($0.002) — risk score + decision + a ready-to-apply recommended_policy
assess_counterparty_deep ($0.02) — same, scans more on-chain history
recommend_policy ($0.002) — decision + wallet-ready spending policy (caps, denylist, approval)
report_outcome (free) — after paying, report delivery to train the reliability flywheel

It's a thin client for the hosted service at https://402sentinel.com — the scoring model and facilitator-identification logic live server-side (closed); this package only forwards the request and pays for it, so it's open source.

Install

npm i -g @kaditang/402sentinel-mcp

Configure

Add to your MCP client (Claude Desktop, Cursor, etc.):

{
  "mcpServers": {
    "402sentinel": {
      "command": "402sentinel-mcp",
      "env": {
        "CLIENT_PRIVATE_KEY": "0x...  // a Base wallet with USDC in its Circle Gateway balance"
      }
    }
  }
}

Paid calls cost from $0.002 (shallow) to $0.02 (deep), paid automatically in USDC via x402 (Circle Gateway, gas-free on Base) from the configured wallet. report_outcome is free. (CLIENT_PRIVATE_KEY is only needed for the paid tools.)

Use

The agent calls it before authorizing a payment:

assess_counterparty({
  target: { payto_address: "0x..." },
  payment_context: { amount: 10, asset: "USDC" },
  policy: { block_at_score: 70, review_at_score: 40 }
})
→ { decision: "review", risk_score: 52, confidence: 0.41, coverage: {...},
    dimensions: [...], recommendation: "...",
    recommended_policy: { action: "limit", max_payment_usdc: 5, daily_cap_usdc: 15,
                          add_to_denylist: false, require_human_approval: true } }

block / deny → don't pay
review / limit → cap exposure / escrow (use recommended_policy for the caps)
allow → proceed

recommend_policy(...) returns just the decision + recommended_policy — apply max_payment_usdc / daily_cap_usdc / add_to_denylist directly to your agent wallet's spending limits. After paying, call report_outcome({ assessment_id, outcome }) to improve future scores.

Disclaimer

Algorithmic risk signal, informational only — not advice, not an endorsement, and not an accusation about any party. Scores are probabilistic estimates from limited public on-chain data and heuristics, and may misclassify. Do your own due diligence; don't rely on it as your sole basis to pay or refuse. See https://402sentinel.com/terms.

MIT.

Reviews

No reviews yet

Be the first to review this server!

More Security MCP Servers

Toleno

Free

by Toleno · Developer Tools

Toleno Network MCP Server — Manage your Toleno mining account with Claude AI using natural language.

mcp-creator-python

Free

by mcp-marketplace · Developer Tools

Create, build, and publish Python MCP servers to PyPI — conversationally.

MarkItDown

Free

by Microsoft · Content & Media

Convert files (PDF, Word, Excel, images, audio) to Markdown for LLM consumption

402sentinel MCP Server

About

Security Report

Findings (10)Action required

Permissions Required

What You'll Need

How to Install

Documentation

402sentinel-mcp

Install

Configure

Use

Disclaimer

Reviews

No reviews yet

More Security MCP Servers

Toleno

mcp-creator-python

MarkItDown

mcp-creator-typescript

FinAgent

Google Workspace MCP