Server data from the Official MCP Registry
Connect MCP clients to Thalovant control-plane and hub runtime APIs over stdio or Streamable HTTP.
Connect MCP clients to Thalovant control-plane and hub runtime APIs over stdio or Streamable HTTP.
This is a well-designed MCP server with comprehensive security features for controlling Thalovant APIs. Authentication is properly implemented with multiple modes (static bearer tokens, JWT, OAuth introspection), credentials are handled securely through environment variables and per-principal configuration files, and HTTP hardening includes rate limiting, CORS validation, and security headers. The code demonstrates good security practices including input validation, secret redaction, and audit logging. Minor issues around broad exception handling and token verification error messages do not significantly impact the overall security posture. Supply chain analysis found 1 known vulnerability in dependencies (1 critical, 0 high severity). Package verification found 1 issue.
3 files analyzed · 8 issues found
Security scores are indicators to help you make informed decisions, not guarantees. Always review permissions before connecting any MCP server.
This plugin requests these system permissions. Most are normal for its category.
Set these up before or after installing:
Add this to your MCP configuration file:
{
"mcpServers": {
"io-github-thalovant-thalovant-mcp": {
"env": {
"MCP_HTTP_HOST": "your-mcp-http-host-here",
"MCP_HTTP_PORT": "your-mcp-http-port-here",
"MCP_TRANSPORT": "your-mcp-transport-here",
"MCP_PUBLIC_URL": "your-mcp-public-url-here",
"THALOVANT_EMAIL": "your-thalovant-email-here",
"MCP_OAUTH_ISSUER": "your-mcp-oauth-issuer-here",
"THALOVANT_API_URL": "your-thalovant-api-url-here",
"THALOVANT_PROFILE": "your-thalovant-profile-here",
"MCP_HTTP_AUTH_MODE": "your-mcp-http-auth-mode-here",
"MCP_OAUTH_AUDIENCE": "your-mcp-oauth-audience-here",
"MCP_OAUTH_JWKS_URL": "your-mcp-oauth-jwks-url-here",
"THALOVANT_PASSWORD": "your-thalovant-password-here",
"MCP_HTTP_AUTH_TOKEN": "your-mcp-http-auth-token-here",
"MCP_OAUTH_CLIENT_ID": "your-mcp-oauth-client-id-here",
"MCP_HTTP_AUTH_TOKENS": "your-mcp-http-auth-tokens-here",
"MCP_HTTP_ALLOWED_HOSTS": "your-mcp-http-allowed-hosts-here",
"THALOVANT_ACCESS_TOKEN": "your-thalovant-access-token-here",
"MCP_OAUTH_CLIENT_SECRET": "your-mcp-oauth-client-secret-here",
"MCP_HTTP_ALLOWED_ORIGINS": "your-mcp-http-allowed-origins-here",
"MCP_OAUTH_REQUIRED_SCOPES": "your-mcp-oauth-required-scopes-here",
"MCP_OAUTH_INTROSPECTION_URL": "your-mcp-oauth-introspection-url-here",
"MCP_OAUTH_AUTHORIZATION_SERVERS": "your-mcp-oauth-authorization-servers-here",
"THALOVANT_ALLOW_SHARED_CREDENTIALS": "your-thalovant-allow-shared-credentials-here",
"THALOVANT_PRINCIPAL_CREDENTIALS_DIR": "your-thalovant-principal-credentials-dir-here",
"THALOVANT_PRINCIPAL_CREDENTIALS_FILE": "your-thalovant-principal-credentials-file-here"
},
"args": [
"-y",
"@thalovant/mcp-server"
],
"command": "npx"
}
}
}From the project's GitHub README.
Public-ready MCP server for Thalovant control-plane and hub runtime APIs.
It uses the official Thalovant Node.js SDK and the production MCP TypeScript SDK over stdio and Streamable HTTP, so it works with local MCP hosts such as Claude Desktop, Codex, Cursor, and remote MCP clients.
/mcp for remote agents./.well-known/oauth-protected-resource.server.json.Thalovant publishes SDKs for Python, Node.js, Go, and Rust. This server uses Node.js because @thalovant/sdk directly exposes the Thalovant control plane, identity loading, WSS/HTTPS/MQTT runtime clients, memory, analytics, and context helpers, while @modelcontextprotocol/sdk is the best-supported path for cross-agent stdio and Streamable HTTP servers.
npm install
npm run build
Node.js 20 or newer is required.
Public hub discovery does not need Thalovant credentials. Private control-plane tools and runtime hub tools read credentials only from the MCP server environment or server-side principal credential files. Do not pass API tokens or passwords through chat or tool arguments.
export THALOVANT_ACCESS_TOKEN="..."
# or
export THALOVANT_EMAIL="you@example.com"
export THALOVANT_PASSWORD="..."
export THALOVANT_PROFILE="prod"
export THALOVANT_API_URL="https://api.thalovant.com"
npm start
The server speaks MCP over stdio and does not write logs to stdout.
Runtime hub tools load local identities in this order:
identityFile tool argument.configPath or profile tool argument.Keep Thalovant identity files secret. The SDK expects protected config files such as ~/.config/thalovant/config.yaml with mode 0600.
Remote mode uses MCP Streamable HTTP at /mcp and requires bearer authentication by default.
export MCP_TRANSPORT="http"
export MCP_HTTP_HOST="127.0.0.1"
export MCP_HTTP_PORT="3000"
export MCP_HTTP_AUTH_TOKEN="$(openssl rand -hex 32)"
export MCP_HTTP_ALLOWED_HOSTS="127.0.0.1:3000,localhost:3000"
npm run start:http
Clients connect to:
http://127.0.0.1:3000/mcp
Authorization: Bearer <token>
Health checks are available at /healthz and /readyz.
For public deployments, set the public URL and exact host/origin allowlists:
export MCP_HTTP_HOST="0.0.0.0"
export MCP_HTTP_PORT="3000"
export MCP_PUBLIC_URL="https://mcp.example.com"
export MCP_HTTP_ALLOWED_HOSTS="mcp.example.com"
export MCP_HTTP_ALLOWED_ORIGINS="https://agent.example.com"
Use static bearer tokens only for local, private, or single-tenant deployments:
export MCP_HTTP_AUTH_TOKEN="$(openssl rand -hex 32)"
# or
export MCP_HTTP_AUTH_TOKENS="token-a,token-b"
Use JWT/JWKS for production resource-server validation:
export MCP_HTTP_AUTH_MODE="jwt"
export MCP_OAUTH_ISSUER="https://auth.example.com/"
export MCP_OAUTH_JWKS_URL="https://auth.example.com/.well-known/jwks.json"
export MCP_OAUTH_AUDIENCE="https://mcp.example.com/mcp"
export MCP_OAUTH_AUTHORIZATION_SERVERS="https://auth.example.com/"
export MCP_OAUTH_REQUIRED_SCOPES="mcp:thalovant"
Use introspection when your authorization server issues opaque tokens:
export MCP_HTTP_AUTH_MODE="introspection"
export MCP_OAUTH_INTROSPECTION_URL="https://auth.example.com/oauth2/introspect"
export MCP_OAUTH_CLIENT_ID="mcp-server-client"
export MCP_OAUTH_CLIENT_SECRET="..."
export MCP_OAUTH_AUDIENCE="https://mcp.example.com/mcp"
export MCP_OAUTH_AUTHORIZATION_SERVERS="https://auth.example.com/"
export MCP_OAUTH_REQUIRED_SCOPES="mcp:thalovant"
The server publishes protected resource metadata at:
https://mcp.example.com/.well-known/oauth-protected-resource
401 responses include WWW-Authenticate with a resource_metadata pointer for MCP clients that support OAuth discovery.
For multi-user remote deployments, do not share one Thalovant access token across all MCP users. Map each authenticated MCP principal to its own Thalovant control-plane token, runtime identity, and tool policy.
Single file:
export THALOVANT_PRINCIPAL_CREDENTIALS_FILE="/run/secrets/thalovant-principals.json"
Directory mode:
export THALOVANT_PRINCIPAL_CREDENTIALS_DIR="/run/secrets/thalovant-principals"
Directory files are named <sha256(principal-id)>.json. The server checks the OAuth subject, principal id, and client id. See examples/principal-credentials.sample.json.
Keep this disabled for multi-user deployments unless you intentionally want every remote principal to use the server environment's Thalovant credentials:
export THALOVANT_ALLOW_SHARED_CREDENTIALS="false"
Runtime identityFile, configPath, profile, and fromEnv tool arguments are disabled for remote principals by default. Set MCP_HTTP_ALLOW_CLIENT_CREDENTIAL_PATHS=true only for trusted private deployments.
Global tool policy:
export MCP_TOOL_ALLOWLIST="thalovant_*"
export MCP_TOOL_DENYLIST="thalovant_delete_memory_item"
Per-principal credential files may also include allowedTools and deniedTools.
Audit logs:
export MCP_AUDIT_LOG="stderr" # off, stderr, file, or both
export MCP_AUDIT_LOG_FILE="/var/log/thalovant-mcp/audit.jsonl"
export MCP_AUDIT_INCLUDE_ARGS="false"
Audit entries are JSONL and credential-shaped fields are redacted.
Streamable HTTP resumability defaults to an in-memory event store. Use a file-backed store for single-instance restarts:
export MCP_EVENT_STORE_FILE="/var/lib/thalovant-mcp/events.jsonl"
MCP_HTTP_ALLOW_UNAUTHENTICATED=true is explicitly set.Origin headers are rejected unless they exactly match MCP_HTTP_ALLOWED_ORIGINS.MCP_HTTP_MAX_BODY_BYTES, defaulting to 1 MiB.nosniff, DENY framing, no referrer, and a restrictive CSP.Useful HTTP environment variables:
MCP_HTTP_PATH=/mcp
MCP_HTTP_RATE_LIMIT_MAX=120
MCP_HTTP_RATE_LIMIT_WINDOW_MS=60000
MCP_HTTP_SESSION_TTL_MS=3600000
MCP_HTTP_MAX_BODY_BYTES=1048576
MCP_HTTP_ENABLE_JSON_RESPONSE=false
MCP_HTTP_TRUST_PROXY=false
{
"mcpServers": {
"thalovant": {
"command": "node",
"args": ["/home/goldyfruit/Development/Thalovant/mcp/dist/index.js"],
"env": {
"THALOVANT_PROFILE": "prod"
}
}
}
}
Use the same stdio command in your MCP client config:
{
"mcpServers": {
"thalovant": {
"command": "node",
"args": ["/home/goldyfruit/Development/Thalovant/mcp/dist/index.js"],
"env": {
"THALOVANT_PROFILE": "prod"
}
}
}
}
Read-only:
thalovant_config_statusthalovant_list_public_hubsthalovant_get_public_hubthalovant_list_hubsthalovant_get_hubthalovant_identity_statusthalovant_healthcheckthalovant_wait_for_eventthalovant_get_analytics_overviewthalovant_list_memory_itemsthalovant_get_memory_summarythalovant_get_memory_itemWrites or hub events:
thalovant_create_client_identitythalovant_askthalovant_send_actionthalovant_send_codethalovant_emit_eventthalovant_create_memory_itemthalovant_update_memory_itemthalovant_delete_memory_itemTool outputs redact credential-shaped fields. thalovant_create_client_identity does not return secret identity material; pass savePath when you want the full identity written to a local file with mode 0600.
npm run typecheck
npm test
npm run build
npm run test:smoke
npm run test:http
npm run bench
npm run bench:http
npm pack --dry-run
MIT. This is the right default for a public integration server: it is permissive, compatible with the MIT Thalovant Node SDK and MCP TypeScript SDK, and does not force downstream agent or enterprise users into a reciprocal licensing model.
Be the first to review this server!
by Modelcontextprotocol · Developer Tools
Web content fetching and conversion for efficient LLM usage
by Modelcontextprotocol · Developer Tools
Read, search, and manipulate Git repositories programmatically
by Toleno · Developer Tools
Toleno Network MCP Server — Manage your Toleno mining account with Claude AI using natural language.