Back to Browse
Free
Server data from the Official MCP Registry
Blockchain-anchored e-signatures: send envelopes, manage templates, verify anchors on Solana.
About
Blockchain-anchored e-signatures: send envelopes, manage templates, verify anchors on Solana.
Security Report
5.2
Moderate5.2Moderate RiskThis is a well-structured MCP server for document signing with proper authentication, appropriate scope validation, and no malicious patterns. The code demonstrates good security practices including vendored dependencies (zero external runtime deps), input validation, and error sanitization. Minor quality issues around error handling breadth and logging do not significantly impact security posture. Permissions align well with the server's document signing and API integration purpose. Supply chain analysis found 1 known vulnerability in dependencies (1 critical, 0 high severity). Package verification found 1 issue.
5 files analyzed · 6 issues found
Security scores are indicators to help you make informed decisions, not guarantees. Always review permissions before connecting any MCP server.
Permissions Required
This plugin requests these system permissions. Most are normal for its category.
What You'll Need
Set these up before or after installing:
SignaTrust API key (starts with sk_live_). Create one at Settings -> API keys.Required
Environment variable: SIGNATRUST_API_KEY
Override the API base URL. Defaults to https://app.signatrust.io; set for self-hosted or local development.
Environment variable: SIGNATRUST_API_URL
How to Install
Add this to your MCP configuration file:
{
"mcpServers": {
"io-signatrust-mcp-server": {
"env": {
"SIGNATRUST_API_KEY": "your-signatrust-api-key-here",
"SIGNATRUST_API_URL": "your-signatrust-api-url-here"
},
"args": [
"-y",
"@signatrust/mcp-server"
],
"command": "npx"
}
}
}Documentation
View on GitHubFrom the project's GitHub README.
@signatrust/mcp-server
Model Context Protocol (MCP) server for the SignaTrust document signing API. Enables AI assistants like Claude to create envelopes, manage templates, check signing status, and verify blockchain anchors via natural language.
Quick Start
Claude Code
claude mcp add signatrust -- npx -y @signatrust/mcp-server
Then set your API key in the MCP server environment.
Claude Desktop
Add to your claude_desktop_config.json:
{
"mcpServers": {
"signatrust": {
"command": "npx",
"args": ["-y", "@signatrust/mcp-server"],
"env": {
"SIGNATRUST_API_KEY": "sk_live_your_key_here"
}
}
}
}
Cursor
Add to ~/.cursor/mcp.json (global) or .cursor/mcp.json (per-project):
{
"mcpServers": {
"signatrust": {
"command": "npx",
"args": ["-y", "@signatrust/mcp-server"],
"env": {
"SIGNATRUST_API_KEY": "sk_live_your_key_here"
}
}
}
}
VS Code
Add to .vscode/mcp.json (note the top-level key is servers, not mcpServers):
{
"servers": {
"signatrust": {
"command": "npx",
"args": ["-y", "@signatrust/mcp-server"],
"env": {
"SIGNATRUST_API_KEY": "sk_live_your_key_here"
}
}
}
}
To keep the key out of the file, use an input prompt instead of env:
{
"inputs": [
{ "id": "signatrust-key", "type": "promptString", "description": "SignaTrust API key", "password": true }
],
"servers": {
"signatrust": {
"command": "npx",
"args": ["-y", "@signatrust/mcp-server"],
"env": { "SIGNATRUST_API_KEY": "${input:signatrust-key}" }
}
}
}
Available Tools
| Tool | Description | Required Scope |
|---|---|---|
list_envelopes | List envelopes with status filter and pagination | envelopes:read |
get_envelope | Get full envelope details (signers, docs, blockchain) | envelopes:read |
create_envelope | Create and send envelope for signing. Accepts documentIds (after upload_document) or templateId (backend copies the template). Supports three-tier securityLevel. | envelopes:write |
list_templates | List available document templates | templates:read |
upload_document | Read a local file and upload it to SignaTrust, returning a document ID for create_envelope | documents:write |
download_document | Get a time-limited pre-signed URL to download a document (e.g. the executed PDF) | documents:read |
analyze_document | Run AI contract analysis on an envelope (Gemini-powered risk/sentiment review, plan-gated) | ai:analyze |
verify_blockchain | Verify Solana anchor and return composite hash + file hash + explorer URL | envelopes:read |
get_evidence | Get the full court-ready evidence bundle (envelope, signers, audit trail, blockchain verification) | envelopes:read |
Three-tier security. create_envelope accepts securityLevel: STANDARD (bearer token only), VERIFIED (adds SMS/email OTP — recommended for employment, vendor, or healthcare consent), or CERTIFIED (adds WebAuthn biometric + device binding — recommended for real estate, high-value, or regulatory signings).
API Key Scopes
Create an API key at Settings > API Keys in your SignaTrust dashboard. Assign scopes based on what tools you need:
| Scope | Tools Enabled |
|---|---|
envelopes:read | list_envelopes, get_envelope, verify_blockchain, get_evidence |
envelopes:write | create_envelope |
templates:read | list_templates |
documents:write | upload_document |
documents:read | download_document |
ai:analyze | analyze_document |
Environment Variables
| Variable | Required | Default | Description |
|---|---|---|---|
SIGNATRUST_API_KEY | Yes | - | API key starting with sk_live_ |
SIGNATRUST_API_URL | No | https://app.signatrust.io | API base URL |
Natural Language Examples
Once connected, you can ask your AI assistant things like:
- "List all my pending envelopes"
- "Upload ~/Documents/nda.pdf and send it to alice@example.com with VERIFIED security"
- "Show me available templates, then create a lease agreement from the residential template for John Doe"
- "Check the blockchain verification for envelope env_abc123 and show me the composite hash"
- "Run AI analysis on envelope env_xyz — I want to know if there are any risky clauses before the signer reviews it"
Development
# Install dependencies
npm install
# Build
npm run build
# Run tests
npm test
# Run tests with coverage
npm run test:coverage
# Type check
npm run typecheck
# Local smoke test
SIGNATRUST_API_KEY=sk_live_xxx SIGNATRUST_API_URL=http://localhost:3000 node dist/server.js
Architecture
src/
server.ts # Entry point — env validation, MCP server setup, stdio transport
handlers.ts # Tool definitions and handler dispatch (testable)
errors.ts # RFC 7807 ProblemDetails -> MCP tool error mapping
vendor/signatrust-sdk/ # Vendored HTTP client + types (zero external runtime deps)
*.test.ts # Co-located test files
The HTTP client and API types are vendored under src/vendor/signatrust-sdk/ so
this package has no external runtime dependencies beyond @modelcontextprotocol/sdk.
Reviews
No reviews yet
Be the first to review this server!
More Developer Tools MCP Servers
Git
Freeby Modelcontextprotocol · Developer Tools
Read, search, and manipulate Git repositories programmatically
80.0K
Stars
6
Installs
6.5
Security
No ratings yet
Local
Fetch
Freeby Modelcontextprotocol · Developer Tools
Web content fetching and conversion for efficient LLM usage
80.0K
Stars
4
Installs
5.3
Security
No ratings yet
Local
Toleno
Freeby Toleno · Developer Tools
Toleno Network MCP Server — Manage your Toleno mining account with Claude AI using natural language.
137
Stars
525
Installs
8.0
Security
4.8
Local