@receiz/mcp-server
v107.0.0
Published
MCP server for agents building and verifying Receiz proof-native applications through the canonical Receiz SDK rails.
Maintainers
Readme
@receiz/mcp-server
Production MCP server for agents building and verifying Receiz apps through the canonical @receiz/sdk rails.
v107 operation parity
Version 107.0.0 adds twelve registry-bound tools: identity/profile read, advisory username check, profile plan/execute, proof-media plan/execute, generic bearer-ownership plan/execute, continuity plan/execute, proof-head read, and canonical-receipt verification. Mutation tools inspect current proof state, emit a digest-bound plan, require exact confirmation, execute the matching SDK operation, and report success only after receipt verification.
Local artifact restore/account-state append and signed offline queue execution remain SDK-local because they operate on developer-held bytes and keys. Their global synchronization continues through continuity and canonical admission tools. MCP output is never proof authority.
This package is an agent interface. It is not a new proof authority. Every tool response includes the Receiz authority boundary:
- Source of truth: Receiz SDK, Receiz public proof rails, sealed proof objects, verified local truth, and server append rails.
- MCP authority:
false - MCP role: expose agent-callable tools beneath Receiz proof/object truth.
v107 Application Contract Compiler
The MCP server exposes the shared @receiz/sdk application compiler through
receiz_project_inspect, receiz_app_contract_create, receiz_app_plan,
receiz_app_apply, receiz_app_check, receiz_app_upgrade, and
receiz_app_explain.
Inspection, contract proposals, planning, checking, upgrade planning, and
explanation are read-only. receiz_app_apply first returns every affected file
and a deterministic digest. It writes only after the caller supplies that exact
digest as explicit confirmation. All paths remain inside the explicitly supplied
repository root, and repeating an applied plan produces no changes.
Every result states that MCP is not proof authority. Repository inspection does
not verify an artifact. Verification remains the SDK's continuity-bound
verification.verifyArtifact, and proof-object creation remains authenticated
native Record before Seal.
Schema resources are available at receiz://schemas/app-contract-v1,
receiz://schemas/integration-plan-v1, receiz://schemas/upgrade-rules-v1, and
receiz://schemas/generated-files-v1.
Install
npm install @receiz/mcp-server @receiz/sdkThe matching @receiz/ai-skills package is installed with both packages. Agent hosts can load all thirty-one authoritative skill directories from node_modules/@receiz/ai-skills; MCP resources and the skills teach the same continuity-bound verification law.
Run the server:
npx -y @receiz/mcp-serverFor local development in this repo:
pnpm mcp:test
pnpm mcp:buildEnvironment
Public reads work without a bearer token when the underlying Receiz rail is public.
Delegated writes require a Receiz-issued Connect/OIDC access token. Create one from
/developers/connect with Create Delegated Agent Token. The dashboard shows the bearer token once,
returns a revocation token ID, and labels actions with an agent:* audit label.
RECEIZ_BASE_URL=https://receiz.com
RECEIZ_ACCESS_TOKEN=<delegated-agent-access-token>
receiz-mcpUse RECEIZ_CONNECT_ACCESS_TOKEN as an alias if that is how your app stores delegated Connect access.
Run receiz_mcp_login from an MCP host to get the dashboard URL, recommended scopes, exact config snippet, and an OIDC authorize URL when you pass clientId, redirectUri, and codeChallenge.
MCP Host Config
Claude Desktop / Cursor-style config:
{
"mcpServers": {
"receiz": {
"command": "npx",
"args": ["-y", "@receiz/mcp-server"],
"env": {
"RECEIZ_BASE_URL": "https://receiz.com",
"RECEIZ_ACCESS_TOKEN": "<optional delegated token>"
}
}
}
}Tools
Core diagnostics:
receiz_doctorreceiz_capabilitiesreceiz_required_scopesreceiz_runtime_blueprint
Identity and tenant sessions:
receiz_authorize_urlreceiz_mcp_loginreceiz_ensure_tenant_session
Durable public app state:
receiz_app_state_publishreceiz_app_state_resolvereceiz_app_state_by_urlreceiz_app_state_by_creatorreceiz_app_state_by_namespacereceiz_app_state_by_id
Commerce/store projections:
receiz_public_store_publishreceiz_public_store_resolve
receiz_public_store_publish is the delegated agent/server write lane. For merchant-owned storefront state, use the SDK signed publish lane:
await receiz.publicStore.publishWithIdentityProof({
keyFile,
tenantHost,
merchantReceizId,
storeStateRecord,
});That path uses the merchant Identity Seal / Receiz Key as authority and does not require RECEIZ_ACCESS_TOKEN.
Proof resolution and inspection (not verification):
receiz_inspect_offline_file(shape inspection only; alwaysverified: false)receiz_asset_by_urlreceiz_asset_by_idreceiz_inspect_proof_objectreceiz_proof_query
Receiz public rails:
receiz_wallet_public_ledgerreceiz_action_ledgerreceiz_sports_conformancereceiz_world_public_snapshotreceiz_pitch_proof_by_witness_idreceiz_card_history
Previews and templates:
receiz_transfer_previewreceiz_transfer_requires_confirmationreceiz_pack_open_previewreceiz_marketplace_template_generate
Webhooks:
receiz_webhook_events_catalogreceiz_webhook_register_endpointreceiz_webhook_rotate_secretreceiz_webhook_send_test_eventreceiz_webhook_receiver_scaffoldreceiz_webhook_verify_payload
Use receiz_webhook_events_catalog first, then receiz_webhook_register_endpoint with the payment preset or explicit event types. Register and rotate return the plaintext endpoint secret once. receiz_webhook_receiver_scaffold returns a receiver that verifies delivery before parsing and reminds the agent to verify the underlying proof object, ownership append, or settlement ledger event before admitting product truth.
Sandbox:
receiz_sandbox_seed_storereceiz_sandbox_checkout
Semantic v107 operations:
receiz_app_repairpreviews repository-confined repairs and requires the exact digest before writing.receiz_proof_traceinvokes canonical artifact verification for byte-bearing inputs; inspection-only input receives no verified verdict.receiz_webhook_replayverifies the captured delivery, previews its digest, and requires exact confirmation for idempotent replay admission.receiz_scope_explainreads the canonical SDK capability descriptor.receiz_release_qualifyreturns read-only repository andreceiz.sdk.conformance_report.v1evidence.
Resource Templates
Agent hosts can expose these Receiz resource templates:
receiz://asset/{id}receiz://proof/{id}receiz://pitch/{witnessId}receiz://store/{tenantHost}receiz://sdk/docsreceiz://schemas/proof-object-v1
Full Receiz App Loop
An agent can build a full Receiz app with this sequence:
- Run
receiz_doctorandreceiz_capabilities. - Use
receiz_required_scopesfor the app rails it needs. - Use
receiz_mcp_login,receiz_authorize_url, orreceiz_ensure_tenant_sessionfor Connect/OIDC setup. - Use
receiz_public_store_resolveorreceiz_app_state_resolvefor cold-start first paint. - Render known verified projection truth immediately.
- Publish verified additions with
receiz_public_store_publishorreceiz_app_state_publish. - Use
receiz_asset_by_url,receiz_asset_by_id, andreceiz_inspect_proof_objectto resolve and inspect proof surfaces. Use@receiz/sdkverification.verifyArtifact(file)for the indivisible integrity-and-continuity verdict. - Use
receiz_webhook_events_catalog,receiz_webhook_register_endpoint, andreceiz_webhook_receiver_scaffoldfor event delivery. - Use ledger/world/sports/proof-query tools for dashboards and advanced experiences.
Authority Boundary
Receiz truth hierarchy is preserved:
- Sealed artifact truth
- Deterministic proof object state
- Verified local truth
- Verified register append
- Authenticated SDK/API projection
- MCP tool result
MCP may inspect, resolve, publish through delegated SDK calls, and report. MCP must never replace, rename, or outrank a Receiz proof object, identity primitive, settlement primitive, ownership surface, or public proof surface.
