npm package discovery and stats viewer.

Discover Tips

  • General search

    [free text search, go nuts!]

  • Package details

    pkg:[package-name]

  • User packages

    @[username]

Sponsor

Optimize Toolset

I’ve always been into building performant and accessible sites, but lately I’ve been taking it extremely seriously. So much so that I’ve been building a tool to help me optimize and monitor the sites that I build to make sure that I’m making an attempt to offer the best experience to those who visit them. If you’re into performant, accessible and SEO friendly sites, you might like it too! You can check it out at Optimize Toolset.

About

Hi, 👋, I’m Ryan Hefner  and I built this site for me, and you! The goal of this site was to provide an easy way for me to check the stats on my npm packages, both for prioritizing issues and updates, and to give me a little kick in the pants to keep up on stuff.

As I was building it, I realized that I was actually using the tool to build the tool, and figured I might as well put this out there and hopefully others will find it to be a fast and useful way to search and browse npm packages as I have.

If you’re interested in other things I’m working on, follow me on Twitter or check out the open source projects I’ve been publishing on GitHub.

I am also working on a Twitter bot for this site to tweet the most popular, newest, random packages from npm. Please follow that account now and it will start sending out packages soon–ish.

Open Software & Tools

This site wouldn’t be possible without the immense generosity and tireless efforts from the people who make contributions to the world and share their work via open source initiatives. Thank you 🙏

© 2026 – Pkg Stats / Ryan Hefner

@torknetwork/mcp-server

v1.5.1

Published

TORK MCP Server - 48 governance tools for AI agents including Memory Integrity, Supply Chain, Cost Controls, and MCP Auditing

Vulnerabilities

Powered byPowered by Snyk
  • 0High
  • 0Medium
  • 0Low

Links

Git

Maintainers

tork.networktork.network

Keywords

mcpai-governancetorkpiihitltool-governancemodel-context-protocolsmithery

Readme

@torknetwork/mcp-server

Official MCP (Model Context Protocol) server for Tork AI Governance Platform.

Part of the TORK Network - AI governance infrastructure for the agentic era.

Installation

Local (stdio — zero latency)

npm install @torknetwork/mcp-server

Remote via Smithery (one-click, browser-compatible)

Install on Smithery

{
  "mcpServers": {
    "tork-governance": {
      "type": "http",
      "url": "https://server.smithery.ai/@torknetwork/tork-governance"
    }
  }
}

Both methods connect to the same Tork governance API. Local gives you zero-latency stdio. Remote gives you one-click setup and works in browser-based MCP clients.

Available Tools (48 tools)

Core Governance (5 tools)

| Tool | Description | |------|-------------| | tork_scan_pii | Scan text for PII across 50+ types and 13 countries with regional profiles (v1.1) | | tork_governed_passthrough | Execute tool calls with full governance checks | | tork_check_policy | Check content against governance policies | | tork_audit_stats | Get audit statistics for governance events | | tork_audit_logs | Query audit logs with filtering |

Tool Governance (3 tools)

| Tool | Description | |------|-------------| | tork_register_tool | Register a tool with governance policy | | tork_validate_tool_call | Validate a tool call before execution | | tork_tool_call_stats | Get statistics on tool calls |

HITL - Human-in-the-Loop (10 tools)

| Tool | Description | |------|-------------| | tork_request_approval | Request human approval for an action | | tork_approve_action | Approve a pending action | | tork_reject_action | Reject a pending action | | tork_check_approval | Check approval status | | tork_velocity_alert | Check for slicing attack patterns | | tork_hitl_check_velocity | Check approver velocity metrics | | tork_hitl_create_cooldown | Create a cooldown period | | tork_hitl_check_cooldown | Check if in cooldown | | tork_hitl_detect_slicing | Detect slicing attacks | | tork_hitl_get_config | Get HITL configuration |

Memory Integrity (4 tools) - NEW in v1.3.0

| Tool | Description | |------|-------------| | tork_memory_snapshot | Create memory fingerprint for integrity verification | | tork_memory_verify | Verify memory against a snapshot | | tork_memory_trust_score | Get/calculate trust score for memory | | tork_memory_track_modification | Record memory changes for audit |

Supply Chain Visibility (5 tools) - NEW in v1.3.0

| Tool | Description | |------|-------------| | tork_supply_chain_register | Register a dependency | | tork_supply_chain_deps | Get agent dependencies | | tork_supply_chain_verify | Verify a dependency | | tork_supply_chain_vulns | Check for vulnerabilities | | tork_supply_chain_health | Get supply chain health score |

Cost Controls (5 tools) - NEW in v1.3.0

| Tool | Description | |------|-------------| | tork_cost_record | Record a cost transaction | | tork_cost_check | Check if spend is allowed within budget | | tork_cost_summary | Get spend summary by period | | tork_cost_alerts | Get cost alerts and warnings | | tork_cost_budget_status | Check budget utilization status |

MCP Auditing (4 tools) - NEW in v1.3.0

| Tool | Description | |------|-------------| | tork_mcp_log_call | Log a tool invocation for audit | | tork_mcp_get_stats | Get tool usage statistics | | tork_mcp_get_alerts | Get MCP alerts and anomalies | | tork_mcp_analyze | Run anomaly detection on tool usage |

Cloud API Tools (12 tools)

These tools connect to the live Tork Cloud API for centralized governance management. Requires TORK_API_KEY environment variable.

| Tool | Description | |------|-------------| | tork_dashboard | Get dashboard statistics | | tork_list_tools | List all registered tools | | tork_list_policies | List all governance policies | | tork_get_policy | Get a specific policy by name | | tork_list_approvals | List pending HITL approval requests | | tork_approve | Approve a pending HITL request | | tork_deny | Deny a pending HITL request | | tork_cloud_audit_logs | Query audit logs with filtering | | tork_create_webhook | Create a webhook for notifications | | tork_list_webhooks | List all configured webhooks | | tork_delete_webhook | Delete a webhook by ID | | tork_governance_check | Real-time policy validation |

Configuration

Set environment variable:

export TORK_API_KEY=your_api_key

Getting an API Key

  1. Sign up at tork.network/signup
  2. Create an account with your email and password
  3. Your API key will be displayed after signup (save it securely!)
  4. Set the environment variable: export TORK_API_KEY=tork_live_xxxxx

Usage with Claude Desktop

Add to your Claude Desktop configuration (~/Library/Application Support/Claude/claude_desktop_config.json):

Basic (local mode only):

{
  "mcpServers": {
    "tork": {
      "command": "npx",
      "args": ["@torknetwork/mcp-server"]
    }
  }
}

With Cloud API (recommended):

{
  "mcpServers": {
    "tork": {
      "command": "npx",
      "args": ["@torknetwork/mcp-server"],
      "env": {
        "TORK_API_KEY": "tork_live_your_api_key_here"
      }
    }
  }
}

Example Prompts

Once configured, try these prompts with Claude:

Dashboard & Overview:

  • "Show me the Tork governance dashboard"
  • "List all registered tools in my Tork account"
  • "What governance policies do I have configured?"

Memory Integrity (NEW):

  • "Create a memory snapshot for agent-prod-1"
  • "Verify memory integrity for agent-prod-1"
  • "What's the trust score for agent-prod-1's memory?"

Supply Chain (NEW):

  • "List dependencies for agent-prod-1"
  • "Check for vulnerabilities in my supply chain"
  • "Get supply chain health score"

Cost Controls (NEW):

  • "Record a $50 transaction for agent-prod-1"
  • "Check if agent-prod-1 can spend $100"
  • "Show cost summary for this month"

MCP Auditing (NEW):

  • "Log this tool call for audit"
  • "Show tool usage statistics"
  • "Analyze for anomalies in tool usage"

Approvals & HITL:

  • "Show me pending approval requests"
  • "Approve request tork_abc123 as reviewer [email protected]"
  • "Deny request tork_xyz789 because it targets production"

PII Scanning:

  • "Scan this text for PII: Contact [email protected] at 555-1234"
  • "Check if this message contains sensitive data"

Regional PII Detection (v1.1):

  • "Scan for UAE PII: Emirates ID 784-1234-1234567-1" (use region: ["ae"])
  • "Scan for Indian PII with healthcare patterns" (use region: ["in"], industry: "healthcare")
  • Available regions: AU, US, GB, EU, AE, SA, NG, IN, JP, CN, KR, BR
  • Available industries: healthcare, finance, legal

Security Features

  • PII Detection: Automatically scans for and redacts 50+ types of sensitive data
  • Blocked Flags: Prevents dangerous flags like --force, --no-confirm, --delete-all
  • Rate Limiting: Configurable per-tool rate limits
  • Agent Authorization: Control which agents can call which tools
  • Target Restrictions: Prevent production access from unauthorized contexts
  • HITL Enforcement: Require human approval for sensitive operations
  • Fatigue Detection: Lock reviewers who approve too many requests too quickly
  • Slicing Attack Detection: Detect patterns of many small requests aggregating to significant impact
  • Memory Integrity: Detect unauthorized memory modifications
  • Supply Chain Verification: Track and verify all dependencies
  • Cost Controls: Enforce budgets and prevent overspending

Links

  • Website: https://tork.network
  • Documentation: https://docs.tork.network
  • GitHub: https://github.com/torkjacobs/tork-governance
  • Issues: https://github.com/torkjacobs/tork-governance/issues

License

MIT - see LICENSE