npm package discovery and stats viewer.

Discover Tips

  • General search

    [free text search, go nuts!]

  • Package details

    pkg:[package-name]

  • User packages

    @[username]

Sponsor

Optimize Toolset

I’ve always been into building performant and accessible sites, but lately I’ve been taking it extremely seriously. So much so that I’ve been building a tool to help me optimize and monitor the sites that I build to make sure that I’m making an attempt to offer the best experience to those who visit them. If you’re into performant, accessible and SEO friendly sites, you might like it too! You can check it out at Optimize Toolset.

About

Hi, 👋, I’m Ryan Hefner  and I built this site for me, and you! The goal of this site was to provide an easy way for me to check the stats on my npm packages, both for prioritizing issues and updates, and to give me a little kick in the pants to keep up on stuff.

As I was building it, I realized that I was actually using the tool to build the tool, and figured I might as well put this out there and hopefully others will find it to be a fast and useful way to search and browse npm packages as I have.

If you’re interested in other things I’m working on, follow me on Twitter or check out the open source projects I’ve been publishing on GitHub.

I am also working on a Twitter bot for this site to tweet the most popular, newest, random packages from npm. Please follow that account now and it will start sending out packages soon–ish.

Open Software & Tools

This site wouldn’t be possible without the immense generosity and tireless efforts from the people who make contributions to the world and share their work via open source initiatives. Thank you 🙏

© 2026 – Pkg Stats / Ryan Hefner

@yoseph-ai/hedera-verify-mcp

v1.0.4

Published

MCP server to verify and timestamp document hashes on Hedera mainnet

Vulnerabilities

Powered byPowered by Snyk
  • 0High
  • 0Medium
  • 0Low

Links

Git

Maintainers

yoseph-aiyoseph-ai

Keywords

mcpmodel-context-protocolhederahashgraphhcshedera-consensus-servicedocument-verificationdocument-authenticationtimestampblockchainclaudeai-agentverification

Readme

Hedera Verify MCP Server

npm version License: MIT MCP Compatible

A Model Context Protocol (MCP) server that lets AI agents verify and timestamp document hashes on Hedera mainnet using the Hedera Consensus Service (HCS). Works with Claude Desktop, Cursor, Windsurf, and any MCP-compatible client.

Once a document hash is anchored, anyone can independently verify it via the public Hedera Mirror Node — no central authority required.

Tools

verify_document_hash

Checks whether a SHA-256 document hash has been anchored on Hedera. Returns the original timestamp, sequence number, and certificate ID if found.

Input:

| Parameter | Type | Required | Description | |-----------|--------|----------|------------------------------------------| | hash | string | ✅ | SHA-256 hash of the document (64 hex chars) |

Example prompt:

"Verify the document hash a1b2c3d4e5f6..."

Response — found:

{
  "exists": true,
  "timestamp": "2025-06-01T10:23:45.000000000Z",
  "sequenceNumber": 42,
  "certificateId": "0.0.12345@42",
  "network": "mainnet",
  "mirrorNodeUrl": "https://mainnet.mirrornode.hedera.com"
}

Response — not found:

{
  "exists": false,
  "timestamp": null,
  "sequenceNumber": null
}

timestamp_document_hash

Submits a new SHA-256 document hash to Hedera HCS, creating an immutable timestamp anchor. Returns a signed certificate JWT and full consensus details.

Input:

| Parameter | Type | Required | Description | |-----------|--------|----------|------------------------------------------| | hash | string | ✅ | SHA-256 hash of the document (64 hex chars) |

Example prompt:

"Timestamp the document hash a1b2c3d4e5f6..."

Response — success:

{
  "success": true,
  "sequenceNumber": 43,
  "consensusTimestamp": "1717235025.000180000",
  "certificateId": "0.0.12345@43",
  "receipt": "<signed-jwt-certificate>"
}

Response — duplicate (already anchored):

{
  "error": "Document already timestamped at 2025-06-01T10:23:45.000000000Z (sequence #42).",
  "originalTimestamp": "1717235025.000180000",
  "originalSequence": 42
}

Prerequisites

  • Node.js 18+
  • An API key for the TrustAnchor backend

No Hedera account needed — the backend handles all on-chain transactions.

Installation

Recommended: use via npx (no install needed)

The Claude Desktop and Cursor configs below use npx to pull and run the latest published version automatically. Nothing to install manually.

Install globally

npm install -g @yoseph-ai/hedera-verify-mcp

Clone and run locally

git clone https://github.com/Yoseph-ai/hedera-verify-mcp.git
cd hedera-verify-mcp
npm install
cp .env.example .env
# Edit .env with your credentials
npm run dev

Environment Variables

| Variable | Required | Description | |-----------------------|----------|------------------------------------------------------------------| | TRUSTANCHOR_API_URL | ✅ | Backend API URL (default: https://hedera-document-auth.vercel.app) | | TRUSTANCHOR_API_KEY | ✅ | Your API key for the TrustAnchor backend |

Claude Desktop Setup

Find your config file:

| Platform | Path | |-------------|----------------------------------------------------------------------| | Windows | %APPDATA%\Claude\claude_desktop_config.json | | macOS | ~/Library/Application Support/Claude/claude_desktop_config.json | | Linux | ~/.config/claude/claude_desktop_config.json |

macOS / Linux

Add the following block to your config:

{
  "mcpServers": {
    "hedera-verify": {
      "command": "npx",
      "args": ["-y", "@yoseph-ai/hedera-verify-mcp"],
      "env": {
        "TRUSTANCHOR_API_URL": "https://hedera-document-auth.vercel.app",
        "TRUSTANCHOR_API_KEY": "your-api-key-here"
      }
    }
  }
}

Windows

Due to a Windows npm limitation, first install the package globally:

npm install -g @yoseph-ai/hedera-verify-mcp

Then add the following to your config, replacing <username> with your Windows username:

{
  "mcpServers": {
    "hedera-verify": {
      "command": "node",
      "args": [
        "C:\\Users\\<username>\\AppData\\Roaming\\npm\\node_modules\\@yoseph-ai\\hedera-verify-mcp\\dist\\main.js"
      ],
      "env": {
        "TRUSTANCHOR_API_URL": "https://hedera-document-auth.vercel.app",
        "TRUSTANCHOR_API_KEY": "your-api-key-here"
      }
    }
  }
}

Restart Claude Desktop after saving. The verify_document_hash and timestamp_document_hash tools will appear automatically.

Cursor Setup

Add to your Cursor MCP config (%APPDATA%\Cursor\User\globalStorage\mcp.json on Windows, or the equivalent on macOS/Linux):

{
  "mcpServers": {
    "hedera-verify": {
      "command": "npx",
      "args": ["-y", "@yoseph-ai/hedera-verify-mcp"],
      "env": {
        "TRUSTANCHOR_API_URL": "https://hedera-document-auth.vercel.app",
        "TRUSTANCHOR_API_KEY": "your-api-key-here"
      }
    }
  }
}

Windsurf / Other MCP Clients

Any MCP-compatible client that supports stdio transport can use this server with the same config pattern above. Point command at npx and pass ["-y", "@yoseph-ai/hedera-verify-mcp"] as args.

Testing with MCP Inspector

npx @modelcontextprotocol/inspector npx @yoseph-ai/hedera-verify-mcp

Set TRUSTANCHOR_API_URL and TRUSTANCHOR_API_KEY in the Inspector UI, then call verify_document_hash or timestamp_document_hash directly from the browser.

How It Works

Your Document
     │
     ▼
SHA-256 Hash ──▶ MCP Server ──▶ TrustAnchor API ──▶ Hedera HCS (mainnet)
                                                            │
                                           Consensus Timestamp + Sequence Number
                                                            │
                                           ◀── Signed Certificate (JWT)
  1. You provide a SHA-256 hash of your document
  2. The MCP server forwards it to the TrustAnchor API with your API key
  3. The API submits the hash to a Hedera HCS topic
  4. Hedera consensus nodes reach agreement on an immutable timestamp
  5. A signed JWT certificate is returned — independently verifiable via the Mirror Node

Independent Verification

Hashes anchored on Hedera can be verified directly via the public Mirror Node with no dependency on this server:

https://mainnet.mirrornode.hedera.com/api/v1/topics/{topicId}/messages

Browse the live topic on HashScan: View on HashScan

Deploy Your Own Backend

The backend source is available at hedera-document-auth. Deploy your own instance to Vercel and point the MCP server at it.

Required environment variables for your Vercel deployment:

HEDERA_ACCOUNT_ID
HEDERA_PRIVATE_KEY
HEDERA_NETWORK
HEDERA_TOPIC_ID
AGENT_API_KEY
JWT_SECRET

Then update your MCP server config:

"TRUSTANCHOR_API_URL": "https://your-deployment.vercel.app"

License

MIT © Yoseph-ai

Links