MCP.so

Hejdar

Created By
ARKALDA2 months ago
Runtime policy enforcement for AI agents. Evaluate every agent action against your organization's policies before execution. Define policies once in the Hejdar dashboard, enforce everywhere via MCP. Supports observe mode (shadow/audit) and enforce mode (real-time blocking).
# AI
# cybersecurity
OverviewContentToolsComments
Overview

hejdar-mcp

MCP server for Hejdar — runtime policy enforcement for AI agents.

This server exposes hejdar_evaluate as an MCP tool. Any MCP-compatible agent (Claude, ChatGPT, Cursor, custom) can call it to check whether an action is permitted by organizational policy before executing it.

The MCP server is a thin wrapper around the Hejdar API (POST /v1/evaluate). It contains no policy logic — all decisions come from your Hejdar organization's configured policies.

Quick Start

1. Install

pip install hejdar-mcp

Or run directly with uvx:

uvx hejdar-mcp

2. Get your API key

Sign up at app.hejdar.com and create an API key in Settings → API Keys.

3. Configure your MCP client

Claude Desktop

Add to your Claude Desktop config (~/Library/Application Support/Claude/claude_desktop_config.json on macOS, %APPDATA%\Claude\claude_desktop_config.json on Windows):

{
  "mcpServers": {
    "hejdar": {
      "command": "uvx",
      "args": ["hejdar-mcp"],
      "env": {
        "HEJDAR_API_KEY": "hejdar_sk_your_key_here"
      }
    }
  }
}

Claude Code

Add to your Claude Code MCP settings:

{
  "mcpServers": {
    "hejdar": {
      "command": "uvx",
      "args": ["hejdar-mcp"],
      "env": {
        "HEJDAR_API_KEY": "hejdar_sk_your_key_here"
      }
    }
  }
}

Direct (stdio)

export HEJDAR_API_KEY=hejdar_sk_your_key_here
hejdar-mcp

Getting Started

  1. Install: pip install hejdar-mcp or uvx hejdar-mcp
  2. Get an API key — contact us at hello@hejdar.com or visit hejdar.com
  3. Configure your MCP client (see configuration example above)

Tool: hejdar_evaluate

Evaluate an agent action against your organization's security policies.

Input:

ParameterTypeRequiredDescription
action_typestringYesREAD, WRITE, DELETE, TRANSFER, or EXECUTE
resourcestringYesTarget resource, e.g. customer_database
agent_namestringNoName of the calling agent, e.g. hr-assistant
contextobjectNoFree-form metadata (department, user_id, reason, etc.)

Output:

{
  "decision": "DENY",
  "policy_id": "pol_abc123",
  "reason": "Deletion of customer data requires manager approval",
  "risk_level": "HIGH"
}

decision is one of: ALLOW, DENY, WOULD_DENY.

System Prompt Pattern

For best results, add this to your agent's system prompt:

You have access to the hejdar_evaluate tool. Before performing any action
that reads, writes, deletes, transfers data, or executes commands on
external systems, you MUST call hejdar_evaluate first.

If hejdar_evaluate returns DENY or WOULD_DENY, do NOT proceed with the
action. Instead, inform the user that the action was blocked by policy
and include the reason provided.

Environment Variables

VariableRequiredDefaultDescription
HEJDAR_API_KEYYesYour Hejdar API key
HEJDAR_API_URLNohttps://api.hejdar.comAPI base URL (for self-hosted)

Security

  • API key is read from environment variables only — never hardcoded or exposed in tool I/O
  • All inputs are validated and sanitized before forwarding to the API
  • Error responses never leak internal details, API keys, or stack traces
  • All API calls enforce TLS

Development

git clone https://github.com/ARKALDA/hejdar-mcp.git
cd hejdar-mcp
pip install -e ".[dev]"
pytest

License

MIT

Try in Playground

Server Config

{
  "mcpServers": {
    "hejdar": {
      "command": "uvx",
      "args": [
        "hejdar-mcp"
      ],
      "env": {
        "HEJDAR_API_KEY": "your-api-key",
        "HEJDAR_API_URL": "https://api.hejdar.com"
      }
    }
  }
}
Project Info
Created At
2 months ago
Updated At
2 months ago
Author Name
ARKALDA
Star
-
Language
-
License
-
Category
Tags
AI
cybersecurity
Homepage
https://github.com/ARKALDA/hejdar-mcp

Recommend Servers

View All
Latlng
@latlng-work

Official LatLng MCP server for geocoding, reverse geocoding, places search, nearby POI lookup, and place categories. Powered by the LatLng API and OpenStreetMap data.

5 hours ago
Aws Kb Retrieval Server
@modelcontextprotocol

An MCP server implementation for retrieving information from the AWS Knowledge Base using the Bedrock Agent Runtime.

a year ago
MiniMax MCP
@MiniMax-AI

Official MiniMax Model Context Protocol (MCP) server that enables interaction with powerful Text to Speech, image generation and video generation APIs.

Python
a year ago
302_browser_use_mcp
@302ai

Automatically create a remote browser to complete your specified tasks, developed based on Browser Use + Sandbox. 自动创建一个远程浏览器,完成你指定的任务,基于Browser Use + Sandbox开发。

a year ago
Docwand

14 hours ago
MCP Advisor
@istarwyh

MCP Advisor & Installation - Use the right MCP server for your needs

TypeScript
a year ago
PostgreSQL
@modelcontextprotocol

Read-only database access with schema inspection

a year ago
Swipr
@nochinxx

Swipe-to-review GitHub PRs with AI context. Paste a repo URL, get open PRs as a card stack with risk scores, AI summaries, similar past changes, and contributor history. Works as a Claude MCP plugin — review PRs directly from Claude Desktop or Cursor without a browser. 12 tools including risk scoring, semantic similarity search, caller lookup, and test coverage detection.

a day ago
mcp-server-flomo MCP Server
@chatmcp

Write notes to Flomo

JavaScript
a year ago
//beforeyouship — LLM Cost Modeling From Your Editor
@Indiegoing

Query realistic LLM cost models without leaving your editor. beforeyouship models the **true monthly cost** of an LLM app architecture — retries, prompt caching, batch discounts, infra overhead, and 3×/10× growth — across GPT-5.x, Claude, Gemini, DeepSeek, and more. Not a token calculator: a planning tool for the design phase, before you commit to a stack. **No API key needed to try it** — demo mode covers the six free-tier models. A Pro key from [beforeyouship.dev](https://beforeyouship.dev) unlocks the full 18-model catalog. ## What you can ask - "How much will a RAG chatbot cost at 10,000 requests/day?" - "Compare Claude Haiku vs Gemini Flash pricing for my workload" - "What's the cheapest model for a multi-step agent at scale?" - "Show me current per-token prices for Anthropic models" ## Tools ### `estimate_cost` Full cost model for an architecture at a given usage level. Returns Naive / Realistic / Worst Case monthly cost per model, 3×/10× growth scenarios, and an opinionated recommendation with reasoning. ### `get_model_prices` Current per-1M-token pricing — input, output, cached input, batch — with context windows and staleness metadata. ### `list_archetypes` Seven preset architecture patterns (simple chatbot, chatbot with history, RAG pipeline, multi-model router, coding assistant, document processor, multi-step agent) used as starting points for estimates. ## Setup **Claude Code:** ​```bash claude mcp add --transport http beforeyouship https://beforeyouship.dev/api/mcp ​``` **Cursor / other clients** — add a remote server: ​```json { "mcpServers": { "beforeyouship": { "type": "streamable-http", "url": "https://beforeyouship.dev/api/mcp" } } } ​``` Add an `Authorization: Bearer bys_...` header with a Pro key for the full catalog. ## Try it > Estimate the monthly cost of a RAG pipeline at 10,000 requests/day

14 hours ago
Google Maps
@modelcontextprotocol

Location services, directions, and place details

a year ago
Inboxguard

Scan and fix a domain's email deliverability (SPF, DKIM, DMARC, MTA-STS, TLS-RPT, BIMI, DNS blocklists) — and remediate the DNS at the registrar.

13 hours ago
Layup Sport Booking

Search bookable London sports availability — courts, pitches, lanes, classes, pickup games — across every major UK leisure-centre operator and aggregator. ~100k slots indexed across 527 venues, 5 sports. Read-only, anonymous, CC-BY-4.0 attribution for OpenActive sources.

18 hours ago
Jina AI MCP Tools
@PsychArch

A Model Context Protocol (MCP) server that integrates with Jina AI Search Foundation APIs.

JavaScript
a year ago
Hevy MCP
@InvIngeniero

Analyze your workout history, manage routines, track progress, and help you plan future training using your real fitness data from Hevy

a day ago
Obsidian Hybrid Search
@flowing-abyss

Local-first MCP server for searching private Obsidian vaults with hybrid full-text, fuzzy, semantic, and wikilink graph retrieval.

a day ago
Search1API

One API for Search, Crawling, and Sitemaps

a year ago
Linkpulse
@Joost Boer

Know what every affiliate link actually earns, and fix what's bleeding revenue. See revenue per article, catch dead links before they cost you, and ask it anything in plain English. Works on any site.

17 hours ago
Mnemom
@Mnemom

Trust ratings for AI agents and websites. Look up an agent's reputation, scan a site's AI-trust-readiness, and verify signed scorecards in-band — reads are zero-auth. From Mnemom, the trust layer for the agent internet.

10 hours ago
AgentQL MCP Server
@tinyfish-io

Model Context Protocol server that integrates AgentQL's data extraction capabilities.

JavaScript
a year ago
Perplexity Ask MCP Server
@ppl-ai

A Model Context Protocol Server connector for Perplexity API, to enable web search without leaving the MCP ecosystem.

JavaScript
a year ago
Linksee Memory
@michielinksee

Local-first agent memory MCP — Claude Code, Cursor, OpenAI Codex, and Gemini CLI share one SQLite brain. 6-layer structured memory (goal/context/emotion/implementation/caveat/learning), drift detection with pre-action re-injection guard, and an AST-aware diff cache saving 50-99% tokens on file re-reads. npx linksee-memory-setup — one command.

a day ago
Vectoralix Healthy Food
@vectoralix

Healthy Food MCP is a public MCP server that gives AI agents structured access to healthy recipe content. It lets Claude, Cursor, Gemini, and other MCP-compatible clients browse recipes by calorie category, diet group, meal type, macros, and keywords. The server includes tools for listing recipe categories, exploring diet and meal groups, browsing available recipe files, fetching full structured recipes, and searching the recipe collection. It is designed as a practical example of how MCP can be used beyond developer tools — turning curated food knowledge into something AI agents can query, understand, and use in real conversations. Healthy Food MCP is powered by Vectoralix and includes connection metadata, plugin manifests, reusable skills, documentation, assets, and validation scripts for easier installation and testing.

a day ago
Linkedai
@DatTheMaster

LinkedIn for AI agents. Agents register structured profiles, list projects, evaluate fit via FitReports, and propose connections — all through a hosted MCP server. 27 tools, zero install. Handlers (humans) approve connections. Built on Cloudflare Workers + KV.

7 hours ago
Gas Fee Predictor
@higher-being

Live Ethereum + Layer-2 gas-fee data for AI agents — current gas, cheapest L2, ETH price, best time to transact, and per-action cost estimates. Wraps the free gasfeepredictor.com API. No key required.

16 hours ago
Playwright Mcp
@microsoft

Playwright MCP server

TypeScript
10 months ago
Time
@modelcontextprotocol

A Model Context Protocol server that provides time and timezone conversion capabilities. This server enables LLMs to get current time information and perform timezone conversions using IANA timezone names, with automatic system timezone detection.

4 months ago
Neon MCP Server
@neondatabase-labs

MCP server for interacting with Neon Management API and databases

TypeScript
a year ago
Sentry
@modelcontextprotocol

Retrieving and analyzing issues from Sentry.io

a year ago
Lorg Ai
@LorgAI

Intelligence archive for AI agents. Contribute prompts, workflows, and insights to a permanent, cryptographically verifiable knowledge base. Agents earn public trust scores based on adoption and peer validation.

2 days ago