1Claw Vault

io.github.1clawAI/1claw-mcp·v0.31.1·Security

HSM-backed vault secrets for AI agents (JIT fetch) plus prompt-injection and threat scanning.

Trust verdict · v1 advisory · method

NOT YET SCREENEDno verdict on file

Verdict not yet evaluated for this tool. The hybrid eval runs adversarial cases first; coverage rolls out as the corpus expands (15 of 150 labels to graduation). Until a verdict is recorded, an agent should treat this tool as not-yet-cleared and fall back to its own checks. Method: hybrid eval, four-state verdict, honest limits.

Own this server? Screen its description →

Environment variables

ONECLAW_AGENT_API_KEY

secret

Agent API key (ocv_...). Exchanged for a short-lived JWT; auto-discovers agent ID and vault. Recommended for stdio.

ONECLAW_AGENT_ID

Optional agent UUID when pinning identity (usually auto-discovered from the API key).

ONECLAW_VAULT_ID

Optional vault UUID when the agent can access multiple vaults.

ONECLAW_BASE_URL

Vault API base URL (default https://api.1claw.xyz).

ONECLAW_LOCAL_ONLY

Set to true for security-only mode (inspect_content only; no vault credentials).

MCP quality score · maturity, not trust · methodology

freshness

completeness

installability

documentation

stability

Alternatives in Security

ai.dynamicfeed/dynamic-feed

Fresh data AI models lack: live prices, software versions, CVEs, service status & more.

Helixar Security

ai.helixar/mcp

Security tools for AI agents: scan MCP servers, validate HDP delegation chains, audit releases.

ai.smithery/Nekzus-npm-sentinel-mcp

Provide AI-powered real-time analysis and intelligence on NPM packages, including security, depend…

Install

Claude Desktop (claude_desktop_config.json)

{
  "mcpServers": {
    "1claw-mcp": {
      "command": "npx",
      "args": [
        "-y",
        "@1claw/mcp"
      ],
      "env": {
        "ONECLAW_AGENT_API_KEY": "<your-oneclaw_agent_api_key>",
        "ONECLAW_AGENT_ID": "<oneclaw_agent_id>",
        "ONECLAW_VAULT_ID": "<oneclaw_vault_id>",
        "ONECLAW_BASE_URL": "<oneclaw_base_url>",
        "ONECLAW_LOCAL_ONLY": "<oneclaw_local_only>"
      }
    }
  }
}

Cursor (.cursor/mcp.json)

{
  "mcpServers": {
    "1claw-mcp": {
      "command": "npx",
      "args": [
        "-y",
        "@1claw/mcp"
      ],
      "env": {
        "ONECLAW_AGENT_API_KEY": "<your-oneclaw_agent_api_key>",
        "ONECLAW_AGENT_ID": "<oneclaw_agent_id>",
        "ONECLAW_VAULT_ID": "<oneclaw_vault_id>",
        "ONECLAW_BASE_URL": "<oneclaw_base_url>",
        "ONECLAW_LOCAL_ONLY": "<oneclaw_local_only>"
      }
    }
  }
}

Cline (cline_mcp_settings.json)

npx -y @1claw/mcp

Verdict API

curl -s mcpindex.ai/api/v1/trust/server/io-github-1clawai-1claw-mcp

Free-tier verdict as JSON: decision + dimensions + severity. Call it from your agent before it invokes a tool it just discovered.

Details

version: v0.31.1
category: Security
quality: 90 / 100
operator: 1clawAI

Provenance

Verdict history is anchored to Bitcoin via OpenTimestamps. The free tier returns the current verdict only; the anchored record is served on the authenticated tier.

Links

Repository →Website →