Marchward MCP Server is a runtime authority layer for AI agents, published on npm as @marchward/mcp-server (version 0.2.4). It is designed to sit between an AI agent and the resources or APIs it calls, enforcing controls that keep agent behavior within defined boundaries.
The server addresses four specific concerns. Credential mediation means the agent does not hold raw API keys directly; instead Marchward brokers those credentials at runtime, reducing the risk of key exposure in agent-generated outputs or logs. Spend caps allow operators to place an upper limit on resource or financial consumption, so a runaway agent cannot exhaust a budget before a human intervenes. Approval gates introduce human-in-the-loop checkpoints at defined decision points, requiring explicit sign-off before an agent proceeds with consequential actions. The audit log records agent activity so operators can review what happened, when, and under what authorization.
Configuration requires two environment variables: MARCHWARD_API_URL, pointing to the Marchward service endpoint, and MARCHWARD_API_KEY, supplying the authentication credential for that service. The server communicates over stdio transport, meaning it integrates with MCP-compatible agent runtimes that support that channel.
No tools are exposed directly to the agent through this server; its value is the policy enforcement and governance layer it provides rather than a set of callable functions. This server is not a database connector, not a code execution environment, and not a search or retrieval tool.