server
Model Context Protocol (MCP) server for Sardis - Enable AI agents (Claude, Cursor, etc.) to execute secure payments with policy validation
Installation
npx @sardis/mcp-serverAsk AI about server
Powered by Claude Β· Grounded in docs
I know everything about server. Ask me about installation, configuration, usage, or troubleshooting.
0/500
Reviews
Documentation
Sardis
Open-source financial authority layer for AI agents
Sardis lets agents transact only through signed mandates, deterministic policy checks, approval paths, revocation, and audit evidence before any wallet, card, stablecoin, payment API, or provider rail is used.
Website Β· Manifesto Β· Docs Β· Playground Β· Enterprise
π¦ Quick Install
# MCP Server (Claude, Cursor, ChatGPT)
npx @sardis/mcp-server start
# Python SDK
pip install sardis
# TypeScript SDK
npm install @sardis/sdk
# LangChain
pip install sardis # Uses sardis-sdk under the hood
# CrewAI
pip install sardis # Compatible with CrewAI tools
# OpenAI Functions
pip install sardis # Use with OpenAI function calling
# Gemini / ADK
pip install sardis # Compatible with Google AI SDKs
# Vercel AI SDK
npm install @sardis/ai-sdk
π€ What is Sardis?
Sardis is the open-source financial authority layer for AI agents. It sits between autonomous agents and money-moving systems so every consequential financial action is checked against a mandate, policy decision, approval path, revocation path, and audit packet before execution.
Sardis is not a card wrapper, prepaid wallet, or rail-specific payment app. It governs the authority to spend across stablecoin wallets, card programs, fiat payment APIs, x402-style HTTP payments, AP2/TAP mandates, provider-hosted wallets, and simulator rails.
The core primitive is verifiable authority before an agent can spend, subscribe, purchase, refund, settle, or trigger paid usage. Customers can bring their own providers; Sardis enforces the authority layer above them without needing to custody funds or become the merchant of record.
The deeper thesis is that agents do not just have a capability problem; they have a trust problem. Sardis treats money as the sharpest version of a broader substrate problem: how non-human actors perform consequential actions with explicit authority, reviewable state transitions, and durable evidence.
Protocol & Feature Maturity
| Feature | Status | Description |
|---|---|---|
| Spending Policy Engine | Production | Deterministic NL-to-policy, atomic spend tracking |
| AP2 Mandate Verification | Production | Full mandate chain verification with evidence |
| USDC Payments (Base) | Production | Non-custodial MPC wallet execution |
| Policy Attestation API | Production | Signed attestation envelopes with Ed25519 |
| PreExecutionPipeline | Production | Composable hook chain with fail-closed defaults |
| Hosted Checkout | Pilot | Merchant checkout flows with session security |
| ERC-8183 Agentic Jobs | Pilot | On-chain job escrow (conservative caps: 1% fee, USDC-only) |
| x402 Protocol | Pilot | HTTP-native micropayments |
| Virtual Cards (Stripe Issuing) | Pilot | Agent-controlled virtual card issuance |
| Multi-chain (Polygon, Arbitrum) | Experimental | Chain routing implemented, not production-tested |
| UCP MCP Transport | Experimental | Partial implementation |
| FIDES Trust Graph | Experimental | DID-based trust federation |
Status key: Production = deployed, tested, load-bearing. Pilot = functional with design partners, conservative limits. Experimental = code exists, not production-tested.
Key Features
- Non-custodial MPC wallets -- Turnkey integration, zero private key exposure
- Natural language spending policies -- "Max $50/tx, $200/day, SaaS vendors only"
- Financial hallucination prevention -- Policy firewall blocks invalid transactions
- 15+ AI framework integrations -- LangChain, CrewAI, OpenAI Agents, Claude SDK, Google ADK, A2A, AgentKit, Vercel AI SDK, MCP, and more
- Virtual cards (Pilot) -- Stripe Issuing for agent-controlled fiat payments
- Agent-to-agent escrow -- Cryptographic mandate chain for A2A payments
- KYA (Know Your Agent) -- Trust scoring and behavioral anomaly detection
- Base + Tempo (production) -- Multi-chain settlement via CCTP v2, live on Tempo mainnet since March 2026
- Double-entry audit ledger -- Append-only transaction history with cryptographic proofs
- Protocol support -- AP2 and TAP (production), x402 (pilot), UCP and A2A (partial)
π Quick Start
Python (5 lines)
from sardis import Sardis
sardis = Sardis(api_key="sk_...")
result = sardis.payments.create(
agent_id="agent_abc",
amount="50.00",
token="USDC",
recipient="merchant@example.com"
)
print(f"Payment: {result.tx_hash}")
TypeScript
import { SardisClient } from '@sardis/sdk';
const client = new SardisClient({ apiKey: 'sk_...' });
const agent = await client.agents.create({ name: 'my-agent' });
const wallet = await client.wallets.create({
agent_id: agent.agent_id,
currency: 'USDC',
limit_per_tx: '100.00',
});
const tx = await client.wallets.transfer(wallet.wallet_id, {
destination: '0x...',
amount: '25.00',
token: 'USDC',
chain: 'base_sepolia',
domain: 'openai.com',
});
MCP (Claude Desktop / Cursor)
Add to your claude_desktop_config.json:
{
"mcpServers": {
"sardis": {
"command": "npx",
"args": ["@sardis/mcp-server", "start"]
}
}
}
That's it. Your agent now has a wallet with spending limits.
π― Framework Integrations
| Framework | Package | Install |
|---|---|---|
| MCP (Claude, Cursor, ChatGPT) | @sardis/mcp-server | npx @sardis/mcp-server start |
| LangChain | sardis | pip install sardis |
| CrewAI | sardis | pip install sardis |
| OpenAI Functions | sardis | pip install sardis |
| Gemini / ADK | sardis | pip install sardis |
| Vercel AI SDK | @sardis/ai-sdk | npm install @sardis/ai-sdk |
| Claude Agent SDK | sardis | pip install sardis |
| LlamaIndex | sardis | pip install sardis |
| Mastra | @sardis/sdk | npm install @sardis/sdk |
All frameworks use the same policy engine and MPC wallet infrastructure.
Architecture
Every payment follows a single execution path through the PaymentOrchestrator. There are no alternative code paths that bypass policy checks.
AI AGENT
(Claude, Cursor, LangChain, OpenAI)
|
MCP / SDK
|
βββββββββββββββ΄ββββββββββββββ
β PaymentOrchestrator β
β (single entry point) β
βββββββββββββββ¬ββββββββββββββ
|
βββββββββββββββ΄ββββββββββββββ
β PreExecutionPipeline β
β β
β Composable hooks: β
β - Policy evaluation β
β - Spend tracking β
β - Dedup check β
β - Compliance gate β
β - KYA trust scoring β
β β
β Fail-closed: any hook β
β failure blocks the tx β
βββββββββββββββ¬ββββββββββββββ
|
βββββββββββββββ΄ββββββββββββββ
β MPC SIGNING (Turnkey) β
β Non-custodial keys β
βββββββββββββββ¬ββββββββββββββ
|
+βββββββββββ΄ββββββββββ+
| |
On-Chain Rails Fiat Rails
USDC on Base Virtual Cards
(+ CCTP v2 funding) (Stripe Issuing)
| |
βββββββ΄ββββββ ββββββ΄βββββ
β LEDGER β β LEDGER β
β Append β β Append β
β Only β β Only β
βββββββββββββ βββββββββββ
Key design principles:
- Fail-closed -- Default deny on all policy, compliance, and security checks
- Non-custodial -- Private keys never stored; MPC signing via Turnkey
- Audit everything -- Append-only ledger with signed attestation envelopes for every decision
π Repository Structure
sardis/
βββ packages/ # Core monorepo packages
β βββ sardis-core/ # Domain models, config, database
β βββ sardis-api/ # FastAPI REST endpoints
β βββ sardis-chain/ # Blockchain execution, chain routing
β βββ sardis-protocol/ # AP2/TAP protocol verification
β βββ sardis-wallet/ # Wallet management, MPC
β βββ sardis-ledger/ # Append-only audit trail
β βββ sardis-compliance/ # KYC (iDenfy) + AML (Elliptic)
β βββ sardis-cards/ # Virtual cards (Stripe Issuing)
β βββ sardis-mcp-server/ # MCP server for Claude/Cursor
β βββ sardis-sdk-python/ # Full Python SDK
β βββ sardis-sdk-js/ # TypeScript SDK
β βββ sardis-cli/ # Command-line tool
β βββ sardis-checkout/ # Merchant checkout flows
βββ sardis/ # Simple Python SDK (public interface)
βββ contracts/ # Solidity smart contracts
β βββ src/
β βββ SardisWalletFactory.sol
β βββ SardisAgentWallet.sol
β βββ SardisEscrow.sol
βββ dashboard/ # React admin dashboard
βββ landing/ # Marketing website
βββ mobile/ # React Native companion app
βββ playground/ # Interactive demo sandbox
βββ examples/ # Usage examples
βββ demos/ # Demo applications
βββ docs/ # Documentation
β βββ marketing/ # GTM content and strategies
βββ tests/ # Integration tests
π Documentation
- Getting Started Guide β First payment in 5 minutes
- API Reference β Complete endpoint documentation
- MCP Server Setup β Claude Desktop integration
- Policy Language β Write spending rules in plain English
- Chain Support β Supported networks and tokens
- Framework Guides β LangChain, OpenAI, Vercel AI SDK
- Security Model β MPC architecture and threat model
- Compliance β KYC/AML/SAR framework
- Examples β Code samples for all frameworks
π€ Contributing
We welcome contributions! Please see our Contributing Guide for details.
Quick contribution checklist:
- Fork the repository
- Create a feature branch:
git checkout -b feature/your-feature - Make your changes with tests
- Run the test suite:
uv run pytest tests/ - Submit a pull request
Development setup:
# Clone the repository
git clone https://github.com/EfeDurmaz16/sardis.git
cd sardis
# Install dependencies
uv sync
# Run tests
uv run pytest tests/
# Start local API server
uvicorn sardis_api.main:create_app --factory --port 8000
π Links
- Website: sardis.sh
- Documentation: sardis.sh/docs
- Playground: sardis.sh/playground
- GitHub: github.com/EfeDurmaz16/sardis
- Discord: discord.gg/XMA9JwDJ
- PyPI: pypi.org/project/sardis
- npm: npmjs.com/package/@sardis/mcp-server
- Context7 Docs: context7.com/efedurmaz16/sardis
π License
This project uses an open-core licensing model:
-
MIT License β SDKs, MCP Server, Integration Adapters, CLI tools
sardis(Python meta-package)@sardis/sdk,@sardis/mcp-server,@sardis/ai-sdk- All integration adapters and examples
-
Proprietary β Core banking infrastructure, policy engine internals, MPC node management
See LICENSE.txt for full details.
Sardis β open-source financial authority layer for AI agents
Non-Custodial | MCP Native | Financial Hallucination Prevention
Built with β€οΈ for the AI agent ecosystem
Β© 2026 Efe Baran Durmaz