Metadata-Version: 2.4
Name: fss-mcp
Version: 0.3.3
Summary: FSS-compliant MCP server chassis
Project-URL: Repository, https://github.com/3soos3/fss-chassis
Author-email: 3soos3 <fss-chassis@3soos3.online>
License-Expression: MIT
Classifier: Development Status :: 3 - Alpha
Classifier: Intended Audience :: Developers
Classifier: License :: OSI Approved :: MIT License
Classifier: Programming Language :: Python :: 3
Classifier: Programming Language :: Python :: 3.11
Classifier: Programming Language :: Python :: 3.12
Classifier: Programming Language :: Python :: 3.13
Classifier: Topic :: Security
Classifier: Topic :: Software Development :: Libraries :: Python Modules
Classifier: Typing :: Typed
Requires-Python: >=3.11
Requires-Dist: fss-core>=0.3
Requires-Dist: mcp<2.0,>=1.2.0
Provides-Extra: auth
Requires-Dist: cryptography>=42.0.0; extra == 'auth'
Requires-Dist: httpx<1.0,>=0.25; extra == 'auth'
Requires-Dist: pyjwt>=2.8.0; extra == 'auth'
Provides-Extra: http
Requires-Dist: httpx<1.0,>=0.25; extra == 'http'
Requires-Dist: starlette>=0.37.0; extra == 'http'
Requires-Dist: uvicorn[standard]>=0.27.0; extra == 'http'
Provides-Extra: otel
Requires-Dist: opentelemetry-api>=1.20.0; extra == 'otel'
Requires-Dist: opentelemetry-exporter-otlp-proto-grpc>=1.20.0; extra == 'otel'
Requires-Dist: opentelemetry-sdk>=1.20.0; extra == 'otel'
Description-Content-Type: text/markdown

# fss-mcp

[![PyPI](https://img.shields.io/pypi/v/fss-mcp)](https://pypi.org/project/fss-mcp/)
[![Python](https://img.shields.io/badge/python-3.11_%7C_3.12_%7C_3.13-blue)](https://pypi.org/project/fss-mcp/)
[![License: MIT](https://img.shields.io/badge/License-MIT-blue.svg)](https://opensource.org/licenses/MIT)
[![OpenSSF Scorecard](https://api.securityscorecards.dev/projects/github.com/3soos3/fss-chassis/badge)](https://securityscorecards.dev/viewer/?uri=github.com/3soos3/fss-chassis)

FSS-compliant MCP server chassis. Build forensic-grade MCP servers that satisfy the [Forensic Software Standards (FSS)](https://fss.3soos3.online) conformance levels L1–L5.

## What it provides

- Security middleware pipeline: I/O limits → Auth → Rate limit → Sanitise → Validate
- `_provenance` block on every tool response (FSS-0004)
- Ed25519 signing of tool results (FSS-0005, L2+)
- FIT JWT verification (FSS-0006, L5)
- `/.well-known/fss-deployment.json` endpoint (FSS-0009, L4)
- HTTP and stdio transports
- OpenTelemetry integration

## Install

```bash
pip install fss-mcp

# with HTTP transport:
pip install "fss-mcp[http]"

# with auth middleware:
pip install "fss-mcp[auth]"

# with OpenTelemetry:
pip install "fss-mcp[otel]"

# everything:
pip install "fss-mcp[http,auth,otel]"
```

## Links

- Repository: <https://github.com/3soos3/fss-chassis>
- FSS standard: <https://fss.3soos3.online>
- OpenSSF Scorecard: <https://securityscorecards.dev/viewer/?uri=github.com/3soos3/fss-chassis>
- Security advisories: <https://github.com/3soos3/fss-chassis/security/advisories>
