Is Control Plane free?

Yes, Control Plane is free to use.

How do I install Control Plane?

Control Plane is a remote plugin. You do not need to install anything locally. Add the server URL to your AI app's MCP configuration and you are ready to go.

What AI apps work with Control Plane?

Control Plane uses the Model Context Protocol (MCP) and works with any MCP-compatible AI app, including Claude, ChatGPT / Codex, Gemini, Copilot, Cursor, and more.

Back to Browse

Control Plane MCP Server

by Thinkneo AI

SecurityLow Risk8.0Remote

Free

Enterprise AI governance: spend, guardrails, policy, budgets, compliance, and provider health.

About

Enterprise AI governance: spend, guardrails, policy, budgets, compliance, and provider health.

Remote endpoints: streamable-http: https://mcp.thinkneo.ai/mcp

Security Report

8.0

Low Risk8.0Low Risk

Valid MCP server (1 strong, 8 medium validity signals). 3 known CVEs in dependencies (0 critical, 1 high severity) Imported from the Official MCP Registry.

Endpoint verified · Open access · 4 issues found

Security scores are indicators to help you make informed decisions, not guarantees. Always review permissions before connecting any MCP server.

Permissions Required

This plugin requests these system permissions. Most are normal for its category.

HTTP Network Access

Connects to external APIs or services over the internet.

How to Connect

Remote Plugin

No local installation needed. Your AI client connects to the remote endpoint directly.

Add this to your MCP configuration to connect:

{
  "mcpServers": {
    "ai-thinkneo-control-plane": {
      "url": "https://mcp.thinkneo.ai/mcp"
    }
  }
}

Getting Started

Once installed, try these example prompts and explore these capabilities:

1"What AI providers are configured in my ThinkNEO control plane?"
2"Show me the current spend by department this month"
3"List all blocked requests in the last 24 hours"
4"What policies are active for the production workspace?"
5Tool: get_governance_status: Returns current policy, spend, and guardrail status

Documentation

View on GitHub

From the project's GitHub README.

ThinkNEO MCP Server

Open MCP server with built-in defense layer (ThinkShield). Part of the ThinkNEO Platform — enterprise AI governance.

What This Is

An open-source MCP server providing 72 tools for AI governance, observability, and security:

ThinkShield — Production defense layer: detection engine, 5 rule packs, runtime middleware. 145 tests, p99 < 1ms.
72 MCP Tools — Governance, guardrails, FinOps, smart routing, observability, compliance, outcome validation, and more.
24 A2A Skills — Bidirectional MCP-A2A bridge for Google's Agent-to-Agent Protocol (v0.3.0, Linux Foundation).
Apache-2.0 — Use it, fork it, contribute.

What This Is Not

Not the full ThinkNEO Platform. Governance orchestration, cryptographic audit chain, tenant management, and enterprise integrations are proprietary and run at thinkneo.ai.
Not a standalone security product. ThinkShield is the defense component of a larger governed platform.

Why Open

We open-source our defense layer because real security doesn't depend on hidden rules — it depends on tested, audited, continuously improved detection plus a strong governance moat around it.

Snort. Suricata. Falco. OWASP CRS. The security industry runs on open detection. We follow that tradition.

The detection is open. The governance is proprietary. That's where the moat is.

Architecture

                        Open Source (this repo)                    Proprietary (thinkneo.ai)
                   ┌─────────────────────────────────┐     ┌──────────────────────────────────┐
                   │                                 │     │                                  │
  MCP Clients ────>│  72 MCP Tools                   │     │  Governance Orchestration         │
  (Claude, Cursor, │  ├── Guardrails & Safety        │────>│  ├── Policy Engine (AIRGP)        │
   ChatGPT, etc.)  │  ├── FinOps & Smart Routing     │     │  ├── Cryptographic Audit Chain    │
                   │  ├── Observability              │     │  ├── Tenant Management            │
  A2A Agents ─────>│  ├── Compliance & Validation    │     │  ├── Enterprise Integrations      │
  (Google A2A)     │  └── MCP-A2A Bridge (24 skills) │     │  └── SLA & Support                │
                   │                                 │     │                                  │
                   │  ThinkShield Defense Layer       │     │  SHA-256 Hash Chain (949K+ rows)  │
                   │  ├── Detection Engine            │     │  Stripe Billing                   │
                   │  ├── 5 Rule Packs               │     │  Resend Email                     │
                   │  └── ASGI Middleware             │     │  Multi-tenant Auth                │
                   │                                 │     │                                  │
                   └─────────────────────────────────┘     └──────────────────────────────────┘
                          Apache-2.0 License                      Commercial License

Quickstart

# Clone
git clone https://github.com/thinkneo-ai/mcp-server.git
cd mcp-server

# Install
pip install -r requirements.txt

# Run
python -m uvicorn src.server:app --host 0.0.0.0 --port 8081

# Test
python -m pytest tests/ -q

Or with Docker:

cd deploy
docker compose up -d

Connect from Claude Desktop, Cursor, or any MCP client:

https://mcp.thinkneo.ai/mcp

Free tier: 500 calls/month, auto-provisioned API key. All 72 tools available.

Components

Directory	Description	License
`src/tools/`	72 MCP tools — governance, security, FinOps, observability	Apache-2.0
`src/thinkshield/`	Defense layer — detection engine, 5 rule packs	Apache-2.0
`tests/thinkshield/`	ThinkShield test suite — 145 tests + attack/benign fixtures	Apache-2.0
`agent.json`	A2A Agent Card — 24 skills bridged from MCP	Apache-2.0

ThinkShield Rule Packs

Pack	Detects
`injection`	SQL injection, XSS, command injection, path traversal
`auth`	Credential stuffing, brute force, token replay, privilege escalation
`abuse`	Rate abuse, resource exhaustion, API scraping
`recon`	Path probing, tool enumeration, method probing, fingerprinting
`headers`	Header anomalies, spoofing, missing security headers

MCP Tools (72)

Full tool reference: docs/quickstart.md

MCP Spec Compliance

Complete Model Context Protocol 2024-11-05 implementation. Forward-compatible with MCP 2025-03-26.

Capability	Status	Details
tools	72 tools, full annotations	destructiveHint, readOnlyHint, idempotentHint, openWorldHint
resources	2 resources	Getting Started guide, Supported Providers
prompts	2 prompts with completions	governance_audit, policy_preflight
logging	logging/setLevel	8 levels, per-session, audit trail
completions	completion/complete	workspace (auth-scoped), provider, model (provider-aware)

Ecosystem

This repo is part of the ThinkNEO ecosystem:

Project	Description
ThinkNEO Platform	Enterprise AI governance platform
AIRGP	AI Runtime Governance Protocol — open standard
A2ASTC	A2A Security & Trust Conformance
ThinkNEO SMB Hub	Business applications for SMBs
Robotics Governance	Robot fleet governance dashboard

Security

See SECURITY.md for vulnerability reporting.

Contributing

See CONTRIBUTING.md.

Server	Description	Tools
thinkneo-control-plane	Enterprise AI Control Plane (this repo)	72 tools
thinkneo-mcp-smb-products	SMB standalone products — self-serve via TNC credits	37 tools

License

Apache-2.0 — see LICENSE.

About

ThinkNEO AI Technology Co., Ltd. — Hong Kong CR No. 2296774.

Built by the team behind the ThinkNEO Enterprise AI Control Plane, AIRGP protocol, and A2ASTC conformance suite.

NVIDIA Inception | Anthropic Partner | Linux Foundation A2A

Reviews

4.73 ratings

Fabio2 months ago

Solid tool with a clean interface and reliable performance. The control plane integration works smoothly and the setup was straightforward.

STH IMPORT & EXPORT CO., LTD2 months ago

Really impressed with how well this handles the workload. Setup was quick, the dashboard is intuitive, and it hasn't let me down yet. Minor UI quirks here and there, but nothing that gets in the way. Great product overall — looking forward to seeing how it evolves.

Thinkneo AI2 months ago

Governance!!!

Version History

v1.2.0Mar 23, 2026Re-scanned

Initial enterprise release. Enterprise AI Control Plane with runtime guardrails, AI FinOps, deep observability, agent lifecycle control, and compliance readiness across all major AI providers.

More Security MCP Servers

Toleno

Free

by Toleno · Developer Tools

Toleno Network MCP Server — Manage your Toleno mining account with Claude AI using natural language.

mcp-creator-python

Free

by mcp-marketplace · Developer Tools

Create, build, and publish Python MCP servers to PyPI — conversationally.

MarkItDown

Free

by Microsoft · Content & Media

Convert files (PDF, Word, Excel, images, audio) to Markdown for LLM consumption

Control Plane MCP Server

About

Security Report

Findings (4)Action required

Permissions Required

How to Connect

Getting Started

Documentation

ThinkNEO MCP Server

What This Is

What This Is Not

Why Open

Architecture

Quickstart

Components

ThinkShield Rule Packs

MCP Tools (72)

MCP Spec Compliance

Ecosystem

Security

Contributing

Related

License

About

Reviews

Version History

More Security MCP Servers

Toleno

mcp-creator-python

MarkItDown

FinAgent

mcp-creator-typescript

MCP Marketplace