Yes, X402 Trust is free to use.

How do I install X402 Trust?

X402 Trust is a local plugin. Install it using npm package: x402-trust-mcp and add the generated configuration snippet to your AI app's MCP config file. Then restart your AI app.

Is X402 Trust safe to use?

X402 Trust scored 5.2/10 (moderate risk) in MCP Marketplace's automated security scan. It has 2 high or critical findings to review. It's listed, but review the security report on this page before installing.

What credentials does X402 Trust need?

X402 Trust requires the following credentials or environment variables: X402_PRIVATE_KEY, X402_MAX_USD, X402_TRUST_API_BASE, X402_TIMEOUT_MS. You can find setup instructions on the server detail page.

What AI apps work with X402 Trust?

X402 Trust uses the Model Context Protocol (MCP) and works with any MCP-compatible AI app, including Claude, ChatGPT / Codex, Gemini, Copilot, Cursor, and more.

Back to Browse

X402 Trust MCP Server

by JonasFuchss

Developer ToolsModerate5.2MCP RegistryLocal

Free

Server data from the Official MCP Registry

Trust & reliability scores for x402 endpoints: free ecosystem stats, paid per-endpoint scores.

About

Trust & reliability scores for x402 endpoints: free ecosystem stats, paid per-endpoint scores.

Security Report

5.2

Moderate5.2Moderate Risk

Well-designed MCP server for x402 endpoint trust data with strong cryptographic payment handling and security controls. The codebase demonstrates mature security practices including EIP-3009 signature validation, chain/asset whitelisting, and cumulative spend caps. Minor code quality observations around error handling breadth and logging do not materially impact security posture. Supply chain analysis found 2 known vulnerabilities in dependencies (2 critical, 0 high severity). Package verification found 1 issue.

5 files analyzed · 8 issues found

Security scores are indicators to help you make informed decisions, not guarantees. Always review permissions before connecting any MCP server.

Permissions Required

This plugin requests these system permissions. Most are normal for its category.

env_vars

Check that this permission is expected for this type of plugin.

HTTP Network Access

Connects to external APIs or services over the internet.

crypto_sign

Check that this permission is expected for this type of plugin.

What You'll Need

Set these up before or after installing:

Optional Base wallet private key (0x...). When set, the paid tools auto-pay over x402 up to X402_MAX_USD; otherwise they return a price quote. The free tools need no key.Required

Environment variable: X402_PRIVATE_KEY

Per-call auto-pay ceiling in USD.Optional

Environment variable: X402_MAX_USD

API base URL.Optional

Environment variable: X402_TRUST_API_BASE

Request timeout in milliseconds.Optional

Environment variable: X402_TIMEOUT_MS

How to Install

Add this to your MCP configuration file:

{
  "mcpServers": {
    "io-github-jonasfuchss-x402-trust-mcp": {
      "env": {
        "X402_MAX_USD": "your-x402-max-usd-here",
        "X402_TIMEOUT_MS": "your-x402-timeout-ms-here",
        "X402_PRIVATE_KEY": "your-x402-private-key-here",
        "X402_TRUST_API_BASE": "your-x402-trust-api-base-here"
      },
      "args": [
        "-y",
        "x402-trust-mcp"
      ],
      "command": "npx"
    }
  }
}

Documentation

View on GitHub

From the project's GitHub README.

x402-trust-mcp

An MCP server that lets your agent check the trust & reliability of x402 endpoints before paying them.

Backed by x402.fuchss.app, which monitors the entire x402 ecosystem on Base 24/7: uptime probes, 402-envelope spec compliance, advertised-price history, and real on-chain USDC settlement volume per endpoint.

Why

Agents increasingly pay x402 endpoints autonomously. But ~⅔ of listed x402 endpoints are unreachable and ~⅓ of the reachable ones serve non-compliant payment envelopes. Before your agent sends USDC to an unknown endpoint, ask: is it alive, compliant, and does anyone actually pay it?

Tools

Tool	Cost	Description
`x402_ecosystem_stats`	free	Aggregate state of the x402 ecosystem (listings, reachability, compliance, 30d settlement volume).
`x402_trust_leaderboard`	free	Top-25 most trustworthy x402 endpoints.
`x402_trust_score`	paid	Trust score (0-100, grade A-F) for a specific endpoint, plus a machine-readable pay/don't-pay verdict, the advertised price, a confidence band, and structured flags — everything to decide in one call.
`x402_endpoint_history`	paid	Observation time-series for a specific endpoint (listings, price changes, probes).

Paid tools cost a few tenths of a cent, charged over x402 (USDC on Base). If you set X402_PRIVATE_KEY, the server auto-pays within your X402_MAX_USD limit; otherwise it returns the price quote for your host to pay.

`x402_trust_score` result

A single call returns everything an agent needs to decide whether and at what price to use an endpoint — no second round-trip, no raw-unit guessing:

Field	Meaning
`score` / `grade`	0-100 point score and its A-F grade.
`recommendation`	Machine verdict: `proceed` \| `caution` \| `avoid`. Already prices in data uncertainty — low confidence caps it at `caution` (a young endpoint is unproven, not untrustworthy); `avoid` is reserved for real negatives (error-severity flags, low score, recent payTo change).
`scoreRange`	`{ low, point, high }` — a confidence-adjusted band. Decide conservatively against `low`.
`confidence` / `confidenceDetail`	Overall confidence plus its parts: `observation` (data volume/age) vs `economic` (settlement coverage).
`gradeThresholds`	The score cutoffs for each grade, so the verdict is auditable.
`advertised`	The last observed 402 quote: `{ amount, amountUsd, asset, network, decimals, observedAtTs }`. Trust and cost in one call.
`flags` / `flagsDetailed`	Legacy string flags plus structured `{ code, severity, message }`. Rule of thumb: any flag with `severity: "error"` ⇒ avoid.
`breakdown` / `subscores`	The full deterministic math (uptime, compliance, latency, age, activity, stability → technical / spec / economic subscores).
`stats`	Observed evidence: probe counts, latency, payTo, `settledVolumeUsd30d`, distinct payers, and a `payToChanged*` hijack signal when the receiving wallet changed recently.

Everything is computed deterministically (no LLM) from continuous on-chain and probe observation, so the breakdown is fully auditable.

x402 V2 Payment Flow

This MCP server uses the canonical x402 V2 payment flow:

402 + PAYMENT-REQUIRED — The server responds with HTTP 402 and a base64-encoded PAYMENT-REQUIRED header containing the payment requirements (accepts, network, asset, amount, payTo).
Sign + retry with PAYMENT-SIGNATURE — The MCP client signs an EIP-3009 transferWithAuthorization for the selected accept and re-POSTs with the PAYMENT-SIGNATURE header (base64-encoded payment payload).
Settlement + PAYMENT-RESPONSE — The server settles the payment and responds with the data plus a PAYMENT-RESPONSE header.

Legacy X-PAYMENT / X-PAYMENT-RESPONSE headers are accepted as a fallback during the V1→V2 transition period but are not the default.

Accept selection: When a 402 response offers multiple accepts (e.g. Solana

Base USDC), the client selects the best compatible one (canonical USDC on an allow-listed chain) rather than blindly taking the first accept.

Install

Add to your MCP client config (e.g. Claude Desktop claude_desktop_config.json):

{
  "mcpServers": {
    "x402-trust": {
      "command": "npx",
      "args": ["-y", "x402-trust-mcp"]
    }
  }
}

To enable autonomous payment for the paid tools, add a funded Base USDC wallet:

{
  "mcpServers": {
    "x402-trust": {
      "command": "npx",
      "args": ["-y", "x402-trust-mcp"],
      "env": {
        "X402_PRIVATE_KEY": "0xYOUR_BASE_WALLET_KEY",
        "X402_MAX_USD": "0.05"
      }
    }
  }
}

Configuration (env vars)

Var	Default	Description
`X402_TRUST_API_BASE`	`https://x402.fuchss.app`	API base URL.
`X402_PRIVATE_KEY`	(unset)	Base wallet private key. Enables auto-pay for paid tools. Accepted with or without the `0x` prefix (surrounding whitespace is trimmed); a set-but-malformed key logs a warning and leaves auto-pay off rather than failing silently.
`X402_MAX_USD`	`0.05`	Per-call auto-pay ceiling. 0 disables auto-pay.
`X402_MAX_TOTAL_USD`	`1.00`	Cumulative auto-pay cap per process. 0 = unlimited.
`X402_MAX_CALLS`	`1000`	Max paid calls per process. 0 = unlimited.
`X402_TIMEOUT_MS`	`20000`	Request timeout.

The free tools work with no configuration at all.

Security

X402_PRIVATE_KEY is a hot wallet — fund it with only what you're willing to spend on trust lookups. The key never leaves your machine; it signs EIP-3009 payment authorizations locally.

Policy checks enforced before signing:

Chain allow-list (Base mainnet by default)
Canonical USDC contract verification (no arbitrary tokens)
Optional payTo allow-list
Per-call spend ceiling (X402_MAX_USD)
Cumulative spend cap (X402_MAX_TOTAL_USD)
Call-count cap (X402_MAX_CALLS)

License

MIT

Reviews

No reviews yet

Be the first to review this server!

More Developer Tools MCP Servers

Fetch

Free

by Modelcontextprotocol · Developer Tools

Web content fetching and conversion for efficient LLM usage

Git

Free

by Modelcontextprotocol · Developer Tools

Read, search, and manipulate Git repositories programmatically

Toleno

Free

by Toleno · Developer Tools

Toleno Network MCP Server — Manage your Toleno mining account with Claude AI using natural language.

X402 Trust MCP Server

About

Security Report

Findings (8)Action required

Permissions Required

What You'll Need

How to Install

Documentation

x402-trust-mcp

Why

Tools

`x402_trust_score` result

x402 V2 Payment Flow

Install

Configuration (env vars)

Security

License

Reviews

No reviews yet

More Developer Tools MCP Servers

Fetch

Git

Toleno

mcp-creator-python

MarkItDown

FinAgent

X402 Trust MCP Server

About

Security Report

Findings (8)Action required

Permissions Required

What You'll Need

How to Install

Documentation

x402-trust-mcp

Why

Tools

x402_trust_score result

x402 V2 Payment Flow

Install

Configuration (env vars)

Security

License

Reviews

No reviews yet

More Developer Tools MCP Servers

Fetch

Git

Toleno

mcp-creator-python

MarkItDown

FinAgent

`x402_trust_score` result