ThinkNEO Control Plane

Enterprise AI governance: spend, guardrails, policy, budgets, compliance, and provider health.

0NOASSERTIONai-ml

Install

Config snippet generator goes here (5 client tabs)

README

# ThinkNEO MCP Server

[![MCP Marketplace](https://img.shields.io/badge/Get%20it%20on-MCP%20Marketplace-blue?style=flat-square)](https://mcp-marketplace.io)

**Enterprise AI Control Plane** — Remote MCP server for ThinkNEO.

Enables Claude, ChatGPT, Copilot, Gemini, and any MCP-compatible client to interact directly with ThinkNEO's governance capabilities: spend tracking, guardrail evaluation, policy enforcement, budget monitoring, compliance status, and provider health.

- **Registry:** `ai.thinkneo/control-plane`
- **Endpoint:** `https://mcp.thinkneo.ai/mcp`
- **Transport:** `streamable-http`
- **Auth:** Bearer token (ThinkNEO API key) for protected tools

---

## Tools

| Tool | Description | Auth |
|------|-------------|------|
| `thinkneo_check_spend` | AI cost breakdown by provider/model/team | Required |
| `thinkneo_evaluate_guardrail` | Pre-flight prompt safety evaluation | Required |
| `thinkneo_check_policy` | Verify model/provider/action is allowed | Required |
| `thinkneo_get_budget_status` | Budget utilization and enforcement | Required |
| `thinkneo_list_alerts` | Active alerts and incidents | Required |
| `thinkneo_get_compliance_status` | SOC2/GDPR/HIPAA readiness | Required |
| `thinkneo_provider_status` | Real-time AI provider health | **Public** |
| `thinkneo_schedule_demo` | Book a demo with ThinkNEO | **Public** |

---

## Connect in Claude Desktop

Add to `~/.claude/claude_desktop_config.json` (macOS/Linux) or `%APPDATA%\Claude\claude_desktop_config.json` (Windows):

### With authentication (full access):

```json
{
  "mcpServers": {
    "thinkneo": {
      "url": "https://mcp.thinkneo.ai/mcp",
      "headers": {
        "Authorization": "Bearer <YOUR_THINKNEO_API_KEY>"
      }
    }
  }
}
```

### Public tools only (no API key):

```json
{
  "mcpServers": {
    "thinkneo": {
      "url": "https://mcp.thinkneo.ai/mcp"
    }
  }
}
```

To get your ThinkNEO API key, request access at [thinkneo.ai/talk-sales](https://thinkneo.ai/talk-sales) or email [hello@thinkneo.ai](mailto:hello@thinkneo.ai).

---

## Connect in VS Code (GitHub Copilot)

Add to `.vscode/mcp.json` in your workspace or user settings:

```json
{
  "servers": {
    "thinkneo": {
      "type": "http",
      "url": "https://mcp.thinkneo.ai/mcp",
      "headers": {
        "Authorization": "Bearer <YOUR_THINKNEO_API_KEY>"
      }
    }
  }
}
```

---

## Test with curl

### List available tools (no auth required):

```bash
curl -X POST https://mcp.thinkneo.ai/mcp \
  -H "Content-Type: application/json" \
  -d '{
    "jsonrpc": "2.0",
    "method": "tools/list",
    "id": 1,
    "params": {}
  }'
```

### Check provider status (public tool):

```bash
curl -X POST https://mcp.thinkneo.ai/mcp \
  -H "Content-Type: application/json" \
  -d '{
    "jsonrpc": "2.0",
    "method": "tools/call",
    "id": 2,
    "params": {
      "name": "thinkneo_provider_status",
      "arguments": {"provider": "openai"}
    }
  }'
```

### Check AI spend (requires Bearer token):

```bash
curl -X POST https://mcp.thinkneo.ai/mcp \
  -H "Content-Type: application/json" \
  -H "Authorization: Bearer <YOUR_API_KEY>" \
  -d '{
    "jsonrpc": "2.0",
    "method": "tools/call",
    "id": 3,
    "params": {
      "name": "thinkneo_check_spend",
      "arguments": {
        "workspace": "prod-engineering",
        "period": "this-month",
        "group_by": "provider"
      }
    }
  }'
```

### Evaluate a prompt against guardrails (requires Bearer token):

```bash
curl -X POST https://mcp.thinkneo.ai/mcp \
  -H "Content-Type: application/json" \
  -H "Authorization: Bearer <YOUR_API_KEY>" \
  -d '{
    "jsonrpc": "2.0",
    "method": "tools/call",
    "id": 4,
    "params": {
      "name": "thinkneo_evaluate_guardrail",
      "arguments": {
        "text": "Summarize this document for me",
        "workspace": "prod-engineering",
        "guardrail_mode": "enforce"
      }
    }
  }'
```

---

## Self-hosted Deployment

### Prerequisites

- Docker + Docker Compose
- Nginx reverse proxy (for HTTPS)

### Quick start

```bash
git clone https://github.com/thinkneo-ai/mcp-server.git
cd mcp-server

# Configure environment
cp .env.example .env
# Edit .env: set THINKNEO_MCP_API_KEYS and THINKNEO_API_KEY

# Build and start
docker compose up -d

# Verify
curl -X POST http://localhost:8081/mcp \
  -H "Content-Type: application/json" \
  -d '{"jsonrpc":"2.0","method":"tools/list","id":1,"params":{}}'
```

### Nginx configuration (HTTPS at mcp.thinkneo.ai)

```nginx
server {
    listen 443 ssl;
    server_name mcp.thinkneo.ai;

    ssl_certificate /etc/letsencrypt/live/mcp.thinkneo.ai/fullchain.pem;
    ssl_certificate_key /etc/letsencrypt/live/mcp.thinkneo.ai/privkey.pem;

    location /mcp {
        proxy_pass http://127.0.0.1:8081/mcp;
        proxy_http_version 1.1;
        proxy_set_header Host $host;
        proxy_set_header X-Real-IP $remote_addr;
        proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
        proxy_set_header X-Forwarded-Proto $sc