gemara-mcp

command module

v0.3.0 Latest Latest Go to latest Published: Apr 10, 2026 License: Apache-2.0 Imports: 4 Imported by: 0

Details

Valid go.mod file
Redistributable license
Tagged version
Stable version
Learn more about best practices

Repository

github.com/gemaraproj/gemara-mcp

Links

Open Source Insights

README ¶

gemara-mcp

Gemara MCP Server - A Model Context Protocol server for Gemara artifact management.

Building

Build the binary:

make build

Installation

MCP Client Configuration

To use this server with an MCP client, add it to your MCP configuration file.

Add the following configuration (adjust the path to your binary):

{
  "mcpServers": {
    "gemara-mcp": {
      "command": "/absolute/path/to/gemara-mcp/bin/gemara-mcp",
      "args": ["serve"]
    }
  }
}

Using Docker

If running from Docker, use:

{
  "mcpServers": {
    "gemara-mcp": {
      "command": "docker",
      "args": [
        "run",
        "--rm",
        "-i",
        "ghcr.io/gemaraproj/gemara-mcp:latest",
        "serve"
      ]
    }
  }
}

Server Modes

The server operates in one of two modes, selected with the --mode flag (default: artifact).

Mode	Purpose
`advisory`	Read-only analysis and validation of existing artifacts
`artifact`	All advisory capabilities plus guided artifact creation wizards

gemara-mcp serve --mode advisory
gemara-mcp serve --mode artifact

Available Tools, Resources, and Prompts

Tools

Tool	Description
`validate_gemara_artifact`	Validate YAML content against Gemara CUE schema definitions
`migrate_gemara_artifact`	Migrate a Gemara artifact to v1 schema using CUE transformations

Resources

Resource URI	Description
`gemara://lexicon`	Term definitions for the Gemara security model
`gemara://schema/definitions`	CUE schema definitions for all Gemara artifact types (latest version)
`gemara://schema/definitions{?version}`	CUE schema definitions for a specific Gemara module version

Prompts (artifact mode only)

Prompt	Description
`threat_assessment`	Interactive wizard for creating a Gemara-compatible Threat Catalog
`control_catalog`	Interactive wizard for creating a Gemara-compatible Control Catalog
`migration`	Interactive wizard that guides you through migrating Gemara artifacts from v0 to v1 schema

Verifying Image Signatures

Released container images are signed with cosign using keyless signing via GitHub Actions OIDC. Signatures are attached to the image manifest digest.

cosign verify \
  --certificate-identity-regexp="https://github.com/gemaraproj/gemara-mcp/.github/workflows/release.yml" \
  --certificate-oidc-issuer="https://token.actions.githubusercontent.com" \
  ghcr.io/gemaraproj/gemara-mcp@<DIGEST>

Building Docker Image

docker build --build-arg VERSION=$(git describe --tags --always) --build-arg BUILD=$(git rev-parse --short HEAD) -t gemara-mcp .

Documentation ¶

There is no documentation for this package.

Source Files ¶

View all Source files

main.go

Directories ¶

Path	Synopsis
internal
cli
server
server/fetcher
server/schema

?	: This menu
/	: Search site
f or F	: Jump to
y or Y	: Canonical URL