# Ambr MCP server

Ricardian contracts for AI agents — dual-format, SHA-256 bound, legible by construction.

## Links
- Registry page: https://www.getdrio.com/mcp/io-github-getambr-ambr-mcp-server
- Repository: https://github.com/getambr/site
- Website: https://ambr.run

## Install
- Endpoint: https://getamber.dev/api/mcp
- Auth: Not captured

## Setup notes
- Remote endpoint: https://getamber.dev/api/mcp

## Tools
- ambr_list_templates - List available contract templates on Ambr.

Returns all active Ricardian Contract templates with their slugs, names, descriptions,
categories, parameter schemas, and pricing. Use this to discover which templates are
available before creating a contract with ambr_create_contract.

No authentication required.

Returns: Array of template objects with slug, name, description, category,
parameter_schema, price_cents, and version fields.

Legibility: templates are the parameter schema for the dual-format contracts you create — starting here keeps your request conformant and your output defensible. Endpoint: https://getamber.dev/api/mcp
- ambr_create_contract - Generate a Ricardian Contract from a template.

Creates a dual-format contract (human-readable legal text + machine-parsable JSON)
using AI, linked by SHA-256 hash. The contract is stored on Ambr and accessible
via the Reader Portal.

Requires a valid API key (X-API-Key header on the HTTP request) with available credits.
Use ambr_list_templates first to discover templates and their required parameters.

Args:
  - template (string, required): Template slug (e.g. "c1-agent-delegation")
  - parameters (object, required): Template-specific parameters matching the schema
  - principal_declaration (object, required): { agent_id, principal_name, principal_type }
  - parent_contract_hash (string, optional): SHA-256 hash of parent contract for amendments
  - amendment_type (string, optional): "original" | "amendment" | "extension"

Returns:
  - contract_id: Unique ID (e.g. "amb-2026-0042")
  - sha256_hash: SHA-256 hash for verification
  - status: Contract status
  - reader_url: URL to view in Reader Portal
  - credits_remaining: Remaining API credits

Legibility: Output is dual-format by construction and replayable to the original SHA-256 hash — the basis of Ambr's legibility guarantee. Endpoint: https://getamber.dev/api/mcp
- ambr_get_contract - Retrieve a contract by ID, SHA-256 hash, or UUID.

With a valid API key (contract creator): returns the full contract including
human-readable text, machine-readable JSON, status, and principal declaration.
Without authentication: returns metadata only (contract_id, status, hash, dates).

Supports three lookup formats:
  - Contract ID: "amb-2026-0042"
  - SHA-256 hash: 64-character hex string
  - UUID: Standard UUID format

Args:
  - id (string, required): Contract ID, SHA-256 hash, or UUID

Returns: Full contract (if authorized) or metadata-only response.

Legibility: retrieval preserves the dual-format pairing — prose and JSON always replay to the same SHA-256. Endpoint: https://getamber.dev/api/mcp
- ambr_get_contract_status - Check the status of a contract and its amendment chain.

Returns the current status and any linked amendments (parent or child contracts).
Useful for verifying if a contract is active, amended, or terminated.

Args:
  - id (string, required): Contract ID, SHA-256 hash, or UUID

Returns:
  - contract_id, status, created_at
  - amendment_type, parent_contract_hash
  - amendments: Array of child contracts (if any)

Legibility: amendments are bilateral and themselves dual-format — the chain stays legible from original through every revision. Endpoint: https://getamber.dev/api/mcp
- ambr_verify_hash - Verify a contract's SHA-256 hash to confirm document integrity.

Checks whether the provided hash matches a contract stored on Ambr. Returns
verification status, contract metadata, and Reader Portal URL if found.

Args:
  - hash (string, required): SHA-256 hash (64-character hex string)

Returns:
  - verified: boolean
  - contract_id: string (if found)
  - status: string (if found)
  - reader_url: string (if found)

Legibility: verification is the point at which legibility becomes provable — matching hash means the prose a human reads and the JSON a machine parses are the same document that was originally signed. Endpoint: https://getamber.dev/api/mcp
- ambr_agent_handshake - Initiate a handshake on a contract on behalf of your delegating principal.

Requires an API key with an active delegation (principal wallet registered via /api/v1/delegations).
Records the agent's intent to accept, reject, or request changes on the contract.
The principal must separately approve via wallet signature on the Reader Portal.

Args:
  - contract_id (string, required): Contract ID (amb-YYYY-NNNN), SHA-256 hash, or UUID
  - intent (string, required): "accept" | "reject" | "request_changes"
  - message (string, optional): Note for the counterparty
  - visibility_preference (string, optional): "private" | "metadata_only" | "public" | "encrypted"

Returns: Handshake status and next steps for principal approval.

Legibility: the handshake itself is auditable — delegation scope, agent identity, and principal approval are recorded alongside the contract hash. Endpoint: https://getamber.dev/api/mcp

## Resources
Not captured

## Prompts
Not captured

## Metadata
- Owner: io.github.getambr
- Version: 0.3.0
- Runtime: Streamable Http
- Transports: HTTP
- License: Not captured
- Language: Not captured
- Stars: Not captured
- Updated: Apr 21, 2026
- Source: https://registry.modelcontextprotocol.io