{
  "$schema": "https://modelcontextprotocol.io/schemas/server-card/2025-10.json",
  "serverInfo": {
    "name": "turva-mcp",
    "title": "turva.dev",
    "version": "1.0.0",
    "description": "Public read-only MCP server for turva.dev. Exposes service catalog, own-domain security scan evidence, and service-model principles. No authentication, no write operations."
  },
  "transport": {
    "type": "streamable-http",
    "endpoint": "https://mcp.turva.dev/mcp"
  },
  "capabilities": {
    "tools": {
      "listChanged": true
    },
    "resources": {
      "listChanged": false,
      "subscribe": false
    },
    "prompts": {
      "listChanged": false
    }
  },
  "meta": {
    "homepage": "https://turva.dev/",
    "mcpEndpoint": "https://mcp.turva.dev/mcp",
    "openapi": "https://turva.dev/.well-known/openapi.json",
    "agentSkills": "https://turva.dev/.well-known/agent-skills/index.json",
    "apiCatalog": "https://turva.dev/.well-known/api-catalog",
    "llmsTxt": "https://turva.dev/llms.txt",
    "llmsFullTxt": "https://turva.dev/llms-full.txt",
    "contact": "info@turva.dev",
    "languages": [
      "fi",
      "en"
    ],
    "tools": [
      {
        "name": "get_services",
        "description": "Service catalog with inclusions and exclusions."
      },
      {
        "name": "get_security_evidence",
        "description": "Latest public security scan results for turva.dev (Internet.nl, Hardenize)."
      },
      {
        "name": "get_principles",
        "description": "Service-model principles: guided self-service, no password sharing, no remote access, satisfaction guarantee."
      }
    ]
  }
}