// MCP TOOL REFERENCE

FEDRAMP 20X REQUIREMENTS TOOLS

33 tools from the FedRAMP 20x Requirements MCP Server, categorised by risk level.

View the FedRAMP 20x Requirements policy →

// ALL 33 FEDRAMP 20X REQUIREMENTS TOOLS

READ 33 tools

Read all Enterprise architecture assessment for all 72 KSIs Read application_context Profile metadata and active capabilities Read category Enterprise assessment for a KSI category Read Code-Detectable Requirements validatable through code analysis Read context_filtered_count Number of findings suppressed by context filtering Read dependencies_checked Number of dependencies analysed Read findings Compliance findings with severity and recommendations Read KSI-AFR-01 Assess automated vulnerability scanning tools Read KSI-AFR-02 Assess security finding remediation processes Read KSI-CED-01 Assess continuous evidence collection practices Read KSI-CMT-01 Assess change management automation in CI/CD Read KSI-CMT-02 Assess deployment procedures and approval gates Read KSI-CMT-03 Assess automated testing in CI/CD pipeline Read KSI-CNA-03 Assess microservices security and mTLS config Read KSI-CNA-07 Assess service mesh security configuration Read KSI-IAM-01 Assess API authentication and authorisation Read KSI-IAM-04 Assess least privilege access controls Read KSI-IAM-05 Assess service account and managed identity usage Read KSI-IAM-07 Assess session management and token security Read KSI-MLA-05 Assess diagnostic logging configuration Read KSI-PIY-01 Assess automated inventory and asset tracking Read KSI-PIY-02 Assess security objectives documentation Read KSI-PIY-03 Assess documentation requirements compliance Read KSI-SVC-01 Assess security evaluation and improvements Read KSI-SVC-02 Assess network encryption and TLS config Read KSI-SVC-05 Check for vulnerable libraries and unsafe functions Read KSI-SVC-06 Scan for hardcoded passwords, API keys, certs Read KSI-SVC-07 Assess patching and vulnerability remediation Read minimal Quick-start architecture assessment for pilots Read pr_comment Formatted markdown for PR comments Read Process-Based Requirements requiring manual review Read single-ksi Production architecture assessment for one KSI Read summary Counts of high/medium/low priority compliance issues

// RUNNING THIS SERVER

The managed route: connect FedRAMP 20x Requirements through the PolicyLayer gateway — every tool call above is checked against your policy before it runs, with a full audit log.

DIRECT INSTALL (UNMANAGED) npx -y pypi:fedramp-20x-mcp

// FAQ

How many tools does the FedRAMP 20x Requirements MCP server have? +

The FedRAMP 20x Requirements MCP server exposes 33 tools across 1 categories: Read.

How do I enforce policies on FedRAMP 20x Requirements tools? +

Route the FedRAMP 20x Requirements server through the PolicyLayer gateway. Define allow, deny, or approval rules per tool in the dashboard — they are enforced on every call before it reaches the server.

What risk categories do FedRAMP 20x Requirements tools fall into? +

FedRAMP 20x Requirements tools are categorised as Read (33). Each category has a recommended default policy.

Let agents act without letting them run wild.

Route your MCP servers through PolicyLayer and every tool call is checked against your policy before it runs — allow, deny, or require approval. Per-identity grants. Full audit log. Live in minutes.

SECURE YOUR MCP →

Free to start. No card required.

4,600+ MCP servers and 31,000+ tools scanned and risk-classified.