Public demo
Paste a tool manifest. See the preflight decision.
This server-side demo classifies a sample MCP/tool manifest, highlights dangerous paths, and returns a realistic Hekate-style allow, warn, or block result.
Running server-side preflight...
The public demo runs through a lightweight server-side heuristic and does not create a production security receipt. Production Hekate checks require server-side evidence capture, policy identity, signer identity, and verifiable receipt signatures.