Know the moment your MCP server's tools change

On 30 June 2026, Microsoft Incident Response warned that silently updated MCP tool descriptions can steer AI agents into exfiltrating data through routine, approved tool calls — the MCPTox benchmark puts attack success at 72.8%. Microsoft's prescribed defense: baseline tool descriptions and schemas, and treat any change as a review event.

That is exactly what this does. Dominion baselines your server's tools/list manifest, re-checks it every ~20 minutes, and fires a webhook the moment a description, schema, or tool set changes — with a diff of what changed. Every change is also recorded in a signed, tamper-evident attestation trail you can pull anytime.

Alerts by email (to your billing email) and webhook if you add one below. Every change is also always visible on your server's live drift page and via /api/drift, with a signed attestation trail.

$29/month per server · self-serve · cancel anytime via Stripe.

What you get

Free tier

Every tracked server gets baselined opportunistically on the fleet-wide sweep, and /api/drift is free to query. The subscription buys cadence (~20 min vs whenever the sweep reaches you) and alerts (push, not poll).

Honest by design

Drift detection tells you the manifest changed and what changed — it does not judge whether the change is malicious; that review is yours. Not a security audit or a guarantee. Independent, third-party; not affiliated with the Model Context Protocol project or Microsoft.