GateAgent GuardProtocolStandardsMCPGovGuardSovereigntyFinGuardQuorumDemoTry itVerifyPricingDocsRequest Pilot
EMILIA FIRE DRILL · REPORT
Fix PR open

tensorfeed

external dispatch / webhookrepository ↗

Dangerous action found

create_watchregisters a premium webhook watch and spends a paid credit.

// mcp-server/src/index.ts  ·  registerTool(create_watch) handler (~line 1793)
const data = await fetchJSON(/premium/watches, { method: POST, body, auth: true });

Currently: runs unguarded — create_watch registers a webhook callback and spends a credit with no human authorization over the callback_url + type.

Proposed fix — Receipt Required

Wrap the top of the create_watch async handler with @emilia-protocol/require-receipt so it refuses to register the webhook + spend the credit without a receipt covering type + callback_url.

Result after patch (RR-1):

1Missing receiptblocked — 428 Receipt Required
2Valid receiptregisters once, receipt consumed
3Replayed receiptrefused — one-time consumption
4Forged receiptrefused — signature / action-binding fails
View the fix PR ↗What is RR-1?Receipt Required: RR-1

Scope: this is a static reference-implementation assessment of a missing human-authorization receipt on one irreversible action, derived from the repository’s public source. It is not a vulnerability report, not a claim the action is exploitable, and not auth or permissions. Maintainer active (last push 2026-06-29); report intended to go live alongside a fix PR.

Fire Drill: tensorfeed — create_watch | EMILIA | EMILIA Protocol