MCP API Reference
OntoRamp exposes eleven tools across three MCP plugins: Knowledge Graph (governance and compliance search), Governance Evaluator (maturity gap analysis and document validation), and Projection Engine (governance assessment and domain-level findings). All tools are available via the MCP Streamable HTTP transport; legacy SSE-named aliases remain supported. This page documents every tool's parameters and response shape.
Authentication
Every request requires an API key. Pass it in the Authorization header as a Bearer token (recommended), or as a query parameter on the legacy connection URL.
# Streamable HTTP endpoint (recommended)
POST https://mcp.ontoramp.com/{plugin}/mcp
Authorization: Bearer YOUR_API_KEY
# Legacy alias (query-parameter auth, still supported)
POST https://mcp.ontoramp.com/{plugin}/sse?api_key=YOUR_API_KEYReplace {plugin} with one of: knowledge-graph, governance-evaluator, projection-engine.
Knowledge Graph
semantic_search
Search governance and compliance knowledge by meaning. Use for SOC 2 readiness research, ISO 27001 control mapping, architecture maturity analysis, and AI governance assessment.
PARAMETERS
RESPONSE
{
"results": [
{
"chunk_id": "uuid",
"content": "...",
"similarity": 0.87,
"domain": "governance",
"source_path": "...",
"document_title": "..."
}
],
"total": 10,
"query_embedding_ms": 42
}keyword_search
Search for specific framework requirements, named controls, and regulatory terminology. Exact-match search across the governance knowledge base.
PARAMETERS
RESPONSE
{
"results": [
{
"chunk_id": "uuid",
"content": "...",
"rank": 0.92,
"domain": "governance",
"source_path": "...",
"headline": "...matched <b>term</b>..."
}
],
"total": 10
}hybrid_search
Combined semantic and keyword search for highest-relevance results. Use for compliance gap assessment, governance maturity analysis, and cross-framework research.
PARAMETERS
RESPONSE
{
"results": [
{
"chunk_id": "uuid",
"content": "...",
"rrf_score": 0.034,
"semantic_rank": 2,
"keyword_rank": 5,
"domain": "governance"
}
],
"total": 10
}entity_search
Search governance entities — governance concepts, patterns, systems, and roles — and their relationships. Find specific governance structures and how they connect.
PARAMETERS
RESPONSE
{
"entities": [
{
"entity_id": "uuid",
"name": "Data Governance Board",
"entity_type": "organization",
"similarity": 0.91,
"chunk_count": 12,
"linked_chunks": ["uuid", "uuid"]
}
],
"total": 10
}edge_traversal
Trace governance dependencies and control relationships. Follow connections like governs, constrains, implements, and audits across the governance landscape.
PARAMETERS
RESPONSE
{
"nodes": [
{
"id": "uuid",
"type": "chunk | entity",
"label": "...",
"domain": "governance"
}
],
"edges": [
{
"source": "uuid",
"target": "uuid",
"type": "governs",
"weight": 0.85
}
],
"depth_reached": 2
}Governance Evaluator
get_maturity_gap
Assess governance maturity gaps across 7 domains. Returns structured gap analysis with control coverage, identified weaknesses, and remediation priorities. Use for SOC 2 readiness, ISO 27001 gap analysis, NIST CSF assessment, and digital transformation readiness.
PARAMETERS
RESPONSE
{
"current_tier": "S2",
"target_tier": "S3",
"overall_gap": 0.34,
"domain_scores": [
{
"domain": "governance",
"current": 0.72,
"target": 0.85,
"gap": 0.13,
"top_gaps": ["Decision authority mapping", "Escalation path coverage"]
}
],
"recommended_actions": ["..."]
}lint_document
Validate any governance document against known frameworks and standards. Checks control coverage, domain alignment, and vocabulary consistency. Use for audit readiness assessment, policy review, and compliance documentation validation.
PARAMETERS
RESPONSE
{
"entity_coverage": {
"found": 14,
"known": 11,
"unknown": 3,
"coverage_ratio": 0.79
},
"domain_alignment": {
"primary": "governance",
"secondary": "security",
"confidence": 0.88
},
"vocabulary_issues": [
{
"term": "data steward",
"suggestion": "Data Governance Steward",
"reason": "Canonical entity name in knowledge graph"
}
]
}generate_brief
Generate evidence-linked governance briefs with full source citations. Use for board readiness reports, technology due diligence summaries, and compliance documentation.
PARAMETERS
RESPONSE
{
"brief": "...",
"sources": [
{
"chunk_id": "uuid",
"excerpt": "...",
"domain": "governance",
"document_title": "...",
"relevance": 0.91
}
],
"domains_covered": ["governance", "security"],
"confidence": 0.84
}Projection Engine
get_simulation_status
Check governance assessment progress and results. Returns domain-level maturity scores, overall posture, and assessment completion status.
PARAMETERS
RESPONSE
{
"run_id": "uuid",
"status": "complete",
"overall_score": 78.5,
"ladder_position": "Structured Governance",
"coherence": "stable",
"domain_scores": {
"identity": 82.0,
"structure": 76.4,
"governance": 88.1,
"execution": 79.3,
"market": 65.0
},
"created_at": "2026-04-06T10:00:00Z"
}get_decision_packets
Retrieve domain-level governance assessment findings with evidence, rationale, and confidence levels. Each finding includes specific gaps and recommended actions.
PARAMETERS
RESPONSE
{
"packets": [
{
"domain": "governance",
"verdict": "APPROVE",
"confidence": 0.917,
"score": 91.7,
"rationale": "...",
"evidence_refs": ["chunk_uuid", "chunk_uuid"],
"flags": []
}
],
"run_id": "uuid",
"total_packets": 6
}run_projection
Run a new governance maturity assessment. Evaluates your governance landscape and produces domain-level findings with remediation priorities.
PARAMETERS
RESPONSE
{
"run_id": "uuid",
"status": "pending",
"gate": "latest",
"estimated_duration_ms": 3000,
"message": "Projection queued. Poll get_simulation_status for results."
}Rate limits
When a request is rate-limited, the rejection itself is the signal — an HTTP 429 response or an in-band RATE_LIMITED error in the tool result, depending on the plugin. Responses do not carry X-RateLimit-* headers; on a rejection, back off and retry after the reset.
Hitting the free-tier quota? Org tier is unlimited at a flat monthly rate — see plugin pricing.