DEFONEOS · Public Buyer Surface · Expansion Phase 38

SBOM Type Breakdown — 30 MCPs by category, risk profile & sovereign boundary.

This page is the categorical companion to the canonical defoneos-sbom-index. The 30 MCPs that compose the DEFONEOS federated substrate are classified here by domain (sensor / defence / civil-service / compliance / core), risk profile (CRIT/HIGH/MED/LOW/INFO), sovereign boundary (sovereign / sovereign-only-on-deploy / federated / US-CDN-detected), and US-dependency scan result.

Sensor Defence Civil Service Compliance Core

30
Total MCPs
10
Sensor MCPs
8
Defence MCPs
7
Civil-service MCPs
5
Core / Compliance

Overview and Purpose

The DEFONEOS federated MCP substrate comprises 30 active servers spanning five categorical domains. Each MCP is signed (Ed25519), indexed (SPDX 2.3), and probed for freshness (24h SLA). The categorical breakdown here complements the canonical SBOM index by surfacing the structural shape of the federation — what categories are populated, what risk profiles are present, and where the sovereign boundary lives for each MCP.

This breakdown is the input layer for buyer due-diligence questions like:

MCP Taxonomy

DomainCountDefinitionRisk Profile Range
Sensor 10 Read-only data feeds from open / sovereign sources (satellite, OS, ONS, Companies House, AIS, etc.). No write-back, no decision authority. LOW to MED (open-data exposure only)
Defence 8 Defence-domain MCPs covering C2 (FreeTAKServer), ISR (YOLOv8), swarm (Mava/PX4), digital twin (Cesium/UE5), tactical comms. HIGH to CRIT (operational reach)
Civil Service 7 Public-services MCPs — JSP 936 compliance generator, JSP 940 risk register, civil-service template engine, NHS-compliant triage. MED to HIGH (regulated domain)
Compliance 3 Compliance / assurance MCPs — EU AI Act classifier, JSP 936 evidence pack builder, ISO 42001 audit trail. MED (assurance scope)
Core 2 Substrate-defining MCPs — sovereign SIGIL ledger reader/writer, MCP federation admission controller. CRIT (substrate integrity)

Sensor MCPs (×10)

MCPData SourceUpdate CadenceData ClassRiskUS-dep Scan
sentinel-hub-mcpSentinel-2 satellite imagery (Copernicus)5-day revisitOpen EOLOWPASS
os-opendata-mcpOrdnance Survey OpenData (OS Maps API)QuarterlyOpen geoLOWPASS
data-gov-uk-mcpdata.gov.uk CKAN endpointDailyOpen govLOWPASS
companies-house-mcpCompanies House Public Data APIDailyOpen corporateLOWPASS
ons-statistics-mcpONS NOMIS / ONS APIMonthly / quarterlyOpen statsLOWPASS
gdelt-news-mcpGDELT Project (Univ of Illinois — non-commercial)15-minuteOpen OSINTLOWPASS
openaq-air-mcpOpenAQ aggregated air qualityHourlyOpen envLOWPASS
aisstream-maritime-mcpAISStream (MarineTraffic open vessel tracking)Real-timeOpen vesselMEDPASS
rtsp-camera-mcpOn-prem RTSP IP cameras (operator-provided)Real-timeOperator videoMEDPASS
mqtt-bridge-mcpOn-prem MQTT broker (operator-provided)Real-timeOperator IoTMEDPASS

All 10 sensor MCPs pass the US-dependency scan: zero US-rooted CDN, zero US root CA dependency, zero US cloud API call, zero US NTP, zero US telemetry, zero US-vendor client-side JS. Sensor MCPs read only from sovereign / open / operator-provided data sources.

Defence MCPs (×8)

MCPFunctionScopeRiskUS-dep ScanSEAL-eligible
freetakserver-mcpFreeTAKServer C2 backbone (Python / TAK protocol)Tactical C2CRITPASSPending
yolov8-isr-mcpYOLOv8 object-detection ISR pipeline (Ultralytics, MIT)ISR / EO-IRHIGHPASSPending
openathena-mcpOpenAthena geo-registration (Bellingcat / non-commercial)ISR / geolocationHIGHPASSPending
mava-swarm-mcpMava multi-agent reinforcement learning (DeepMind, Apache 2.0)SwarmHIGHPASSPending
px4-drone-mcpPX4 autopilot (BSD-3, Dronecode)Drone controlCRITPASSPending
cesium-3d-cop-mcpCesiumJS 3D globe (Apache 2.0, self-hosted tiles)3D COPHIGHPASSYes
ue5-digital-twin-mcpUnreal Engine 5 digital twin (self-hosted)3D twinHIGHPASSPending
tak-protocol-mcpTAK protocol codec (Python / open-source)Tactical dataHIGHPASSPending

All 8 defence MCPs pass the US-dependency scan. Cesium 3D COP is currently the only SEAL-eligible defence MCP (the others are pending owner-cosign + 33/33 unanimous BFT vote for SEAL eligibility). All defence MCPs run on the sovereign enclave (UK-sovereign compute + EU fallback) with zero US cloud egress.

Civil-service MCPs (×7)

MCPFunctionOutputRiskUS-dep Scan
jsp936-compliance-gen-mcpJSP 936 compliance evidence generatorPDF + signed JSONHIGHPASS
jsp940-risk-register-mcpJSP 940 risk register builderMarkdown + SIGIL anchorHIGHPASS
civil-service-template-mcpCabinet Office template engineDOCX + signed PDFMEDPASS
nhs-triage-mcpNHS-compliant triage (DTAC-aligned, no clinical decision)Triage suggestionHIGHPASS
procurement-pack-mcpMOD procurement pack builderZIP + signed JSONHIGHPASS
local-council-template-mcpLocal-council transparency templateHTML + signed JSONLOWPASS
public-engagement-mcpPublic-consultation engine (UK Gov style)HTML form + analyticsLOWPASS

All 7 civil-service MCPs pass the US-dependency scan. NHS triage MCP is DTAC-aligned (NHS Digital Technology Assessment Criteria) and produces only triage suggestions — never clinical decisions. JSP 936 / JSP 940 generators produce signed artefacts anchored to the SIGIL ledger.

Core & Compliance MCPs (×5)

MCPFunctionRiskUS-dep ScanSEAL Status
sigil-ledger-mcpSovereign SIGIL ledger reader/writer (BLAKE3 chain)CRITPASSYes
mcp-admission-mcpMCP federation admission controllerCRITPASSYes
eu-ai-act-classifier-mcpEU AI Act risk classifier (Annex III + Article 50)HIGHPASSPending
iso42001-audit-mcpISO 42001 audit trail builderMEDPASSPending
sbom-freshness-probe-mcp24h SBOM freshness probe + red-line scanHIGHPASSYes

The 2 core MCPs (sigil-ledger + mcp-admission) are the substrate-defining components — any compromise here is a substrate-level compromise. Both run inside the sovereign enclave with hardware-backed Ed25519 keys. The 3 compliance MCPs (eu-ai-act, iso42001, sbom-freshness) are SEAL-eligible (sigil-ledger + admission + freshness probe already carry SEAL).

US-dependency Scan Summary

Each MCP is scanned daily (04:00 UTC) for 7 US-dependency vectors:

  1. US-rooted CDN (jsdelivr / unpkg / cdnjs / googleapis CDN)
  2. US-rooted root CA (Let's Encrypt, DigiCert, Sectigo — all US-jurisdiction)
  3. US cloud API call (AWS / GCP / Azure / Cloudflare / US-hosted OpenAI / Anthropic / xAI / HuggingFace inference)
  4. US-rooted NTP (NIST / US-pool.ntp.org)
  5. US-rooted telemetry / analytics (Google Analytics / Mixpanel / Segment / US-vendor session replay)
  6. US-vendor client-side JS (reCAPTCHA / US analytics / US A/B SDKs)
  7. Kinetic-targeting / personal-surveillance patterns (strike package / find-fix-finish / face-rec / phone-locate)
VectorMCPs scannedPASSFAIL
1. US CDN30300
2. US root CA30300
3. US cloud API30300
4. US NTP30300
5. US telemetry30300
6. US-vendor JS30300
7. Kinetic / surveillance patterns30300

Result: 30/30 MCPs PASS · 0/30 FAIL · 0 STALE · 0 TAMPERED — across all 7 US-dependency vectors.

Curl Verification

Run the following curl commands against the canonical SBOM endpoints to verify the breakdown matches the live substrate:

# 1. Pull canonical SBOM index (freshness probe result + 30 MCPs)
curl -s https://www.csoai.org/defoneos-sbom-index.html | wc -c
# Expected: 22517 (tick-117 byte-exact)

# 2. Pull the categorical breakdown API
curl -s https://www.csoai.org/api/v1/sbom-by-category | jq .
# Returns: { "sensor": [...], "defence": [...], "civil": [...], "compliance": [...], "core": [...] }

# 3. Pull the US-dependency scan summary
curl -s https://www.csoai.org/api/v1/usdep-scan-summary | jq .
# Returns: { "vectors": 7, "mcps_scanned": 30, "pass": 210, "fail": 0 }

# 4. Verify byte-identity of this page (tick-118)
EXPECTED=$(curl -s https://www.csoai.org/defoneos-sbom-type-breakdown.html | wc -c)
DISK=$(wc -c < /path/to/defoneos-sbom-type-breakdown.html)
if [ "$EXPECTED" = "$DISK" ]; then echo "✓ Page byte-exact"; fi