Vikstra
Coming Soon

MCP Server for ServiceNow

Token-minimal ServiceNow integration with OAuth 2.1 + PKCE, client-side PII tokenisation, policy-pack governance, and a hybrid data plane that keeps customer records on the developer's machine.

Key Features

Why Choose Vikstra MCP Server?

Built for the latest MCP spec, projected for token efficiency, and locked down by signed policy packs out of the box.

Consolidated Tool Surface

≤20 default tools (sn_record, sn_aggregate, sn_attachment, sn_incident_action, sn_approval_action, sn_catalog, sn_cart, sn_order, sn_knowledge, sn_script_include, sn_import_set, …). Legacy per-CRUD names stay as aliases.

OAuth 2.1 + PKCE

Browser-based authorisation flow against the SN instance, refresh tokens kept in an AES-GCM keychain vault. Basic auth + env-var overrides stay as the CI fallback.

Resources + Prompts

sn:// URIs for stable references (dictionary, catalog item, KB, scope, policy) so the model never burns a tool call to hydrate context. Five named prompts compose the common ITSM workflows.

Token-Efficient Output

Shape-aware encoders pick TOON for uniform lists, Markdown-KV for single-record reads, JSON when sparse. Reference dedup table + projection floor save 30–60% tokens vs raw JSON.

PII Vault + Tokenisation

Per-session deterministic-tokenisation vault. Outbound control-plane payloads ship as typed tokens (usr_*, eml_*, phn_*); plaintext stays on the developer's machine.

Policy-Pack Governance

Signed JSON bundles fetched from the control plane with Ed25519 verification + offline grace cache. Built-in HIPAA, SOX, FedRAMP-moderate and pdi-permissive packs.

Schema-Aware Scripting

sn_script_lint flags misspelled GlideSystem methods, cross-scope GlideRecord access, hard-coded sys_ids, and client/server API mix. SDK-app mode scaffolds + validates + dry-runs deploys.

Hybrid Data Plane

Customer-record bytes never traverse Vikstra cloud. The local binary talks directly to the SN instance; control plane only sees license, signed policy bundles, anonymous counters, and (optional) tokenised draft prompts.

Deferred Tool Loading

vk_tool_search lets agents discover specialist tools (diff, bulk, CMDB, semantic search) on demand instead of holding the full catalogue in context up-front.

Technical Specifications

Built On the 2025-11-25 MCP Spec

Server metadata, elicitation, completions, task durability, sampling, deferred tool loading — every Tier 0/1/2 primitive wired where it makes sense.

  • MCP 2025-11-25 spec: elicitation, completions, icons, tasks, sampling, scope consent
  • ≤20 default tools with output schemas + per-tool icons; specialists opt in via URL path
  • URL-path toolset filtering: /mcp/x/{service_desk|developer|cmdb|platform|all}[/{readonly|admin}]
  • Lockdown mode hides records the caller's SN role doesn't own — blunts prompt-injection
  • Per-session PII vault with typed class tokens (usr_, eml_, phn_, ssn_, cc_, iban_, cmdb_, …)
  • Signed policy bundles (Ed25519) + offline grace + air-gapped customer-key mode
  • OAuth 2.1 + PKCE login, AES-GCM keychain vault, secret references (op://, doppler://, infisical://)
  • Semantic index (BM25 + cosine RRF) over the official ServiceNow-published markdown docs + local SDK-app indexing
  • Cross-instance scope diff, dry-run bulk patch, test-record factories, CMDB graph traversal
  • Token-aware output: TOON / Markdown-KV / JSON auto-select + dedup table + deterministic summary
  • On-disk file cache by default (Redis when configured)
Single-Binary Setup

vikstra-mcp ships with subcommands for the full dev loop

Alpha Release
≤20
Default Tools
OAuth 2.1
+ PKCE
30-60%
Token Saving
vikstra-mcp
# 1. Authenticate against your SN instance
$ vikstra-mcp oauth login acme.service-now.com
# 2. Pull policy + index the official ServiceNow docs
$ vikstra-mcp policy pull
$ vikstra-mcp index --sn-docs
# 3. Wire into Claude / Cursor / VS Code
{
"mcpServers": {
"vikstra": {
"command": "vikstra-mcp",
"args": ["serve"],
"env": {
"VIKSTRA_TOOLSETS": "service_desk",
"VIKSTRA_POLICY_PACK": "sox-baseline"
}
}
}
}
# Consolidated tools (≤20 default):
- sn_record (read | list | create | update | delete | duplicate)
- sn_aggregate, sn_attachment, sn_knowledge
- sn_incident_action, sn_approval_action
- sn_catalog, sn_cart, sn_order
- sn_script_include, sn_import_set
- sn_sdk_scaffold | validate | deploy (dry-run)
- sn_script_lint, sn_search_docs, sn_diff, sn_bulk, sn_cmdb_ask
- vk_tool_search, vk_task_submit | get | cancel | list
Built for Token Cost

30–60% Fewer Output Tokens by Default

Every tool response runs through a shape-aware encoder, a projection floor, and an optional reference-dedup table. No server-side LLM, no extra latency, no $ on every response.

TOON encoder

Tabular Token-Oriented Notation for ≥3 uniform records. Declares columns once, streams rows. ~40% smaller than JSON on list responses.

Markdown-KV singles

Single-record reads emit `key: value` lines with `|` block indicators for multiline. ~30% smaller than JSON on single-record reads.

Reference dedup

Repeated display values (assigned_to, group, CI) collapse into a refs table referenced by short @N aliases. Saves ~20% on large lists.

Deterministic summary

?mode=summary returns count + by-state/by-priority/by-group buckets + top-N labels. No model in the loop, ~85% smaller than full payload.

Measure It

vikstra-mcp budget show

Per-tool byte and estimated-token tally is captured automatically. Validate the savings in your own traffic without wiring a real model.

TOOL              CALLS  BYTES_OUT  TOKENS≈
sn_record           412     186 432   46 608
sn_aggregate         93      28 776    7 194
sn_knowledge         67      71 480   17 870
Real-World Applications

ServiceNow Integration Scenarios

From day-to-day ITSM triage to SDK-app PR reviews — Vikstra ships the tools, prompts, and governance to make AI a useful collaborator on every flow.

Named workflow: /sn-triage
AI-Assisted Incident Triage

Pull the record, find related KB articles, look up similar resolved incidents, draft a work note. One prompt composes the chain end-to-end with PII tokenised before any control-plane call.

Key Capabilities:

  • Auto-categorise via deterministic by_state grouping
  • KB citations from the local + ServiceNowDocs index
  • Top-N similar incidents in summary mode (≤25% tokens)
  • Elicitation prompt before write — no silent updates
Primary Tools:
sn-triage promptsn_recordsn_search_docssn_incident_action
Named workflow: /sn-pr-review
Scoped App PR Review

Diff the committed SDK app against the deployed scope on dev/uat/prod, lint every script, surface schema and coverage gaps. Deploy preview is dry-run by default.

Key Capabilities:

  • sn_diff at sys_metadata level across instances
  • sn_script_lint flags gs.* typos + cross-scope GlideRecord
  • sn_sdk_validate + sn_sdk_deploy --dry-run baseline
  • Roots integration picks up the active app from the client
Primary Tools:
sn-pr-review promptsn_diffsn_sdk_validatesn_script_lint
Named workflow: /sn-change-prep
Change Advisory Board Pack

Pull the change window, walk related CIs via CMDB traversal, attach relevant KB references, generate a CAB-ready summary. SOX policy pack elicits on every production write.

Key Capabilities:

  • sn_cmdb_ask traversal to configurable depth
  • SOX baseline: writes elicit, destructive needs sox_cab role
  • Tokenised drafting on the client's sampling endpoint
  • Per-tool byte budget so the pack fits the response window
Primary Tools:
sn-change-prep promptsn_cmdb_asksn_recordsampling
Token-aware reads at scale
Bulk + Aggregate Analytics

Aggregations and dry-run bulk patches run with progress notifications and ctx cancellation. Long-running jobs go through the durable task surface.

Key Capabilities:

  • sn_aggregate count/sum/avg/max/min/multi with output schema
  • sn_bulk dry-run preview before apply (elicit-gated)
  • vk_task_submit returns immediately, vk_task_get polls
  • Reference dedup collapses repeat assignees/groups
Primary Tools:
sn_aggregatesn_bulkvk_task_submitsn_record
Hybrid Data Plane

Where Bytes Actually Go

Customer records stay on the developer's machine. The control plane only ever sees what is explicitly listed below.

01

OAuth login

PKCE flow to the SN instance, refresh token in keychain

02

Direct to SN

Tool calls hit the customer instance straight from the local binary

03

Policy eval

Signed bundles fetched from control plane, evaluated locally

04

Tokenised cloud calls

Optional control-plane features ship PII-tokenised; plaintext stays local

Governance

Policy Packs Ship In-Binary

Air-gapped customers can run signed bundles without ever calling the control plane. Vertical packs cover the common compliance baselines; author your own with vikstra-mcp policy new.

pdi-permissive

Developer-only baseline. All tools allowed for local PDIs.

hipaa-baseline

PHI access requires hipaa_clinician/hipaa_admin. Writes elicit. No bulk over PII/PHI.

sox-baseline

Production writes elicit. Destructive ops need sox_cab. Immutable audit.

fedramp-moderate

Deny-by-default with region pinning. FIPS-validated crypto fallback path.

Early Access Program

Early Access to ServiceNow MCP Integration

Join the alpha program to test ServiceNow MCP Server integration and shape the roadmap for token-aware, policy-governed AI workflows.

Early Access

Join the alpha program

First access to consolidated tools, prompts, resources
Direct influence on roadmap and policy-pack marketplace
Priority support direct from the engineering team
Early access docs and `vikstra-mcp budget` validation

Schedule Demo

See it in action

Live walkthrough of /sn-triage and /sn-pr-review
Custom integration scenarios on your scoped app
Policy-pack authoring and air-gapped deployment story
Token-budget numbers from your own response shapes
Mission Control
The Vikstra equivalent of ServiceNow AI Control Tower — Fleet, Trace, Govern, Secure, Spend.
Read the overview →
Coming Soon
Limited Early Access Spots
Signed Policy Packs + Hybrid Data Plane