This project provides a plugin-based gateway for orchestrating Model Context Protocol (MCP) servers, enabling developers to build enterprise-grade AI agents. It centralizes AI infrastructure, offering features like request/response interception for data sanitization, a unified interface for MCP discovery, and security scanning for MCP servers.

How It Works

The MCP Gateway acts as an intermediary, reading server configurations from mcp.json and managing the lifecycle of proxied MCP servers. It intercepts requests and responses, applying security guardrails (like PII masking, token masking, prompt injection prevention) via plugins such as basic, presidio, and lasso. The xetrack plugin provides experiment tracking and monitoring capabilities, logging interactions to a database for analysis. A Security Scanner component analyzes MCP server reputation and tool descriptions before loading, blocking risky servers.

Quick Start & Requirements

• Installation: pip install mcp-gateway
• Usage: mcp-gateway --mcp-json-path <path_to_mcp.json> -p <plugin_name>
• Prerequisites: Python. Optional dependencies for plugins (e.g., pip install mcp-gateway[presidio]). Docker is also supported for building images.
• Configuration: Requires an mcp.json file to define proxied servers and gateway arguments.
• Documentation: Plugin System Documentation available.

Highlighted Details

• Guardrails: Supports basic (token masking), presidio (PII masking), and lasso (comprehensive security, including prompt injection).
• Tracing: xetrack plugin logs interactions to SQLite for debugging and analysis, queryable via CLI or Python.
• Security Scanner: Analyzes server reputation and tool descriptions, automatically blocking risky MCPs.
• Extensibility: Plugin-based architecture allows for custom guardrails and integrations.

Maintenance & Community

The project is maintained by lasso-security. Links to community channels or roadmaps are not explicitly provided in the README.

Licensing & Compatibility

• License: MIT
• Compatibility: Permissive MIT license allows for commercial use and integration with closed-source applications.

Limitations & Caveats

The presidio plugin requires separate installation. The lasso plugin requires an external API key. Detailed performance benchmarks or specific resource requirements are not provided.