Runtime governance for MCP tool calls — Arc Gate for the MCP protocol layer

Navigation

Verified details

These details have been verified by PyPI
Maintainers
Avatar for hannahnine from gravatar.com hannahnine

Unverified details

These details have not been verified by PyPI
Project links
Meta
  • License: AGPL-3.0
  • Author: Hannah Nine
  • Tags mcp , prompt-injection , ai-security , llm , agent , runtime-governance
  • Requires: Python >=3.10
Report project as malware

Project description

arc-gate-mcp

Runtime governance for MCP tool calls.

Arc Gate MCP sits between your agent and any MCP server. It intercepts all tool call results and enforces instruction-authority boundaries before the agent processes them.

When a tool result contains injected instructions — a poisoned document, a malicious webpage, a hostile database row — Arc Gate blocks them before they reach the agent.

Install

pip install arc-gate-mcp

Usage

Full proxy (wraps any MCP server)

from arc_gate_mcp import ArcGateMCPProxy

proxy = ArcGateMCPProxy(
    upstream_url="http://localhost:8000/sse",
    policy_mode="rag_assistant",
)
proxy.run()

Per-tool guard

from arc_gate_mcp import ArcGateToolGuard

guard = ArcGateToolGuard(policy_mode="rag_assistant")

@mcp.tool()
async def read_document(path: str) -> str:
    content = read_file(path)
    return guard.check(content, tool_name="read_document")

CLI

arc-gate-mcp --upstream http://localhost:8000/sse --policy rag_assistant

Policy modes

Mode Behavior
balanced Block on detected injection
browser_agent Strip injections, allow safe content
finance_agent Strictest — block everything suspicious
rag_assistant Strip injections, preserve safe data

License

AGPL-3.0. Commercial license available — contact 9hannahnine@gmail.com.

Related

Project details

Verified details

These details have been verified by PyPI
Maintainers
Avatar for hannahnine from gravatar.com hannahnine

Unverified details

These details have not been verified by PyPI
Project links
Meta
  • License: AGPL-3.0
  • Author: Hannah Nine
  • Tags mcp , prompt-injection , ai-security , llm , agent , runtime-governance
  • Requires: Python >=3.10

Release history Release notifications | RSS feed

0.1.4

0.1.3

0.1.2

This version

0.1.1

0.1.0

Download files

Download the file for your platform. If you're not sure which to choose, learn more about installing packages.

Source Distribution

arc_gate_mcp-0.1.1.tar.gz (7.2 kB view details)

Uploaded Source

Built Distribution

If you're not sure about the file name format, learn more about wheel file names.

arc_gate_mcp-0.1.1-py3-none-any.whl (7.8 kB view details)

Uploaded Python 3

File details

Details for the file arc_gate_mcp-0.1.1.tar.gz.

File metadata

  • Download URL: arc_gate_mcp-0.1.1.tar.gz
  • Upload date:
  • Size: 7.2 kB
  • Tags: Source
  • Uploaded using Trusted Publishing? No
  • Uploaded via: twine/6.2.0 CPython/3.12.13

File hashes

Hashes for arc_gate_mcp-0.1.1.tar.gz
Algorithm Hash digest
SHA256 553804e8021ff3816a0001eabaa801c2316f92552c3ae6576e4a33e564b01f2f
MD5 44ba62ae47b9954e698e3bc1a97fba6a
BLAKE2b-256 9b8a8e0d9e667db6a077c33e1fd244eff8cc8e87d59cc2a06d947c55325e8083

See more details on using hashes here.

File details

Details for the file arc_gate_mcp-0.1.1-py3-none-any.whl.

File metadata

  • Download URL: arc_gate_mcp-0.1.1-py3-none-any.whl
  • Upload date:
  • Size: 7.8 kB
  • Tags: Python 3
  • Uploaded using Trusted Publishing? No
  • Uploaded via: twine/6.2.0 CPython/3.12.13

File hashes

Hashes for arc_gate_mcp-0.1.1-py3-none-any.whl
Algorithm Hash digest
SHA256 590c6583a04d6faff7b1c3d487cee73d9d90e375dc4df5b573d304f20fca6235
MD5 a99954c3ddde917f66acaa0b12433eb2
BLAKE2b-256 13e55f828fc7d1774d59aad61ed5e4df178c638e025782b2613a5db2cdb153c9

See more details on using hashes here.

Supported by

AWS Cloud computing and Security Sponsor Datadog Monitoring Depot Continuous Integration Fastly CDN Google Download Analytics Pingdom Monitoring Sentry Error logging StatusPage Status page