Security proxy for MCP (Model Context Protocol) connections
Project description
trusted-mcp
Security proxy for MCP (Model Context Protocol) connections
Part of the AumOS open-source agent infrastructure portfolio.
Features
InterceptorChainpipeline that applies an ordered sequence of scanners to every tool call request, response, and tool definition — short-circuits on the first BLOCK resultScannerABC for building custom scanners; ships withRegexScanner,AllowlistScanner,PiiScanner,ArgumentScanner, andDescriptionHashScannerout of the box- Tool description hash verification detects MCP tool-poisoning attacks where a server's tool descriptions change between sessions
- YAML policy config maps scanner slugs to settings, making the security profile fully declarative and version-controlled
- JSON audit logger writes an append-only record of every PASS/WARN/BLOCK decision with scanner name, reason, tool name, and server name
- Native adapters for Claude Desktop, Cursor, and VS Code that inject the proxy transparently into each client's MCP configuration
- Extensible scanner registry via Python entry-points — third-party scanners install and register without modifying the proxy codebase
Quick Start
Install from PyPI:
pip install trusted-mcp
Verify the installation:
trusted-mcp version
Basic usage:
import trusted_mcp
# See examples/01_quickstart.py for a working example
Documentation
Enterprise Upgrade
For production deployments requiring SLA-backed support and advanced integrations, contact the maintainers or see the commercial extensions documentation.
Contributing
Contributions are welcome. Please read CONTRIBUTING.md before opening a pull request.
License
Apache 2.0 — see LICENSE for full terms.
Part of AumOS — open-source agent infrastructure.
Release history Release notifications | RSS feed
Download files
Download the file for your platform. If you're not sure which to choose, learn more about installing packages.
Source Distribution
Built Distribution
Filter files by name, interpreter, ABI, and platform.
If you're not sure about the file name format, learn more about wheel file names.
Copy a direct link to the current filters
File details
Details for the file aumos_trusted_mcp-0.1.0.tar.gz.
File metadata
- Download URL: aumos_trusted_mcp-0.1.0.tar.gz
- Upload date:
- Size: 95.5 kB
- Tags: Source
- Uploaded using Trusted Publishing? No
- Uploaded via: twine/6.2.0 CPython/3.11.9
File hashes
| Algorithm | Hash digest | |
|---|---|---|
| SHA256 |
627f68ab8335ea87a67a267916ad941198c1bb3716ef35bfb31c79b9ba198b08
|
|
| MD5 |
80d3c3e68b895d788b9be978d52514ed
|
|
| BLAKE2b-256 |
6ba2d1e172941b7bc9348f5998e21f07946c50cab4cce155cc134cd40cbbef82
|
File details
Details for the file aumos_trusted_mcp-0.1.0-py3-none-any.whl.
File metadata
- Download URL: aumos_trusted_mcp-0.1.0-py3-none-any.whl
- Upload date:
- Size: 76.8 kB
- Tags: Python 3
- Uploaded using Trusted Publishing? No
- Uploaded via: twine/6.2.0 CPython/3.11.9
File hashes
| Algorithm | Hash digest | |
|---|---|---|
| SHA256 |
399388e926b366dc1419b89cdaaf6d2c5b35a6a4e380ee421539c685e5fc721d
|
|
| MD5 |
aa33023bc12b9ff265bb42dc204dedd6
|
|
| BLAKE2b-256 |
7f9e7d4bb78fa8d00ab9d7fbb26d0e04704b567df3023ff54d4468fa1cb272a5
|
