caskmcp 0.2.0b6

Action surface compiler: turn observed web traffic into safe, versioned, agent-ready tools

CaskMCP

CaskMCP is a governed MCP capability supply chain with replayable proof.

Core contract:

• caskmcp wow proves governance enforcement, replayability, and parity in one run.
• caskmcp govern ... is the governance surface (approvals, lockfiles, drift gates, runtime policy).
• caskmcp prove ... is the proof surface (prove-twice and smoke matrix).

Install

pip install caskmcp

For local development:

git clone https://github.com/caskmcp/CaskMCP.git
cd CaskMCP/cask
pip install -e .

Zero-Friction Wow

Default wow path is offline and browser-free:

caskmcp wow

Artifacts emitted on every run:

• prove_twice_report.md
• prove_twice_diff.json
• prove_summary.json

caskmcp wow exits 0 only when all are true:

1. Governance was enforced in fail-closed mode.
2. Run A and Run B replay deterministically from the same governed inputs.
3. Parity passed.

Optional Live Browser Path

pip install "caskmcp[playwright]"
python -m playwright install chromium
caskmcp wow --live

Traffic Capture, Without Friction

CaskMCP supports three practical capture paths so teams can start where they already are.

You already have	Command	Best for
Nothing yet (just want to see it work)	caskmcp wow	Fastest first run, no credentials, no browser deps
A first-party web flow	caskmcp govern mint https://app.example.com -a api.example.com	Capturing real authorized behavior
Existing artifacts (HAR, OTEL, OpenAPI)	caskmcp capture import ... / caskmcp openapi ...	Adopting CaskMCP without recapturing traffic

All three paths converge to the same governed runtime and proof loop (diff, gate, run, drift, verify, prove, wow).

1. Offline fixture (no credentials, no browser install):

caskmcp wow

2. Live browser capture (first-party authorized flows):

caskmcp govern mint https://app.example.com -a api.example.com

3. Existing telemetry/spec imports:

caskmcp capture import traffic.har -a api.example.com
caskmcp capture import traces.json --input-format otel -a api.example.com
caskmcp openapi openapi.json -a api.example.com

Primary CLI Shape

caskmcp wow
caskmcp govern --help
caskmcp prove --help

Examples:

# Governed capture -> compile
caskmcp govern mint https://app.example.com -a api.example.com

# Review and approve pending lockfile
caskmcp govern diff --toolpack .caskmcp/toolpacks/<id>/toolpack.yaml --format github-md
caskmcp govern gate allow --all --lockfile .caskmcp/toolpacks/<id>/lockfile/caskmcp.lock.pending.yaml

# Enforced runtime + drift checks
caskmcp govern run --toolpack .caskmcp/toolpacks/<id>/toolpack.yaml
caskmcp govern drift --baseline .caskmcp/toolpacks/<id>/artifact/baseline.json --capture-id <capture-id>

# Prove matrix
caskmcp prove smoke

cask remains an alias for compatibility, but docs/defaults use caskmcp.

Why This Exists

MCP adoption is accelerating, while official guidance highlights tool-injection and trust risks in third-party MCP servers.

• OpenAI MCP risk framing and safety guidance: OpenAI MCP docs
• Remote MCP allowlist pressure: xAI remote MCP tools
• Registry moderation is intentionally permissive: MCP moderation policy
• Real incident context: Asana MCP data exposure write-up

CaskMCP focuses on local governance and evidence, not bypass tooling.

Packaging

• Distribution: caskmcp
• Base install: supports offline wow
• Extra: playwright (live/browser capture)
• Extra: mcp (MCP SDK integration)
• Extra: all (convenience install for mcp + playwright)

Development

pip install -e ".[dev,packaging-test]"
pytest tests/ -v
ruff check caskmcp tests
mypy caskmcp --ignore-missing-imports

Docs

• Architecture
• User Guide
• Known Limitations
• Publishing