Skip to main content

Production-grade infrastructure for Model Context Protocol

Project description

MCP Hangar

Open-source control plane for MCP servers -- lifecycle, governance, and observability for your server fleet.

PyPI CI License: MIT

Why

In MCP, the tool list is a hint the client caches; the call path is the only surface a provider mediates in real time. Every governance primitive worth having -- revocation, per-tenant scoping, audit -- attaches there, or attaches to nothing. Hangar puts a control plane on that seam: one mediated path for lifecycle, policy, and telemetry across your whole MCP server fleet.

Background: The Advisory List -- Why MCP Governance Lives at the Call Path

Install

pip install mcp-hangar
# or: uv pip install mcp-hangar

Quickstart

Point Hangar at an MCP server in config.yaml:

mcp_servers:
  github:
    mode: subprocess
    command: [uvx, mcp-server-github]
    env:
      GITHUB_TOKEN: ${GITHUB_TOKEN}

Then serve it:

mcp-hangar serve --config config.yaml                     # stdio (Claude Desktop)
mcp-hangar serve --config config.yaml --http --port 8000  # HTTP + REST API at /api/

The 1.5 server refuses to bind a non-loopback interface without auth. For a quick/insecure demo, pass --unsafe-no-auth; for anything real, configure the auth block.

Or skip the config entirely -- get filesystem, fetch, and memory servers wired into Claude Desktop in one line:

curl -sSL https://mcp-hangar.io/install.sh | bash && mcp-hangar init -y && mcp-hangar serve

What you get

  • Parallel tool calls -- one hangar_call fans out to many MCP servers concurrently; all results returned together.
  • Lifecycle management -- lazy start, health checks, single-flight cold starts, idle shutdown, and per-server circuit breaking.
  • Hot config reload -- add or withdraw servers and tools via file watch, no restart.
  • Per-tenant tool projection -- front-door mode presents a different executable surface per caller, fail-closed on unknown identity.
  • OAuth ingress -- advertise as an RFC 9728 protected resource and challenge external agents for verified tokens.
  • Auth & RBAC -- API-key and OIDC/JWT identity with role-based access; bootstrap the first administrator with mcp-hangar auth bootstrap-admin, and every call carries a verified principal into the audit trail.
  • Observability built in -- OpenTelemetry traces, Prometheus metrics, structured logs, and an event-sourced audit trail.

Configuring tools:

The per-server tools: key is overloaded and accepts two distinct forms:

  • A list of tool schemas is a pre-start visibility projection. It lets a tool be listed before its provider has started, so callers can see it up front. It is not an access policy. On start, the provider's dynamic tools/list is authoritative and replaces this projection entirely — a statically-listed tool that the provider does not return becomes uncallable and fails with Tool not found: <name> at invocation (a warning naming the unconfirmed tool is logged at start).

  • A dict with allow: / deny: is an access policy (glob-pattern, three-level merge) that filters which discovered tools are exposed.

mcp_servers:
  math:
    mode: subprocess
    command: [python, -m, examples.provider_math.server]
    tools:                     # list form: pre-start schema projection
      - name: add
        description: "Add two numbers"
        inputSchema: { type: object, properties: { a: { type: number } } }
  github:
    mode: subprocess
    command: [uvx, mcp-server-github]
    tools:                     # dict form: allow/deny access policy
      allow: [create_issue, list_issues]
      deny: [delete_repository]

Documentation

License

MIT

Project details


Download files

Download the file for your platform. If you're not sure which to choose, learn more about installing packages.

Source Distribution

mcp_hangar-1.5.1.tar.gz (1.4 MB view details)

Uploaded Source

Built Distribution

If you're not sure about the file name format, learn more about wheel file names.

mcp_hangar-1.5.1-py3-none-any.whl (783.4 kB view details)

Uploaded Python 3

File details

Details for the file mcp_hangar-1.5.1.tar.gz.

File metadata

  • Download URL: mcp_hangar-1.5.1.tar.gz
  • Upload date:
  • Size: 1.4 MB
  • Tags: Source
  • Uploaded using Trusted Publishing? Yes
  • Uploaded via: twine/6.1.0 CPython/3.13.12

File hashes

Hashes for mcp_hangar-1.5.1.tar.gz
Algorithm Hash digest
SHA256 a938ea1b01563529631f9c06084019700e7d701b65e4c5f11799230c87c038b0
MD5 ecccc1cbc53f5c9ad944a276a747ba65
BLAKE2b-256 941ca8edeae301c870bb17695c3cdd35d2fe86ea47b86e819b8b317077445ee9

See more details on using hashes here.

Provenance

The following attestation bundles were made for mcp_hangar-1.5.1.tar.gz:

Publisher: release.yml on mcp-hangar/mcp-hangar

Attestations: Values shown here reflect the state when the release was signed and may no longer be current.

File details

Details for the file mcp_hangar-1.5.1-py3-none-any.whl.

File metadata

  • Download URL: mcp_hangar-1.5.1-py3-none-any.whl
  • Upload date:
  • Size: 783.4 kB
  • Tags: Python 3
  • Uploaded using Trusted Publishing? Yes
  • Uploaded via: twine/6.1.0 CPython/3.13.12

File hashes

Hashes for mcp_hangar-1.5.1-py3-none-any.whl
Algorithm Hash digest
SHA256 5a914253ea247c7edd602a7f8858f4ea108a03567bb9e41c797e17f73f74d856
MD5 bcdc9a28a018861366858e7a2de2c68d
BLAKE2b-256 4aad34783b936a361ac719b10b8324b5a892f120eba7867847ea2b23ae4f611f

See more details on using hashes here.

Provenance

The following attestation bundles were made for mcp_hangar-1.5.1-py3-none-any.whl:

Publisher: release.yml on mcp-hangar/mcp-hangar

Attestations: Values shown here reflect the state when the release was signed and may no longer be current.

Supported by

AWS Cloud computing and Security Sponsor Datadog Monitoring Depot Continuous Integration Fastly CDN Google Download Analytics Pingdom Monitoring Sentry Error logging StatusPage Status page