What is MCP Gateway?
MCP Gateway is a plugin-based gateway that orchestrates various Model Context Protocol (MCP) servers, allowing developers to build enterprise-grade agents that enhance AI infrastructure.
How to use MCP Gateway?
To use MCP Gateway, install the package via pip and configure your MCP servers in a mcp.json file. Start the server using the command mcp-gateway --enable-guardrails basic --enable-guardrails presidio.
Key features of MCP Gateway?
- Agnostic Guardrails: Configurable security filters to prevent sensitive data exposure.
- Unified Visibility: Comprehensive dashboard for monitoring all MCPs.
- Advanced Tracking: Detailed logs and usage analytics for optimization.
Use cases of MCP Gateway?
- Masking sensitive information like tokens and credentials.
- Centralized management of multiple MCP servers.
- Real-time monitoring and risk assessment of AI interactions.
FAQ from MCP Gateway?
- Can MCP Gateway work with any MCP server?
Yes, it is designed to work with various MCP servers seamlessly.
- Is there a cost associated with using MCP Gateway?
MCP Gateway is open-source and free to use, but some features may require additional services.
- How does MCP Gateway ensure data security?
It applies guardrails that sanitize sensitive information before processing requests.
MCP Gateway
MCP Gateway is an advanced intermediary solution for Model Context Protocol (MCP) servers that centralizes and enhances your AI infrastructure.
How It Works
Your agent interacts directly with our MCP Gateway, which functions as a central router and management system. Each underlying MCP is individually wrapped and managed.
Key Features
Agnostic Guardrails
- Applies configurable security filters to both requests and responses.
- Prevents sensitive data exposure before information reaches your agent.
- Works consistently across all connected MCPs regardless of their native capabilities.
Unified Visibility
- Provides comprehensive dashboard for all your MCPs in a single interface.
- Includes intelligent risk assessment with MCP risk scoring.
- Delivers real-time status monitoring and performance metrics.
Advanced Tracking
- Maintains detailed logs of all requests and responses for each guardrail.
- Offers cost evaluation tools for MCPs requiring paid tokens.
- Provides usage analytics and pattern identification for optimization.
- Sanitizes sensitive information before forwarding requests to other MCPs.
Overview
MCP Gateway acts as an intermediary between LLMs and other MCP servers. It:
- Reads server configurations from a
mcp.jsonfile located in your root directory. - Manages the lifecycle of configured MCP servers.
- Intercepts requests and responses to sanitize sensitive information.
- Provides a unified interface for discovering and interacting with all proxied MCPs.
Installation
Install the mcp-gateway package:
pip install mcp-gateway
Install the mcp-gateway package with presidio guardrail:
pip install mcp-gateway[presidio]
Run
This is an example of how to add to your mcp.json in cursor:
{
"mcpServers": {
"mcp-gateway": {
"command": "mcp-gateway",
"args": [
"--mcp-json-path",
"~/.cursor/mcp.json",
"--enable-guardrails",
"basic",
"--enable-guardrails",
"presidio"
],
"servers": {
"filesystem": {
"command": "npx",
"args": [
"-y",
"@modelcontextprotocol/server-filesystem",
"."
]
}
}
}
}
}
This example gives you the basic and presidio guardrails for token and PII masking for filesystem MCP. You can add more MCPs that will be under the Gateway by putting the MCP server configuration under the "servers" key.
Usage
Start the MCP Gateway server with python_env config on this repository root:
mcp-gateway --enable-guardrails basic --enable-guardrails presidio
You can also debug the server using:
LOGLEVEL=DEBUG mcp-gateway --mcp-json-path ~/.cursor/mcp.json --enable-guardrails basic --enable-guardrails presidio
Features
- Tool:
get_metadata- Provides information about all available proxied MCPs to help LLMs choose appropriate tools and resources - Tool:
run_tool- Executes capabilities from any proxied MCP after sanitizing the request and response
Available Plugins
Guardrails
MCP Gateway supports various plugins to enhance security and functionality. Here's a summary of the built-in guardrail plugins:
| Plugin Name | Description | Activation Argument | PII Masking | Token/Secret Masking | Custom Policy | Jailbreak Prevention | Harmful Content |
|---|---|---|---|---|---|---|---|
basic | Masks common secrets (API Keys: AWS, GCP, Azure; Tokens: GitHub, HF, JWT, Slack, etc.) using regex. | --enable-guardrails basic | ❌ | ✅ (API Keys, Various Tokens) | ❌ | ❌ | ❌ |
presidio | Masks PII (Credit Card, IP, Email, Phone, SSN, etc.) using the Presidio library. | --enable-guardrails presidio | ✅ (Credit Card, IP, Email, Phone, SSN, etc.) See Presidio for details. | ❌ | ❌ | ❌ | ❌ |
lasso | Comprehensive security via Lasso Security API. See Lasso Security for details. | --enable-guardrails lasso | ✅ | ✅ | ✅ | ✅ | ✅ |
Note: To use the presidio plugin, you need to install it separately: pip install mcp-gateway[presidio].
For more details on how the plugin system works, how to create your own plugins, or how to contribute, please see the Plugin System Documentation.
Use Cases
Masking Sensitive Information
MCP Gateway can mask sensitive information like tokens and credentials:
-
Create a file with sensitive information:
echo 'HF_TOKEN = "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"' > tokens.txt -
When an agent requests to read this file through MCP Gateway:
Use your mcp-gateway tools to read the ${pwd}/tokens.txt and return the HF_TOKEN“Recommend with sonnet”
-
MCP Gateway will automatically mask the sensitive token in the response, preventing exposure of credentials while still providing the needed functionality.
Example of Masked Sensitive Information
The image below shows how MCP Gateway automatically masks a Hugging Face token in the response:
Using Lasso Guardrails
To use Lasso Security's advanced AI safety guardrails, update your mcp.json configuration as follows:
- Replace the existing guardrails with the "lasso" guardrail.
- Add the
LASSO_API_KEYenvironment variable in the "env" section.
Here's how to configure it:
{
"mcpServers": {
"mcp-gateway": {
"command": "mcp-gateway",
"args": [
"--mcp-json-path",
"~/.cursor/mcp.json",
"--enable-guardrails",
"lasso"
],
"env": {
"LASSO_API_KEY": "<lasso_token>"
},
"servers": {
"filesystem": {
"command": "npx",
"args": [
"-y",
"@modelcontextprotocol/server-filesystem",
"."
]
}
}
}
}
}
You will need to:
- Obtain a Lasso API key by signing up at Lasso Security.
- Replace
<lasso_token>with your actual Lasso API key.
When running with Lasso guardrails, you can also use:
mcp-gateway --enable-guardrails lasso
With Lasso you get:
🔍 Full visibility into MCP interactions with an Always-on monitoring.
🛡️ Mitigate GenAI-specific threats like prompt injection and sensitive data leakage in real-time with built-in protection that prioritizes security from deployment.
✨ Use flexible, natural language to craft security policies tailored to your business's unique needs.
⚡ Fast and easy installation for any deployment style. Monitor data flow to and from MCP in minutes with an intuitive, user-friendly dashboard.
The Lasso guardrail checks content through Lasso's API for security violations before processing requests and responses.
Read more on our website 👉 Lasso Security.
License
MIT
