rudraneel93/mcp-guardian

What it does

MCP Guardian is a security and governance proxy designed for Model Context Protocol (MCP) infrastructure. It provides centralized policy enforcement and monitoring capabilities, enabling organizations to secure and manage their MCP server deployments. The tool acts as an intermediary layer that controls access and resource usage across MCP infrastructure.

Key Features

• YAML-configurable security policies for flexible governance
• Blocklist enforcement to restrict unauthorized access
• Rate limiting to prevent abuse and ensure fair resource allocation
• Token budget management with real cost tracking via tiktoken
• Server health monitoring with live JSON-RPC probes
• OAuth 2.1 and OIDC authentication support
• Real-time token cost visibility and tracking

How to set up

Installation is performed via CLI/command-line tools. Users clone or deploy the MCP Guardian server, configure YAML policy files for their security requirements, set up authentication credentials for OAuth 2.1/OIDC, and configure health monitoring probes. Deploy as an MCP server instance to intercept and govern traffic to other MCP servers in your infrastructure.