Hi! I'd like to suggest adding Assay to your security tools listing.
What it is: An open-source MCP policy enforcement proxy that sits between agents and MCP servers. Every tool call gets an explicit ALLOW/DENY with a replayable evidence trail.
Why it's relevant for MCP security:
- Covers 7/10 OWASP MCP Top 10 risks (mapping)
- MCP08 (Lack of Audit and Telemetry) is the primary value prop
- Tested with 12 security experiment vectors, 0 false positives (results)
- Deterministic — same input, same decision, every time
- Evidence bundles you can verify, diff, and replay
Quick start:
cargo install assay-cli
assay mcp wrap --policy policy.yaml -- your-mcp-server
MIT licensed. No hosted backend required.
GitHub: https://github.com/Rul1an/assay
Hi! I'd like to suggest adding Assay to your security tools listing.
What it is: An open-source MCP policy enforcement proxy that sits between agents and MCP servers. Every tool call gets an explicit ALLOW/DENY with a replayable evidence trail.
Why it's relevant for MCP security:
Quick start:
MIT licensed. No hosted backend required.
GitHub: https://github.com/Rul1an/assay