MCP Core Defense — Open-source 7-phase security proxy for MCP
I've built MCP Core Defense, a defense-in-depth security proxy interposed between AI agents and MCP servers. It implements 7 sequential verification phases:
- Policy Engine — Deny-by-default allowlist with wildcards
- Schema Validator — Strict JSON schema validation
- DCI Checker — Description-Consistency via AST analysis (Python + JS/TS)
- TDP Detector — Tool Description Poisoning scan (exfil/exec/obfuscation patterns)
- Mutual TLS — Certificate verification + SHA256 pinning + MITM detection
- Sandbox — Filesystem jail with path traversal prevention
- SDK Adapter — Async MCP client integration with dry-run mode
Key features
- 127 tests passing on Python 3.10/3.11/3.12
- Cortocircuitable — stops at first failure
- Research-based — based on Shi et al. 2026, Liu et al. 2026, Zhou et al. 2026
Links
Happy to answer questions or collaborate!
MCP Core Defense — Open-source 7-phase security proxy for MCP
I've built MCP Core Defense, a defense-in-depth security proxy interposed between AI agents and MCP servers. It implements 7 sequential verification phases:
Key features
Links
Happy to answer questions or collaborate!