Skip to content

MikkoParkkola/mcp-gateway

MCP Developer Tools

Universal MCP gateway with single-port multiplexing and Meta-MCP. 4 meta-tools replace 100+ registrations, saving 95% context window. Hot-reloadable capabilities, OpenAPI auto-import, 42 starter capabilities (25 zero-config).

Track releases GitHub Website
Rust Latest v2.12.1 · 9d ago Security brief →

Features

  • Routes MCP traffic to backend servers and REST APIs on demand
  • Reduces context‑window overhead by exposing a compact Meta‑MCP surface (~16 tools)
  • Provides hot‑reload, circuit‑breaker isolation, and YAML/OpenAPI based API registration

Recent releases

View all 18 releases →
No immediate action
v2.12.1 New feature

macOS M1/M2/M3 binaries + Quick Start

Open
No immediate action
v2.12.0 New feature

Quick Start, Cargo install, M1/M2/M3 binaries

Open
v2.6.0 New feature
⚠ Upgrade required
  • Dependency upgrades: reqwest 0.13, rand 0.10, rcgen 0.14, jsonwebtoken 10.3, quick-xml 0.39, x509-parser 0.18, axum-server 0.8, md5 0.8, dialoguer 0.12, clap_complete 4.6
  • All new features are compile‑time gated; disable any with `--no-default-features`
Notable features
  • Cost Governance: per-tool, per-key, and global daily budgets with alert thresholds and live spend dashboard
  • Security Firewall: bidirectional request/response scanning, credential redaction, injection detection, NDJSON audit logging
  • Semantic Search: TF-IDF ranked tool search across names and descriptions with relevance feedback
Full changelog

What's New in v2.6.0

Six new features, 13 dependency upgrades, and 2,461+ tests passing.

New Features

  • Cost Governance (RFC-0075) — Per-tool, per-key, and global daily budgets with configurable alert thresholds (log, notify, block). Live spend dashboard at /ui/api/costs.
  • Security Firewall (RFC-0071) — Bidirectional request/response scanning with credential redaction (AWS keys, GitHub tokens, JWTs), prompt injection detection, shell/SQL/path traversal detection, and NDJSON audit logging.
  • Config Export (RFC-0070) — Export running gateway configuration as sanitized YAML or JSON with secrets masked. Supports Claude Code, Cursor, Windsurf, and Zed client formats.
  • Auto-Discovery (RFC-0074) — Automatically discover MCP servers from npm, pip, and Docker sources with quality scoring and deduplication.
  • Semantic Search (RFC-0072) — TF-IDF ranked tool search across all tool names and descriptions with relevance feedback learning.
  • Tool Profiles (RFC-0073) — Usage analytics per tool: latency histograms, error categorization, usage trends, and success rates with persistent storage.

Dependency Upgrades

reqwest 0.13, rand 0.10, rcgen 0.14, jsonwebtoken 10.3, quick-xml 0.39, x509-parser 0.18, axum-server 0.8, md5 0.8, dialoguer 0.12, clap_complete 4.6

Quality

  • 2,461+ tests (unit + integration + doc tests), 0 failures
  • 19 cross-feature integration tests
  • Performance benchmarks: firewall <1µs, cost enforcer <100ns, semantic search <50µs
  • All features compile-time gated — disable any with --no-default-features

Install

# Homebrew
brew upgrade mcp-gateway

# Cargo
cargo install mcp-gateway

# Binary (macOS ARM64)
curl -L https://github.com/MikkoParkkola/mcp-gateway/releases/download/v2.6.0/mcp-gateway-darwin-arm64 -o mcp-gateway
chmod +x mcp-gateway

Full Changelog: https://github.com/MikkoParkkola/mcp-gateway/compare/v2.5.0...v2.6.0

View release on GitHub

Weekly OSS security release digest.

The CVE patches and breaking changes that affected production tools this week. One email, every Sunday.

No spam, unsubscribe anytime.

About

Stars
34
Forks
9
Languages
Rust HTML Python
Downloads/week
161
NPM Maintainers
1 Single npm maintainer
Contributors
4
View on GitHub View on npm Homepage

Similar tools

zhangpanda/gomcp
Portkey AI Gateway
mrostamii/rancher-mcp-server
AnythingMCP
elvismdev/mem0-mcp-selfhosted

Alternative to

Direct MCP connections Claude's ToolSearch

Beta — feedback welcome: [email protected]