MCP.so
ログイン

ThumbGate (npm: mcp-memory-gateway)

@IgorGanapolsky

ThumbGate (npm: mcp-memory-gateway) について

Agent governance for ThumbGate: 👍/👎 become Pre-Action Checks that flag repeat mistakes and hard-block the risky ones before code or systems change.

基本情報

カテゴリ

メモリとナレッジ

ライセンス

MIT

ランタイム

node

公開者

IgorGanapolsky

設定

以下の設定を使って、このサーバーを MCP 対応クライアントに追加してください。

{
  "mcpServers": {
    "thumbgate": {
      "command": "npx",
      "args": [
        "thumbgate",
        "init",
        "#",
        "auto-detects",
        "your",
        "agent,",
        "wires",
        "hooks,",
        "30",
        "seconds"
      ]
    }
  }
}

ツール

ツールは検出されませんでした

ツールは README から自動的に抽出されます。メンテナーは ## Tools という見出しの下に記載することで、このタブに反映できます。

概要

What is ThumbGate?

ThumbGate is a local-first firewall for AI coding agents that runs in the PreToolUse hook. It hard-blocks catastrophic tool calls by default (secret exfiltration, destructive deletes, supply-chain attacks) and warns‑and‑logs all other risk classes, with optional strict enforcement. It works across Claude Code, Cursor, Codex, Gemini CLI, Amp, Cline, and OpenCode, and requires no server on the enforcement path.

How to use ThumbGate?

Run npx thumbgate init to auto-detect your agent and wire the hooks (about 30 seconds). To create a prevention rule, use npx thumbgate capture down "Never run DROP on production tables". Discoverable slash-commands (/thumbgate-guard, /thumbgate-rules, etc.) are installed into the agent’s palette for browsing and invoking enforcement actions.

Key features of ThumbGate

  • PreToolUse hook catches dangerous calls before the model spends tokens.
  • Hard-blocks catastrophic classes (secret exfiltration, rm -rf, supply‑chain) by default.
  • Warns and logs other risk classes; hard‑blocks everything under THUMBGATE_STRICT_ENFORCEMENT=1.
  • Thumbs‑down feedback becomes reusable, auto‑promoted prevention rules.
  • Context Brain (BRAIN.md) gives each agent session persistent institutional memory.
  • Slash commands (/thumbgate-guard, /thumbgate-rules, etc.) for discoverable guardrails.

Use cases of ThumbGate

  • Preventing an AI agent from force‑pushing to main after one thumbs‑down.
  • Hard‑blocking destructive deletes (rm -rf) and secret leaks without waiting for a review.
  • Stopping repeated tool‑call mistakes across sessions to avoid unnecessary token spend.
  • Enforcing branch/release governance with scoped, expiring approvals.
  • Auditing every interception with a dashboard that tracks tokens saved and enforcement events.

FAQ from ThumbGate

How does ThumbGate differ from agent dashboards or observability tools?

ThumbGate is a pre‑action enforcement layer, not a post‑hoc dashboard. It blocks or warns before the tool call executes, preventing damage and token waste, while dashboards only report what already happened.

What are the runtime requirements?

ThumbGate runs locally via npx and works with any MCP‑compatible agent. No server is required on the enforcement path. It operates in the PreToolUse hook on the developer’s machine.

Where does my data live?

All data — feedback, prevention rules, lessons — lives locally in the repository (e.g., .thumbgate/). There is no default cloud sync; enterprise plans offer an optional shared hosted lesson DB.

Are there usage limits?

The free tier allows up to 2 feedback captures per day (10 total) and up to 3 active auto‑promoted prevention rules. Pro ($19/mo or $149/yr) removes these limits and adds the dashboard, DPO export, and history‑aware lessons.

Does ThumbGate support multi‑agent teams?

Yes. It works across Claude Code, Cursor, Codex, Gemini CLI, Amp, Cline, and OpenCode. Enterprise plans add org‑wide shared lesson databases and enforcement rules.

コメント

「メモリとナレッジ」の他のコンテンツ