Shieldmcp
@shieldmcp
A shield for logging, deep debug and sanitization for MCP servers at development stage
Overview
What is Shieldmcp?
Shieldmcp is a security middleware for Model Context Protocol (MCP) servers that provides tool access control, result sanitization, structured logging, and rate limiting without modifying the official SDK. It is intended for developers who need to secure and monitor MCP tool calls.
How to use Shieldmcp?
Apply the @secure_tool decorator to your MCP tools with optional parameters for allowed tools, sanitizer, user and session IDs, and rate limit configuration. Components like ToolAudit, ToolAccess, ToolSanitizer, and RateLimitConfig can also be used independently.
Key features of Shieldmcp
- Whitelist-based access control for MCP tools
- Configurable result sanitization with sensitive pattern detection
- Structured audit logging using structlog
- Token bucket rate limiting with burst support
- Standardized error handling across tools
- Compatible with the MCP Inspector tool
Use cases of Shieldmcp
- Restrict which MCP tools can be invoked by different users
- Sanitize tool outputs to prevent leaking personal or financial data
- Monitor and audit all tool calls with detailed logs
- Prevent tool overload with rate limits per user or session
FAQ from Shieldmcp
What is the primary purpose of Shieldmcp?
Shieldmcp acts as a security middleware for MCP servers, enabling access control, sanitization, logging, and rate limiting without