mcp-proxy-saas
Verified Safeby Pritahi
Overview
An API gateway/proxy for Model Context Protocol (MCP) servers, providing authentication, security, and logging for multi-tenant applications.
Installation
npm startEnvironment Variables
- SUPABASE_URL
- SUPABASE_SERVICE_ROLE_KEY
Security Notes
The server implements strong security practices: API key authentication with caching, configurable CORS, Helmet for common security headers, and an in-memory rate limiter. Critical credentials (Supabase service role key) are correctly loaded from environment variables. Tool whitelisting and content blacklisting are effective security layers. The 'trust proxy' setting is correctly enabled for cloud deployments. Input validation for `params` is not explicitly deep beyond blacklist checks, relying on downstream MCP servers, which could be an area for enhancement, but otherwise the server's security is robust.
Similar Servers
mcphub
An orchestration hub that aggregates, manages, and routes Model Context Protocol (MCP) servers and their tools, providing a centralized interface, user management, OAuth 2.0 authorization server capabilities, and AI-powered tool discovery and routing.
mcp-proxy
A TypeScript streamable HTTP and SSE proxy for MCP servers that use stdio transport.
supabase-mcp-server
This server provides interactive tools and React widgets for exploring and querying your Supabase database and viewing its service status.
emceepee
A proxy server enabling AI agents to dynamically connect to and interact with multiple Model Context Protocol (MCP) backend servers, exposing the full MCP protocol via a simplified tool interface or a sandboxed JavaScript execution environment.