io.github.behrensd/mcpwall

MCPcommunity
v0.1.2io.github.behrensdUnknownUpdated 4mo agonpmGitHub

iptables for MCP — blocks dangerous tool calls, scans for secrets, logs everything.

iptables for MCP. Blocks dangerous tool calls, scans for secret leakage, logs everything. No AI, no cloud, pure rules. Sits between your AI coding tool (Claude Code, Cursor, Windsurf) and MCP servers, intercepting every JSON-RPC message and enforcing YAML-defined policies. MCP servers have full access to your filesystem, shell, databases, and APIs. When an AI agent calls , the server executes…

Automatically indexed from public sources. Not yet verified by the developer on Forge.Claim this listing →
4mo agoLast update
Package
Authorio.github.behrensd
LicenseUnknown
Version0.1.2
Sourcemcp-registry
Trust Status
B
65/100Good
Listed in Forge index+10/10
Publisher identity verified+0/25
Publisher: run `forge publish` from the package repo to claim ownership
Ed25519 publish signature+0/10
Included automatically when the publisher runs `forge publish`
Domain verification+0/5
Publisher: host /.well-known/forge.json on the package homepage with { "publisher": "<github-login>" }
CVE scan · clean+30/30
Static analysis · clean+20/20
npm provenance (Sigstore)+5/5
Paste into Claude Code, Cursor, or any AI assistant to fix all gaps
StatusCommunity-indexed
PublisherUnverified
SignatureUnsigned
Domain
Provenance✗ Attestation issue
Dependencies6 resolved · none vulnerable
Tool surface
Security scan⚠ Warnings (0)v0.3.1 · 20d ago
PROVattestationArtifact built from https://github.com/behrensd/mcpwall but the listing declares https://github.com/behrensd/m
EvalsNone
IndexedJun 13, 2026

Verification confirms publisher identity (repo ownership), not code safety. The security scan covers known CVEs and suspicious install scripts — it cannot prove the absence of malicious code.

About

iptables for MCP. Blocks dangerous tool calls, scans for secret leakage, logs everything. No AI, no cloud, pure rules. Sits between your AI coding tool (Claude Code, Cursor, Windsurf) and MCP servers, intercepting every JSON-RPC message and enforcing YAML-defined policies. MCP servers have full access to your filesystem, shell, databases, and APIs. When an AI agent calls , the server executes whatever the agent asks — reading SSH keys, running , exfiltrating secrets. There's no built-in policy…

Keywords
mcp