Assay

Name: Assay
Author: Rul1an

Rul1an/assay

Put a policy firewall in front of MCP tool calls so solo builders can block, audit, and replay agent actions with evidence.

Overview

Assay is a MCP server for the Ship phase that firewalls MCP tool calls with block, audit, and replay backed by evidence bundles.

What is this MCP server?

Acts as a firewall layer on MCP tool invocations—block, allow, and audit in one path
Evidence bundles for replay and post-incident review of what the agent actually called
stdio MCP package (mcpb) with pinned release artifact and fileSha256 in server metadata
Pairs with Assay MCP Server proxy for fuller policy-enforcing deployments
Version 3.1.0 published via GitHub release channel
Server version 3.1.0 in registry metadata
1 stdio mcpb package with fileSha256 pin in server.json
Transport type stdio per MCP registry schema

Compatible agents: Claude Code, Cursor, Codex, any compatible agent

Community signal: 5 GitHub stars.

What problem does it solve?

Agents can invoke powerful MCP tools with little visibility, so one bad call can leak secrets or mutate production without a defensible audit trail.

Who is it for?

Indie builders connecting multiple MCP servers to coding agents who need enforcement and auditability before granting destructive tools.

Skip if: Teams that only use built-in IDE tools with no MCP layer, or anyone who wants a full SIEM instead of MCP-specific call governance.

What do I get? / Deliverables

After you register Assay, MCP tool traffic can be blocked or allowed by policy, logged, and replayed with evidence you can share in reviews or incidents.

Policy-gated MCP tool call path
Audit and replay capability with evidence bundles
Pinned v3.1.0 mcpb artifact registration in your MCP config

Recommended MCP Servers

1Claw Vault1clawAI/1claw-mcp

1Claw Vault exposes a stdio MCP server (@1claw/mcp) that connects AI agents to HSM-backed secret storage with just-in-ti…2 stars

1passwordCakeRepository/1Password-MCP

The 1Password MCP server lets solo builders wire service-account access into Claude Code, Cursor, or other stdio MCP hos…16 stars

402sentinel Mcpkaditang/402sentinel-mcp

402 Sentinel MCP gives solo builders and agent authors a pre-flight check before honoring x402 payment flows on Base. In…1 stars

A2adependencyinspector Mcpclauxel/a2a-dependency-inspector-mcp

A2A Dependency Inspector MCP is a hosted Clauxel server for builders shipping agent-to-agent (A2A) workflows who must pr…

A2a Governance Bridge Mcp

A2A Governance Bridge is a Model Context Protocol server that exposes governance-oriented tools for multi-agent setups: …

A2aidentitytoll Mcpclauxel/a2a-identity-toll-mcp

A2A Identity Toll MCP is a Clauxel-hosted remote MCP server that acts as an identity and policy toll booth for agent-to-…

Journey fit

Primary fit

Canonical shelf is Ship because gating and auditing MCP calls is a safety step before and after you expose agents to real tools. Security is the right subphase for call-level enforcement, not generic infra tuning.

How it compares

MCP security proxy and evidence layer, not an agent skill that writes application code.

Common Questions / FAQ

Who is Assay for?

Solo and small-team builders who run MCP-enabled agents and want firewall-style control plus replayable evidence on every tool call.

When should I use Assay?

Use it when you are adding high-risk MCP tools (shell, DB, deploy) or preparing for security review, compliance questions, or post-mortems on agent behavior.

How do I add Assay to my agent?

Add the io.github.Rul1an/assay MCP server entry to Claude Desktop, Claude Code, or Cursor via the MCP registry package (stdio mcpb), using the release URL from the server.json identifier field.

Assay

Rul1an/assay

Put a policy firewall in front of MCP tool calls so solo builders can block, audit, and replay agent actions with evidence.

Overview

Assay is a MCP server for the Ship phase that firewalls MCP tool calls with block, audit, and replay backed by evidence bundles.

What is this MCP server?

Acts as a firewall layer on MCP tool invocations—block, allow, and audit in one path
Evidence bundles for replay and post-incident review of what the agent actually called
stdio MCP package (mcpb) with pinned release artifact and fileSha256 in server metadata
Pairs with Assay MCP Server proxy for fuller policy-enforcing deployments
Version 3.1.0 published via GitHub release channel
Server version 3.1.0 in registry metadata
1 stdio mcpb package with fileSha256 pin in server.json
Transport type stdio per MCP registry schema

Compatible agents: Claude Code, Cursor, Codex, any compatible agent

Community signal: 5 GitHub stars.

What problem does it solve?

Agents can invoke powerful MCP tools with little visibility, so one bad call can leak secrets or mutate production without a defensible audit trail.

Who is it for?

Indie builders connecting multiple MCP servers to coding agents who need enforcement and auditability before granting destructive tools.

Skip if: Teams that only use built-in IDE tools with no MCP layer, or anyone who wants a full SIEM instead of MCP-specific call governance.

What do I get? / Deliverables

After you register Assay, MCP tool traffic can be blocked or allowed by policy, logged, and replayed with evidence you can share in reviews or incidents.

Policy-gated MCP tool call path
Audit and replay capability with evidence bundles
Pinned v3.1.0 mcpb artifact registration in your MCP config

Recommended MCP Servers

1Claw Vault1clawAI/1claw-mcp

1Claw Vault exposes a stdio MCP server (@1claw/mcp) that connects AI agents to HSM-backed secret storage with just-in-ti…2 stars

1passwordCakeRepository/1Password-MCP

The 1Password MCP server lets solo builders wire service-account access into Claude Code, Cursor, or other stdio MCP hos…16 stars

402sentinel Mcpkaditang/402sentinel-mcp

402 Sentinel MCP gives solo builders and agent authors a pre-flight check before honoring x402 payment flows on Base. In…1 stars

A2adependencyinspector Mcpclauxel/a2a-dependency-inspector-mcp

A2A Dependency Inspector MCP is a hosted Clauxel server for builders shipping agent-to-agent (A2A) workflows who must pr…

A2a Governance Bridge Mcp

A2A Governance Bridge is a Model Context Protocol server that exposes governance-oriented tools for multi-agent setups: …

A2aidentitytoll Mcpclauxel/a2a-identity-toll-mcp

A2A Identity Toll MCP is a Clauxel-hosted remote MCP server that acts as an identity and policy toll booth for agent-to-…

Journey fit

Primary fit

How it compares

MCP security proxy and evidence layer, not an agent skill that writes application code.

Common Questions / FAQ

Who is Assay for?

Solo and small-team builders who run MCP-enabled agents and want firewall-style control plus replayable evidence on every tool call.

When should I use Assay?

Use it when you are adding high-risk MCP tools (shell, DB, deploy) or preparing for security review, compliance questions, or post-mortems on agent behavior.

How do I add Assay to my agent?

Add the io.github.Rul1an/assay MCP server entry to Claude Desktop, Claude Code, or Cursor via the MCP registry package (stdio mcpb), using the release URL from the server.json identifier field.

Overview

What is this MCP server?

What problem does it solve?

Who is it for?

What do I get? / Deliverables

Recommended MCP Servers

Journey fit

Who is Assay for?

When should I use Assay?

How do I add Assay to my agent?

This week for builders

Overview

What is this MCP server?

What problem does it solve?

Who is it for?

What do I get? / Deliverables

Recommended MCP Servers

Journey fit

Who is Assay for?

When should I use Assay?

How do I add Assay to my agent?