A policy enforcement proxy that sits between your MCP client and any downstream MCP server, intercepting every tool call for authorization. Works in two modes: local (using the AuthzX Agent with Rego policy files) or cloud (AuthzX Cloud API). You write policies that define which tools an agent can invoke and with what arguments, like blocking DROP statements in SQL execution or restricting file deletions. Every call gets logged with structured JSON including subject, tool name, decision, and latency. Integrates with Claude Code, Cursor, VS Code, and GitHub Copilot through stdio transport. Reach for this when you need audit trails and access control before handing production databases or filesystems to an AI agent.
claude mcp add --transport stdio authzx-mcp-gateway uvx mcp-gateway