Native System Integration
System Tray - Upstream Servers
Click to view full size
System Tray - Quarantine Management
Click to view full size
Cursor IDE Integration
Click to view full size
Tool Security Analysis
Click to view full size
Works with any MCP-compatible client: Cursor IDE, Claude Desktop, ChatGPT, and more.
A desktop application that extends AI-agent productivity by connecting hundreds of MCP servers with intelligent tool discovery, token optimization, and advanced security quarantine protection. β¨ Works offline β’ π₯οΈ User-friendly desktop app β’ π 100% Open Source
Download and install the DMG package above. Launch MCPProxy from Launchpad or Applications folderβit will run quietly in your system tray.
Connect hundreds of MCP servers while bypassing Cursor IDE's 40-tool limit and OpenAI's 128-function API cap. Provider limits no longer constrain your AI productivity.
Intelligent tool discovery eliminates function schema bloat. RAG-MCP research shows ~99% token savings while maintaining 43% accuracy improvements over baseline methods.
Automatic quarantine system protects against Tool Poisoning Attacks (TPAs) and malicious MCP servers. All new servers are quarantined for security review before activation.
Click to view full size
Click to view full size
Click to view full size
Click to view full size
MCPProxy acts as an intelligent federating gateway, consolidating multiple MCP servers behind a single smart endpoint with built-in security and optimization.
MCPProxy automatically discovers and indexes tools from all configured upstream MCP servers, building a comprehensive searchable catalog.
When AI agents need tools, they query MCPProxy with natural language. BM25 search returns the most relevant tools from the entire catalog.
New servers are automatically quarantined for security analysis. Tool Poisoning Attack detection prevents malicious code execution.
Tool calls are routed to appropriate upstream servers with response truncation and caching to prevent LLM context bloat.
Dive deeper into the features and configuration of MCPProxy with our comprehensive guides.
Learn how to run `mcpproxy` with command-line arguments and environment variables. Covers data directories and logging.
A detailed look at the mcp_config.json file. Manage upstream servers, including adding, updating, and removing them.
Understand the core concepts of intelligent tool discovery, token optimization, and the security quarantine system.
Instead of loading hundreds of function schemas, AI agents see only MCPProxy's
retrieve_tools function.
Tools are discovered only when needed, keeping LLM context minimal and focused. No unused function schemas cluttering the prompt.
Large tool responses are automatically truncated with caching for pagination, preventing context window overflow while maintaining data access.
MCPProxy implements comprehensive security measures to protect against emerging threats in the MCP ecosystem, including Tool Poisoning Attacks.
Tool Poisoning Attacks embed malicious instructions within MCP tool descriptions that are invisible to users but visible to AI models. These hidden instructions can manipulate AI models into:
All newly added servers are automatically quarantined for security review.
Comprehensive tool description analysis with TPA pattern detection.
Human review required before servers can execute tools.
Quarantined servers cannot execute tools until approved.
