-
Notifications
You must be signed in to change notification settings - Fork 13
Overview
Minibridge itself can run inside hardened containers for production use. At Acuvity, we've produced a suite of safe containers leveraging ARC.
ARC stands for Acuvity Runtime Container—your secure, production-ready environment for running any MCP server with confidence featuring:
- Isolated Execution: Run securely in isolated containers, preventing lateral movement.
- Non-root by Default: Minimize risks by enforcing least-privilege.
- Immutable Runtime: Read-only filesystem ensures tamper-proof operations.
- Version Pinning & CVE Scanning: Consistent and secure deployments with proactive vulnerability detection (via Docker Scout).
- SBOM & Provenance: Traceable builds for complete supply chain transparency.
Minibridge integrates seamlessly with ARC to secure agent-to-MCP interactions, enforcing runtime integrity and policy compliance:
- Integrity Checks: Ensures authenticity with runtime component hashing.
-
Threat Detection & Prevention with built-in Rego Policy:
- Covert‐instruction screening: Blocks any tool description or call arguments that match a wide list of "hidden prompt" phrases (e.g., "do not tell", "ignore previous instructions", Unicode steganography).
- Schema-key misuse guard: Rejects tools or call arguments that expose internal-reasoning fields such as note, debug, context, etc., preventing jailbreaks that try to surface private metadata.
- Sensitive-resource exposure check: Denies tools whose descriptions—or call arguments—that reference paths, files, or patterns typically associated with secrets (e.g., .env, /etc/passwd, SSH keys).
- Tool-shadowing detector: Flags wording like "instead of using" that might instruct an assistant to replace or override an existing tool with a different behavior.
- Cross-tool ex-filtration filter: Scans responses and tool descriptions for instructions to invoke external tools not belonging to this server.
- Credential / secret redaction mutator: Automatically replaces recognized tokens format with
[REDACTED]in outbound content.
ARC is the fortress. Minibridge is the guard. Together, they securely connect and protect your MCP servers.
- SBOM Validation: Automatic verification to prevent compromised deployments.
- Rego Policy Enforcement: Fine-grained governance using Open Policy Agent (OPA).
- Simplified Remote Connectivity: Effortlessly bridge your MCP server without custom protocols—Minibridge handles HTTP/SSE, WebSockets, and more.
- Kubernetes Integration: Quickly deploy into Kubernetes with Helm charts and sensible defaults.
| 🚀 Feature | 🔹 MCP | 🔸 Minibridge | 📦 ARC (Acuvity Containers) | 🌟 ARC + Acuvity Platform |
|---|---|---|---|---|
| 🌐 Remote Access | ✅ Built-in | ✅ Built-in | ✅ Built-in | |
| 🔒 TLS Support | ❌ | ✅ Built-in | ✅ Built-in | ✅ Built-in |
| 📃 Tool integrity check | ❌ | ✅ Built-in | ✅ Built-in | ✅ Built-in |
| 📊 Visualization and Tracing | ❌ | ✅ Built-in | ✅ Built-in | ✅ Built-in |
| 🛡️ Isolation | ❌ | ✅ Built-in | ✅ Built-in | |
| 🔐 Security Policy Management | ❌ | 👤 Custom Implementation | ✅ Built-in | |
| 🕵️ Secrets Redaction | ❌ | 👤 Custom Implementation | ✅ Built-in | |
| 🔑 Authorization Controls | ❌ | 👤 Custom Implementation | 👤 Custom Implementation | ✅ Built-in |
| 🧑💻 PII Detection and Redaction | ❌ | 👤 Custom Implementation | 👤 Custom Implementation | ✅ Built-in |
| 📌 Version Pinning | ❌ | ❌ | ✅ Built-in | ✅ Built-in |
| 🔍 Deep Multimodal Analysis & Redaction | ❌ | ❌ | ❌ | ✅ Built-in |
✅ Included |
Use the Docker container image to deploy your Secure MCP Server on your local machine or in your favorite cloud. Each container is packaged with a Helm chart for easy deployment to your cluster.
Note
All the published containers have a latest tag that points to the latest version currently supported. The Helm Chart do not use the latest tag, they are pinned to a specific version for consistency and reproducibility across deployments.
Find all the MCP Secure Servers which have been verified and open sourced. If your MCP Server is not available, feel free to submit a request.