Gatekeeper FAQs

Question 1

What is Gatekeeper and its primary purpose?

Accepted Answer

Gatekeeper is an MCP (Model Context Protocol) server designed to provide secure and controlled execution of shell commands, along with HTTP proxy capabilities, specifically for AI assistants. It acts as a robust security layer for AI-driven automation.

Question 2

How does Gatekeeper ensure secure command execution for AI assistants?

Accepted Answer

Gatekeeper enforces security through flexible sandboxing modes (none, bubblewrap, WASM) to isolate commands, applies policy-based access control using glob patterns for argument validation, and supports API key authentication. This prevents unauthorized or malicious command execution.

Question 3

What operating modes does Gatekeeper support for integration?

Accepted Answer

Gatekeeper supports three main operating modes: stdio for direct integration with MCP clients (like Claude Desktop), HTTP for exposing shell commands as a secure JSON-RPC 2.0 API, and bridge mode to proxy existing stdio MCP servers over HTTP.

Question 4

Can I define custom tools and access policies with Gatekeeper?

Accepted Answer

Absolutely. Gatekeeper uses flexible JSON-based plugin configurations, allowing you to define specific tools, their commands, required arguments, allowed argument patterns (using globs), sandboxing modes, and permitted environment variables, giving you granular control.

Question 5

Does Gatekeeper offer logging and auditing features?

Accepted Answer

Yes, Gatekeeper includes optional SQLite-based audit logging for all tool calls, providing a comprehensive record of executed commands. It also supports MCP Apps UI for rendering rich HTML interfaces for tool outputs, enhancing transparency and usability.

Gatekeeper

Gatekeeper

Características Principales

Casos de Uso

Características Principales

Casos de Uso