Labsco
acuvity logo

Minibridge

β˜… 55

from acuvity

A backend-to-frontend bridge that securely exposes MCP servers to the internet, supporting agent authentication, content analysis, transformation, and telemetry.

πŸ”₯πŸ”₯πŸ”₯πŸ”₯βœ“ VerifiedFreeQuick setup

Minibridge

Build Go Report Card GoDoc DockerHub

Minibridge serves as a backend-to-frontend bridge, streamlining and securing communication between Agents and MCP servers. It safely exposes MCP servers to the internet and can optionally integrate with generic policing services β€” known as Policers β€” for agent authentication, content analysis, and transformation. Policers can be implemented remotely via HTTP or locally using OPA Rego policies.

Minibridge can help ensure the integrity of MCP servers through SBOM (Software Bill of Materials) generation and real-time validation.

Additionally, Minibridge supports OTEL and can report/rettach spans from classical OTEL headers, as well as directly from the MCP call, as inserted by certain tool like Open Inference.

arch-overview

  • Minibridge Frontend: The Client connects to the Frontend part of Minibridge.
  • Minibridge Backend: The Frontend connects to the Backend which wraps the MCP server.
  • Minibridge Policer: The Policer runs in the Backend and can optionally take decision on the input and output based on some policies (locally with Rego or remotely using HTTPs)

[!TIP] Conveniently, Minibridge can be started in an "all-in-one" (AIO) mode to act as a single process.

Why using Minibridge ?

Minibridge covers the following:

  • Secure Transport: Use TLS with optionally, client certificate validation
  • Integrity: Ensure the MCP server can not mutate tools, templates, etc. during the execution
  • User Authentication: Transport the user information to the Policer
  • Monitoring: Expose prometheus metrics
  • Telemetry: Report traces and spans using Opentelemetry

Features comparisons

πŸš€ FeatureπŸ”Ή MCPπŸ”Έ MinibridgeπŸ“¦ ARC (Acuvity Containers)
🌐 Remote Accessβš οΈβœ…βœ…
πŸ”’ TLS SupportβŒβœ…βœ…
πŸ“ƒ Tool integrity checkβŒβœ…βœ…
πŸ“Š Visualization and TracingβŒβœ…βœ…
πŸ›‘οΈ IsolationβŒβš οΈβœ…
πŸ” Security Policy ManagementβŒπŸ‘€βš οΈ
πŸ•΅οΈ Secrets RedactionβŒπŸ‘€βš οΈ
πŸ”‘ Authorization ControlsβŒπŸ‘€πŸ‘€
πŸ§‘β€πŸ’» PII Detection and RedactionβŒπŸ‘€πŸ‘€
πŸ“Œ Version PinningβŒβŒβœ…

βœ… Included | ⚠️ Partial/Basic Support | πŸ‘€ Custom User Implementation | ❌ Not Supported

Documentation

Check out the complete documentation from the wiki pages.

Contribute

We are excited to welcome contributions from everyone! πŸŽ‰ Whether you're fixing bugs, enhancing features, improving documentation, or proposing entirely new ideas, your involvement helps strengthen the project and benefits the entire community.

You do not need to sign a Contributor License Agreement (CLA) β€” just open a pull request and let's collaborate!

Join us