Skip to content

v0.1.0

Latest

Choose a tag to compare

@JumpTechCode JumpTechCode released this 17 Jun 07:33
27d4ead

First tagged release of Portcullis — a security gateway for the Model Context Protocol (MCP).

This is early, pre-1.0 software: interfaces may still change and it has not yet seen production use. The 0.x series tracks active development.

What's in V1

  • Static API-key client authentication with constant-time comparison
  • Deny-by-default policy with security-load-bearing catalog filtering
  • Downstream proxying over stdio (supervised subprocess pool) and Streamable HTTP
  • Connection-level, gateway-held secret injection (never exposed to clients)
  • Outbound redaction of injected secrets plus configurable PII patterns
  • Failure-class-aware circuit breaking and per-call timeouts
  • Asynchronous structured audit with a fail-closed path for security records
  • Prometheus /metrics, and SIGHUP / --watch config hot-reload

See the README for the security model, threat model, and the precise V1 scope (including documented non-goals).