Skip to content

Agent-Hellboy/mcp-runtime

BranchesTags

Repository files navigation

MCP Runtime Platform

CI Gosec Scan Trivy FS Scan Trivy Image Scan Coverage Go Report Card

Website: https://mcpruntime.org/
Docs: https://mcpruntime.org/docs/
API Reference: https://mcpruntime.org/docs/api

MCP Runtime is a self-hosted control plane for internal MCP servers on Kubernetes. The repo now covers metadata-driven deployment, operator reconciliation, optional gateway enforcement, dedicated access/session resources, registry workflows, and bundled audit/analytics through mcp-sentinel.

Alpha status: APIs, commands, and behavior are still evolving. Use the docs and v1alpha1 types as the source of truth. Not recommended for production yet.

What ships now

  • mcp-runtime CLI with setup, status, registry, server, pipeline, and cluster
  • MCPServer, MCPAccessGrant, and MCPAgentSession CRDs
  • Operator-managed Deployment, Service, and Ingress resources
  • Optional gateway sidecar for header-based identity, tool policy, trust, and audit emission
  • Internal or provisioned registry workflows
  • Bundled mcp-sentinel services for ingest, processing, API, UI, and observability

Requirements

  • Go 1.24+
  • kubectl
  • Docker
  • Make

Architecture

Developer / CI
      |
      v
+----------------------+
|   mcp-runtime CLI    |
+----------+-----------+
           |
           v
+----------------------+
|   v1alpha1 surface   |
|   MCPServer          |
|   MCPAccessGrant     |
|   MCPAgentSession    |
+----------+-----------+
           |
           v
+----------------------+        +----------------------+
| Operator + Registry  |------->| Deployments /        |
| + Ingress            |        | Services / Ingress   |
+----------+-----------+        +----------+-----------+
           |                               |
           | gateway enabled               | direct or gateway path
           v                               v
      +----------------+            /{server-name}/mcp
      | MCP proxy      |---------------------> MCP server
      | sidecar        |
      +--------+-------+
               |
               v
+------------------------------+
| mcp-sentinel                 |
| ingest | processor | API     |
| UI | gateway | metrics       |
+------------------------------+

Quick start

make deps && make build-runtime

./bin/mcp-runtime setup
./bin/mcp-runtime status

# Optional:
# ./bin/mcp-runtime setup --with-tls
# ./bin/mcp-runtime setup --without-sentinel

./bin/mcp-runtime registry push --image my-server:latest
./bin/mcp-runtime pipeline generate --dir .mcp --output manifests/
./bin/mcp-runtime pipeline deploy --dir manifests/

Servers are exposed at /{server-name}/mcp.

Key commands

./bin/mcp-runtime setup
./bin/mcp-runtime status
./bin/mcp-runtime registry
./bin/mcp-runtime server
./bin/mcp-runtime pipeline
./bin/mcp-runtime cluster

Current scope

  • Deployment, routing, grants, sessions, gateway policy, and audit/event flow are implemented in the current repo.
  • mcp-sentinel services support bearer-token validation, but this is not a full OAuth 2.1 authorization server or Dynamic Client Registration implementation.

Development

./hack/dev-setup.sh
make test
make operator-manifests operator-generate

Tested on macOS, Kind, and Minikube.

License

MIT

About

A manager,registry,broker, and infrastructure to manage , deploy and use MCP servers.

Topics

mcp kubernetes-operator devops-tools kubernetes-deployment devops-infrastructure kubernetes-platform-solution kubernetes-goclient devops-automation mcp-tools mcp-gateway devops-mcp mcp-platform mcp-runtime mcp-deployment

Resources

Readme

License

MIT license
Activity

Stars

4 stars

Watchers

0 watching

Forks

4 forks
Report repository

Releases

No releases published

Packages

 
 
 

Contributors

Languages