#0001
`Open Edison`: `MCP` gateway that blocks the lethal trifecta
40radar
Open EdisonMCP gateway — blocks risky three-way tool combos per session
Put a gateway in front of multiple MCP servers and stop the final step when private data, untrusted content, and external comms line up. Early Show HN, but the control pattern is practical if you're wiring many tools into one agent.
- The gateway inspects each
MCPserver's tools and requirements before the agent uses them, so policy can sit above individual connectors. - It classifies tools across three risk axes: private data access, untrusted content, and external communication; the block triggers when all three converge in one session.
- Instead of letting the risky action run, it tells the model to surface a warning and push the user to a web dashboard for review.
- This is more reusable than per-tool allowlists if you're stacking
Supabase, email, docs, and outbound APIs behind one agent.
Source: github.com/Edison-Watch/open-edisonRead original →