The API gateway
for the age of agents.

Your tools. Your rules. Zero token waste.

// Overview

Auth0 didn't invent OAuth. It made OAuth usable.
Cephalopodic doesn't replace MCP. It makes MCP scale.

Without Cephalopodic
Wild permissions — no access control
No audit trail — who called what?
N × schema token cost at startup
Deployment fear — APIs exposed
No runtime inspection
With Cephalopodic
Governed access via RBAC and policy
Full audit log — who, what, when, hash
O(1) flat — 248 tokens always
Self-hostable inside your perimeter
Fortress inline inspection — 10ms budget
Client
AI Agent
Cephalopodic
Gateway
route · discover · auth
Fortress
inspect · enforce · log
Scath
scan · probe · report
Upstream
MCP Servers
Gateway
One gateway. Every MCP provider.
Register taps, assign scopes.
RBAC + policy engine built in.
Fortress
Inline proxy on every call.
Three inspection tiers, 10ms budget.
Tamper-evident audit chain.
Scath
Scans before attackers do.
Probe, attack, replay, report.
Reproducible evidence — not just alerts.

// ENTERPRISE DEPLOYMENT

Built for your perimeter.

Self-hosted inside your network. Your sensitive APIs never touch the public internet. Deploy anywhere — Docker, Kubernetes, or air-gapped.

Self-hostable

Deploy inside your firewall. Internal APIs stay internal. Ships as Docker container, Kubernetes Helm chart, or air-gapped install.

RBAC built in

Role → tap → command. Nurses see clinical taps. Engineers see infra taps. No per-user configuration needed.

Audit every call

Who, what, when, parameters, response hash. Every invocation logged. Tamper-evident hash-linked chain. This is what a CISO signs off on.

Healthcare

HIPAA
Epic EHR · Lab API · PACS · Scheduling

AI assistant looks up labs, cross-references medications, flags interactions — without data leaving the network.

Financial Services

PCI-DSSSOC 2
Core Banking · Trading Platform · Risk Engine · Compliance DB

AI analyst queries exposure, runs risk scenarios, drafts compliance reports — on data that never touches a public API.

Government

FedRAMP
Case Management · Document Store · HR System · Procurement

AI helps case workers retrieve records and draft correspondence within the accredited boundary.

Docker · K8s · Air-gapped
Deployment
0
APIs exposed
HIPAA · PCI-DSS · FedRAMP
Compliance

// LIVE METRICS · sample data — connects to your instance on deploy

Your entire MCP stack. Live.

Gateway health. Fortress enforcement. Scath scan status. One feed.

All systems operational|
GATEWAY
0
Requests routed today
+12% from yesterday
FORTRESS
6.2ms
Avg inspection latency
within 10ms Fortress budget
FORTRESS
0.77%
Block rate
37 blocked · 14 in quarantine
SCATH
2h ago
Last Scath scan
acme-mcp · 3 findings · report ready
Live activity feed

// MCP PROVIDERS

Every provider.
One tap.

Register any MCP server once. Cephalopodic handles discovery, auth, and routing — your agent pays 248 tokens flat regardless of how many you connect.

GitHubGitHubrepos · PRs · actions
DiscordDiscordmessages · channels
ZapierZapierworkflows · automation
JiraJiraissues · sprints
LinearLinearissues · projects
NotionNotionpages · databases
SnowflakeSnowflakequeries · warehouses
StripeStripepayments · invoices
ShopifyShopifyorders · products · store
PostgreSQLPostgreSQLqueries · schemas
FigmaFigmafiles · components
Google CloudGoogle Cloudcompute · storage · APIs
DatadogDatadogmetrics · logs · traces
VercelVerceldeploys · domains
GitHubGitHubrepos · PRs · actions
DiscordDiscordmessages · channels
ZapierZapierworkflows · automation
JiraJiraissues · sprints
LinearLinearissues · projects
NotionNotionpages · databases
SnowflakeSnowflakequeries · warehouses
StripeStripepayments · invoices
ShopifyShopifyorders · products · store
PostgreSQLPostgreSQLqueries · schemas
FigmaFigmafiles · components
Google CloudGoogle Cloudcompute · storage · APIs
DatadogDatadogmetrics · logs · traces
VercelVerceldeploys · domains
PagerDutyPagerDutyincidents · on-call
IntercomIntercomconversations · users
ConfluenceConfluencepages · spaces
SentrySentryerrors · releases
HubSpotHubSpotcontacts · pipelines
GrafanaGrafanadashboards · alerts
MixpanelMixpanelevents · funnels · cohorts
MongoDBMongoDBcollections · queries
SupabaseSupabasetables · auth · storage
KubernetesKubernetespods · deployments
CloudflareCloudflareworkers · DNS · KV
GitLabGitLabrepos · pipelines · MRs
ClickUpClickUptasks · docs · goals
ZendeskZendesktickets · agents
AirtableAirtablebases · tables · views
MailChimpMailchimpcampaigns · audiences
AsanaAsanatasks · projects
DropboxDropboxfiles · folders · sharing
RedisRediscache · pub/sub · streams
ElasticsearchElasticsearchsearch · analytics
DockerDockercontainers · registries
TerraformTerraforminfra · modules · state
PagerDutyPagerDutyincidents · on-call
IntercomIntercomconversations · users
ConfluenceConfluencepages · spaces
SentrySentryerrors · releases
HubSpotHubSpotcontacts · pipelines
GrafanaGrafanadashboards · alerts
MixpanelMixpanelevents · funnels · cohorts
MongoDBMongoDBcollections · queries
SupabaseSupabasetables · auth · storage
KubernetesKubernetespods · deployments
CloudflareCloudflareworkers · DNS · KV
GitLabGitLabrepos · pipelines · MRs
ClickUpClickUptasks · docs · goals
ZendeskZendesktickets · agents
AirtableAirtablebases · tables · views
MailChimpMailchimpcampaigns · audiences
AsanaAsanatasks · projects
DropboxDropboxfiles · folders · sharing
RedisRediscache · pub/sub · streams
ElasticsearchElasticsearchsearch · analytics
DockerDockercontainers · registries
TerraformTerraforminfra · modules · state

Running your own MCP server?

Any stdio, SSE, or HTTP MCP server works with Cephalopodic. Register it in seconds — auth, RBAC, and audit logging come free.

// Register any MCP server
$ mcp-tap taps create my-internal-api my-internal-api-server
→ fetches manifest, caches locally
$ mcp-tap taps list
github · discord · jira · my-internal-api
// 248 tokens. Same as always.

// FOR DEVELOPERS & SECURITY TEAMS

Built for the
command line.

Built for the threat landscape.

Agents already trust shell commands. Make sure those commands are trustworthy.

Today, 20 connected MCPs load 12,000+ tokens of unverified tool schemas into your agent before the user types a word. Any of those schemas could contain hidden instructions.

Single Rust binary

No runtime deps, no supply chain surface. cargo install mgate. ~5MB compiled. Works immediately.

Offline discovery + schema pinning

Manifests cached locally and pinned. If a server's schema changes unexpectedly, Fortress flags it. Tool poisoning caught before it reaches your agent.

Any MCP transport

stdio, SSE, and HTTP — normalised behind one interface. One inspection point. Every transport covered.

Auth baked in

SAML/OIDC via corporate IdP. RBAC on every call. API keys for CLI. Your agents only reach what they're allowed to reach.

1# Single binary — no runtime deps, no supply chain surface
2cargo install mgate
3
4# Or via npm
5npx mgate --version
6
7# Register your first MCP server
8mgate tap add github
9# → fetches manifest (~2KB)
10# → caches to ~/.local/share/mgate/
11# → schema pinned. drift detection active.
$cargo install mgate
Compiling mgate v1.2.0 ... Finished in 0.4s
Read the docs|View on GitHub|Security whitepaper →

Start building the future, today.

One gateway. Every MCP provider. 248 tokens flat. Open source, self-hostable, enterprise-ready.

No credit card required