A Scalable Platform Built on top of Kubernetes to Provide Secure Remote Access to your MCP Servers Wherever They are (e.g. Private Clouds, Containers, IoT, Your own Laptop, Publicly Protected SaaS), Deployment, Dynamic Routing to All your MCP Servers, Unified Identity and User Management as well as L7-aware Access Control and Visibility

Seamlessly Deploy, Scale and Provide Secure Access to your Streamable HTTP/SSE-based MCP Servers whose Docker Images are Stored in Public and Private Container Registries

Application-layer Aware Access Control where You can Control Access to HTTP Paths, Methods, Headers and Serialized JSON-RPC Body Content including Request Parameters and Methods via Identity-based Context-aware ABAC and Policy-as-Code via CEL and Open Policy Agent (OPA) on a per-Request Basis.

Advanced Identity-based, Context-aware Request/Response Manipulation and Sanitization of Headers and JSON Body Content with Lua Scripts as well as Compliant Envoy ExtProc Servers

Provide Unified Access for all your MCP Clients written in any Programming Language via Standard OAuth2 Client-Credentials Flow and Bearer Authentication without having to use Special SDKs or install any Clients

OpenTelemetry-ready Layer-7 Aware, Real-Time Visibility and Auditing to Your Log Management and SIEM Providers

Application-layer Aware Dynamic Configuration where You can Route to Different MCP Servers (e.g. Multiple Vendors or API Versions), Set Different Upstream API Keys, Access Tokens and mTLS Private Keys Corresponding to Different Upstream Contexts and Accounts Depending on The Identity and Context via Policy-as-Code

A Scalable Platform Built on top of Kubernetes for Automatic Horizontal Scalability and Availability

Designed to be Administered like Kubernetes via DevOps/GitOps-friendly Centralized and Declarative Way. The Cluster is furthermore fully Programmable over gRPC.