Spaces:
Running
Running
Delete README_MCP_HUB.md
Browse files- README_MCP_HUB.md +0 -63
README_MCP_HUB.md
DELETED
|
@@ -1,63 +0,0 @@
|
|
| 1 |
-
# Universal MCP Hub (Sandboxed)
|
| 2 |
-
#### Universal MCP Server running in **paranoid mode** — built on [PyFundaments](PyFundaments.md) and licensed under ESOL.
|
| 3 |
-
|
| 4 |
-
|
| 5 |
-
|
| 6 |
-
The goal was simple: too many MCP servers out there with no sandboxing, hardcoded keys, and zero security thought. This one is different. No key = no tool = no crash. The Guardian (`main.py`) controls everything. `app/mcp.py` gets only what it needs, nothing more.
|
| 7 |
-
|
| 8 |
-
- MCP_HUB Built with Claude (Anthropic) as a typing tool. Architecture, security decisions
|
| 9 |
-
- Pyfundaments by Volkan Sah read [ESOL](ESOL)
|
| 10 |
-
|
| 11 |
-
---
|
| 12 |
-
|
| 13 |
-
## MCP Client Configuration (SSE)
|
| 14 |
-
|
| 15 |
-
To connect Claude Desktop or any MCP client to this hub:
|
| 16 |
-
|
| 17 |
-
```json
|
| 18 |
-
{
|
| 19 |
-
"mcpServers": {
|
| 20 |
-
"pyfundaments-hub": {
|
| 21 |
-
"url": "https://YOUR_USERNAME-universal-mcp-hub.hf.space/sse"
|
| 22 |
-
}
|
| 23 |
-
}
|
| 24 |
-
}
|
| 25 |
-
```
|
| 26 |
-
|
| 27 |
-
---
|
| 28 |
-
|
| 29 |
-
## Architecture
|
| 30 |
-
|
| 31 |
-
```
|
| 32 |
-
main.py ← Guardian: initializes all services, controls what app/ receives
|
| 33 |
-
└── app/mcp.py ← Sandbox: registers only tools with valid keys
|
| 34 |
-
├── LLM tools (Anthropic, Gemini, OpenRouter, HuggingFace)
|
| 35 |
-
├── Search tools (Brave, Tavily)
|
| 36 |
-
├── DB tools (only if DATABASE_URL is set)
|
| 37 |
-
└── System tools (always active)
|
| 38 |
-
```
|
| 39 |
-
|
| 40 |
-
**The Guardian pattern:** `app/mcp.py` never reads `os.environ` directly.
|
| 41 |
-
It receives a `fundaments` dict from `main.py` — and only what `main.py` decides to give it.
|
| 42 |
-
|
| 43 |
-
---
|
| 44 |
-
|
| 45 |
-
## Security Notes
|
| 46 |
-
|
| 47 |
-
- All API keys loaded via Secrets (env vars) — never hardcoded
|
| 48 |
-
- `list_active_tools` returns key **names** only, never values
|
| 49 |
-
- DB tools are read-only by design (`SELECT` only, enforced at application level)
|
| 50 |
-
- Direct execution of `app/mcp.py` is blocked by design
|
| 51 |
-
- Built on PyFundaments — a security-first Python architecture for developers
|
| 52 |
-
|
| 53 |
-
> PyFundaments is not perfect. But it's more secure than most of what runs in production.
|
| 54 |
-
|
| 55 |
-
---
|
| 56 |
-
|
| 57 |
-
## License
|
| 58 |
-
|
| 59 |
-
Apache License 2.0 + [ESOL 1.1](https://github.com/VolkanSah/ESOL)
|
| 60 |
-
|
| 61 |
-
---
|
| 62 |
-
|
| 63 |
-
*"I use AI as a tool, not as a replacement for thinking."* — Volkan Kücükbudak
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|