MCP ConfigsMay 12, 2026·2 min read

ToolSDK MCP Registry — Private Gateway + Sandbox

Self-host a private MCP gateway/registry with OpenAPI, sandboxed remote execution and OAuth 2.1, or use @toolsdk.ai/registry to query server configs.

MCP Hub
MCP Hub · Community
Agent ready

This asset can be read and installed directly by agents

TokRepo exposes a universal CLI command, install contract, metadata JSON, adapter-aware plan, and raw content links so agents can judge fit, risk, and next actions.

Native · 94/100Policy: allow
Agent surface
Any MCP/CLI agent
Kind
Mcp
Install
Single
Trust
Trust: Established
Entrypoint
toolsdk-mcp-registry
Universal CLI install command
npx tokrepo install 9a69abc8-36f4-5a62-8006-df6dbcde94ae
install contractmetadata JSONadapter planraw content
Intro

Self-host a private MCP gateway/registry with OpenAPI, sandboxed remote execution and OAuth 2.1, or use @toolsdk.ai/registry to query server configs.

  • Best for: teams that need a searchable MCP catalog plus a safe, auditable execution gateway
  • Works with: Docker; MCP servers (stdio + Streamable HTTP); any HTTP client; OpenAPI/Swagger
  • Setup time: 10–20 minutes

Practical Notes

  • Quant: the README states the registry ships metadata for 4,547+ public MCP servers.
  • Quant: default local endpoints are http://localhost:3003 (UI + Swagger) for quick validation.

How to adopt it without creating a new failure mode

Treat the registry as infrastructure, not a list:

  1. Decide your trust boundary. Keep a small allow-list of packages for production (prune packages/ for private deployments).
  2. Separate discovery from execution. Let anyone search, but restrict run/remote execution to controlled environments.
  3. Standardize env injection. For secrets, prefer per-tool env mapping and short-lived tokens; review x-mcp-env-* usage.

Suggested rollout checklist

  • Start with 5–10 tools your team already uses (GitHub, docs fetch, DB read-only) and validate each end-to-end.
  • Add monitoring around run volume and error rates; treat a spike as a policy regression.
  • If you expose Streamable HTTP gateways externally, add auth + rate limits first.

FAQ

Q: Is this just a list of MCP servers? A: No. It includes a self-hosted gateway with search + remote execution and OpenAPI docs.

Q: Can I run STDIO-only servers remotely? A: The README describes exposing registered packages behind a Streamable HTTP proxy endpoint.

Q: How do I keep it safe? A: Use allow-lists, limit env injection, and restrict remote execution to controlled environments.

🙏

Source & Thanks

Source: https://github.com/toolsdk-ai/toolsdk-mcp-registry > License: MIT > GitHub stars: 172 · forks: 84

Discussion

Sign in to join the discussion.
No comments yet. Be the first to share your thoughts.

Related Assets

MCP Gateway & Registry — Team Tool Control

MCP Gateway & Registry centralizes MCP servers and agent tools with auth, search, and audit, so teams can manage integrations and scan servers before use.

MCP Configs
MCP Hub

ContextForge — MCP Registry + Proxy Gateway

ContextForge runs an MCP gateway that federates tool servers behind one endpoint, adding governance, auth, and observability for agent tool calls.

MCP Configs
MCP Hub

LitterBox — Self-Hosted Payload Sandbox (MCP)

LitterBox is a self-hosted payload-analysis sandbox: upload a sample, run static and EDR analysis, and review a Detection Score before it leaves the lab.

MCP Configs
MCP Hub

Confluent MCP — Kafka + Flink Tools via MCP

Confluent MCP Server exposes 50+ Confluent tools (Kafka, Flink SQL, Schema Registry and more) to MCP clients, with a config-driven setup via npx.

MCP Configs
MCP Hub
Home🔍Search👤Me