Allowed
Read-only tools can be forwarded.
MCP Proxy
Put RuleOak between MCP-style tool requests and execution
RuleOak Core v2.0.1 includes a local in-process MCP Guard Proxy, Policy Packs, and Approval Inbox prototype for JSON-RPC tools/call requests. It forwards allowed calls, returns approval-required for risky calls, and blocks dangerous calls.
npm run mcp:proxy:demo
npm run test:mcp-proxyApproval-required
External or risky actions can be paused.
Blocked
Destructive tools can be denied before execution.