Security middleware for MCP. Blocks prompt injection, PII leakage, and resource exhaustion.
npx -y @mcp-bastion/coreAdd this server entry to the mcpServers object in your Claude Desktop config, then restart the app.
{
"mcpServers": {
"io-github-vaquarkhan-mcp-bastion": {
"command": "npx",
"args": [
"-y",
"@mcp-bastion/core"
]
}
}
}~/Library/Application Support/Claude/claude_desktop_config.json%APPDATA%\Claude\claude_desktop_config.jsonNo remote HTTP endpoint is advertised. Use the package or stdio setup shown in Install.
MCP-Bastion is an MCP server for Security middleware for MCP. Blocks prompt injection, PII leakage, and resource exhaustion.. It supports STDIO transport.
Use the generated config in Install. This server runs with npx -y @mcp-bastion/core; add any required environment variables before starting your client.
Choose the Claude Desktop tab in Install and copy the config for npx -y @mcp-bastion/core. Add required environment variables before starting Claude Desktop.
Choose the Claude Code tab in Install and copy the config for npx -y @mcp-bastion/core. Add required environment variables before starting Claude Code.
Choose the Codex tab in Install and copy the config for npx -y @mcp-bastion/core. Add required environment variables before starting Codex.
Choose the Cursor or VS Code tab in Install and copy the config for npx -y @mcp-bastion/core. Add required environment variables before starting Cursor or VS Code.
MCP-Bastion uses STDIO transport. Use the package or command config in Install.
MCP-Bastion inventory is listed when the MCP endpoint exposes tools, resources, or prompts. Some servers require auth first.
MCP-Bastion does not advertise a verified auth requirement. If discovery fails, it may still need provider login, an API key, a bearer token, or a session header.
| Package | Registry | Version | Inputs |
|---|---|---|---|
@mcp-bastion/corestdio | npm | 1.0.11 | None advertised |
mcp-bastion-pythonstdio | pypi | 1.0.11 | None advertised |