{"id":"hyprmcp-mcp-gateway","name":"mcp-gateway","homepage":"https://hyprmcp.com","repo_url":"https://github.com/hyprmcp/mcp-gateway","category":"infrastructure","subcategories":[],"tags":["mcp","mcp-gateway","oauth2","oauth-proxy","authentication-middleware","observability","prompt-analytics","api-gateway","go"],"what_it_does":"Hypr MCP Gateway is an OAuth2 proxy for Model Context Protocol (MCP) servers that performs 1-click OAuth authorization and supports dynamic client registration (DCR). It also provides prompt telemetry and MCP request logging/payload inspection for streamable HTTP MCP servers.","use_cases":["Add OAuth2-based access control to existing MCP servers without embedding auth logic in each MCP implementation","Centralize MCP request logging and payload inspection for auditing/debugging","Collect prompt/telemetry analytics for MCP-driven agent interactions","Run an MCP gateway layer for enterprise-style governance and request filtering (\"firewall\" referenced in repo description)"],"not_for":["Environments that require a fully self-hosted, standard web API surface (the provided README does not describe REST/OpenAPI endpoints for the gateway itself)","Teams that need clear, documented retry/idempotency semantics for gateway operations (not described in the provided README)","Use cases where OAuth2 flows cannot be integrated (no additional auth details beyond the OAuth proxy concept are provided)"],"best_when":"You want to front one or more streamable HTTP MCP servers with centralized OAuth2 authorization and observability/telemetry.","avoid_when":"You need a clearly documented developer API contract (OpenAPI/SDK) for direct programmatic integration beyond running/hosting the gateway.","alternatives":["Build OAuth2 auth directly into your MCP server (custom implementation)","Use a generic reverse proxy/auth gateway (e.g., OIDC proxy) in front of an HTTP MCP endpoint, if it supports your auth flow requirements","Managed MCP gateway/auth services (mentioned as Hypr MCP Cloud)"],"af_score":30.5,"security_score":50.8,"reliability_score":28.8,"package_type":"mcp_server","discovery_source":["github"],"priority":"high","status":"evaluated","version_evaluated":null,"last_evaluated":"2026-03-30T13:48:16.040243+00:00","interface":{"has_rest_api":false,"has_graphql":false,"has_grpc":false,"has_mcp_server":false,"mcp_server_url":null,"has_sdk":false,"sdk_languages":[],"openapi_spec_url":null,"webhooks":false},"auth":{"methods":["OAuth2 authorization proxy","Dynamic client registration (DCR) for OAuth clients"],"oauth":true,"scopes":false,"notes":"The README indicates OAuth2 support and DCR, but does not provide concrete scope model details or examples of configured auth policies in the provided text."},"pricing":{"model":null,"free_tier_exists":false,"free_tier_limits":null,"paid_tiers":[],"requires_credit_card":false,"estimated_workload_costs":null,"notes":"Managed hosting is mentioned (Hypr MCP Cloud) with a waitlist, but no pricing tiers/limits are described in the provided content."},"requirements":{"requires_signup":false,"requires_credit_card":false,"domain_verification":false,"data_residency":[],"compliance":[],"min_contract":null},"agent_readiness":{"af_score":30.5,"security_score":50.8,"reliability_score":28.8,"mcp_server_quality":60.0,"documentation_accuracy":45.0,"error_message_quality":0.0,"error_message_notes":null,"auth_complexity":55.0,"rate_limit_clarity":0.0,"tls_enforcement":50.0,"auth_strength":75.0,"scope_granularity":35.0,"dependency_hygiene":40.0,"secret_handling":45.0,"security_notes":"The project centers on OAuth2 and DCR, which is a stronger auth approach than no auth, but the provided content does not specify scope granularity, token handling practices, TLS requirements, or how secrets are managed/logged. It does mention payload inspection and logging, which can increase risk if logs include sensitive prompt or authorization-related data.","uptime_documented":0.0,"version_stability":45.0,"breaking_changes_history":45.0,"error_recovery":25.0,"idempotency_support":"false","idempotency_notes":null,"pagination_style":"none","retry_guidance_documented":false,"known_agent_gotchas":["Auth and telemetry behavior depend on gateway configuration; the provided README does not include operational details needed to safely automate flows end-to-end.","No explicit description of gateway API endpoints, response formats, or error contracts is provided in the supplied README."]}}