Is Mcp Governance Sdk safe to use?

Mcp Governance Sdk has no known CVEs as of the latest MCPpedia security scan. It does not require authentication, so any local process can connect — keep this in mind in shared environments. Licensed under Apache-2.0.

How do I install Mcp Governance Sdk?

Mcp Governance Sdk can be installed by cloning its GitHub repository and following the setup instructions in the README.

What AI clients work with Mcp Governance Sdk?

Mcp Governance Sdk is compatible with Claude Desktop, Cursor, Claude Code, and most MCP clients that support stdio transport. It uses stdio transport.

Is Mcp Governance Sdk actively maintained?

Mcp Governance Sdk is not actively maintained — last commit was 370 days ago. It has 37 GitHub stars.

21DNo CVEsabandonedApache-2.0

Embed in your READMEAbout badges →

[![MCPpedia Score](https://mcppedia.org/api/badge/mcp-governance-sdk)](https://mcppedia.org/s/mcp-governance-sdk)

✓

Is it safe?

No package registry to scan.

No authentication — any process on your machine can connect.

Apache-2.0. View license →

Is it maintained?

Last commit 370 days ago. 37 stars.

Will it work with my client?

Transport: stdio. Works with Claude Desktop, Cursor, Claude Code, and most MCP clients.

Test This Server

No automated test available for this server. Check the GitHub README for setup instructions.

MCPpedia Score

Click each category to see evidence

21D

Last scored just now

How we score →

Security

6/30

No known vulnerabilities.

○

Known CVEs — No package registry to scan

○

Tool safety — No tools to analyze

○

Tool poisoning — No tools to analyze

○

Injection vectors — No tools to analyze

✓

Tool stability — Tool definitions stable

○

Dependency health — No package to analyze

✓

License — License: Apache-2.0

○

Authentication — No authentication required

○

CVEs checked daily via OSV.dev. Score algorithm is open source.

Have you used this server?

Share your experience — it helps other developers decide.

How easy was setup?Did it work reliably?How was the documentation?

MCP Security Weekly

Get CVE alerts and security updates for Mcp Governance Sdk and similar servers.

Start a conversation

Ask a question, share a tip, or report an issue.

Has anyone used this with Cursor?How do you handle auth?Any alternatives?

MCP Governance SDK (@ithena-one/mcp-governance)

Website: ithena.one

The missing governance layer for your Model Context Protocol (MCP) servers.

Build secure, compliant, and observable MCP applications with Ithena. Easily add Identity, Authorization (RBAC), Credential Management, Auditing, Logging, and Tracing using our SDK for servers built with @modelcontextprotocol/typescript-sdk, or leverage the upcoming Ithena Managed Platform (waitlist open!).

📚 Documentation:

Getting Started - Quick start guide with a complete example
Tutorial: Identity & RBAC - Step-by-step guide to implementing core governance features
Core Concepts - Understanding the SDK's architecture and pipeline
Configuration - All available options and their usage
Interfaces - Extensibility points and custom implementations
Authorization - RBAC system and permission management
Auditing & Logging - Observability and compliance features
Default Implementations - Built-in components (development only)
Security Considerations - Security best practices and warnings

The Problem: Production MCP Needs More

The standard @modelcontextprotocol/sdk is excellent for implementing the core MCP communication protocol. However, deploying MCP servers in production, especially in enterprise environments, requires addressing critical governance questions:

❓ Who is accessing data and tools? (Authentication)
🔒 Are they allowed to do that? (Authorization)
🔑 How do handlers securely access needed secrets? (Credentials)
📝 What happened? (Auditing & Compliance)
🩺 How do we monitor and debug effectively? (Logging & Tracing)

Implementing these consistently across every MCP server is complex and error-prone.

The Solution: `@ithena-one/mcp-governance`

This SDK provides a standard, pluggable framework that wraps the base Server class, letting you integrate essential governance features without rewriting your core MCP logic.

Ithena offers two ways to achieve this: the open-source SDK (@ithena-one/mcp-governance) for self-hosting, and the upcoming Ithena Managed Platform (currently accepting users via a [waitlist](http

... View full README on GitHub

Mcp Governance Sdk

Quick Install