Skip to content

feat: MCP exfiltration detection and dynamic policy evaluation (v3.2.0) #215

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Closed
saurabhjain1592 wants to merge 1 commit into from
Closed

feat: MCP exfiltration detection and dynamic policy evaluation (v3.2.0) #215

saurabhjain1592 wants to merge 1 commit into from

Conversation

@saurabhjain1592
Copy link
Member

@saurabhjain1592 saurabhjain1592 commented Jan 14, 2026

Summary

MCP policy enforcement enhancements for v3.2.0 release.

Exfiltration Detection (#966)

  • Row count limits (default: 10,000 per query)
  • Data volume limits (default: 10MB per response)
  • HTTP 403 blocking with clear error details
  • Configuration via MCP_MAX_ROWS_PER_QUERY, MCP_MAX_BYTES_PER_QUERY

Dynamic Policy Evaluation (#968)

  • Optional Orchestrator integration for real-time policy evaluation
  • Rate limiting, budget controls, time-based access, role-based access
  • Graceful degradation when Orchestrator unavailable
  • Configuration via MCP_DYNAMIC_POLICIES_ENABLED

Documentation

  • Updated community/enterprise feature matrix
  • MCP connector architecture documentation
  • Updated ADR-022 with new policy features

Test Plan

  • go build ./platform/... passes
  • go test ./platform/shared/policy/... passes
  • HTTP examples in examples/mcp-policies/ work

feat: MCP exfiltration detection and dynamic policy evaluation (v3.2.0)
d2102cf 
Exfiltration Detection (#966):
- Row count limits (default: 10,000 per query)
- Data volume limits (default: 10MB per response)
- HTTP 403 blocking with clear error details
- Env vars: MCP_MAX_ROWS_PER_QUERY, MCP_MAX_BYTES_PER_QUERY, MCP_EXFILTRATION_ENABLED

Dynamic Policy Evaluation (#968):
- Optional Orchestrator integration for real-time policy evaluation
- Rate limiting, budget controls, time-based access, role-based access
- Graceful degradation when Orchestrator unavailable
- Per-connector configuration support
- Env vars: MCP_DYNAMIC_POLICIES_ENABLED, MCP_DYNAMIC_POLICIES_TIMEOUT

Documentation:
- Updated community/enterprise feature matrix
- MCP connector architecture doc (768 lines)
- Updated ADR-022 with exfiltration and dynamic policy decisions
- HTTP examples in examples/mcp-policies/

Source commits: 476aab97, aae8b2d4, a4bc5ff0
Enterprise PRs: #998, #999, #1000
@saurabhjain1592 saurabhjain1592 added the community-sync Sync from enterprise repository label Jan 14, 2026
@saurabhjain1592
Copy link
Member Author

saurabhjain1592 commented Jan 14, 2026

Closing: CI failed due to insufficient test coverage (75.7% vs 76% threshold). Enterprise PRs were incorrectly merged bypassing CI. Need to add proper tests before re-syncing.

@saurabhjain1592 saurabhjain1592 deleted the sync/enterprise-20260114-175448-21004377246 branch January 27, 2026 10:43
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

community-sync Sync from enterprise repository

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@saurabhjain1592