Rul1an/assay

Overview

Rul1an/assay is a Rust-based policy engine that enforces tool call policies for MCP agents at the kernel level using eBPF or LSM on Linux. It blocks risky tool calls before execution, provides verifiable evidence of agent actions, and enforces egress controls. The system is deterministic and offline-first with bounded claims.

Best for

Best for
Developers building secure MCP agents with deterministic policy enforcement

Use cases

• Block unauthorized tool calls in MCP agents
• Generate verifiable audit logs of agent actions
• Enforce network egress policies at the kernel level

Notes

Rul1an/assay is a Rust-based policy engine that enforces tool call policies for MCP agents at the kernel level using eBPF or LSM on Linux. It blocks risky tool calls before execution, provides verifiable evidence of agent actions, and enforces egress controls. The system is deterministic and offline-first with bounded claims.

7 stars on GitHub. Last updated 2026-06-15. Licensed MIT.

Use cases

• Block unauthorized tool calls in MCP agents
• Generate verifiable audit logs of agent actions
• Enforce network egress policies at the kernel level

Pros

• Deterministic enforcement without runtime dependencies
• Kernel-level egress control via eBPF or LSM
• Bounded claims provide verifiable evidence of agent behavior

Cons

• Linux-only due to eBPF or LSM dependency
• Very early stage with only 7 GitHub stars
• Narrow scope limited to MCP agent tool call enforcement

Indexed from awesome-mcp-servers-punkpeye and enriched against its public facts.