npm package discovery and stats viewer.

Discover Tips

  • General search

    [free text search, go nuts!]

  • Package details

    pkg:[package-name]

  • User packages

    @[username]

Sponsor

Optimize Toolset

I’ve always been into building performant and accessible sites, but lately I’ve been taking it extremely seriously. So much so that I’ve been building a tool to help me optimize and monitor the sites that I build to make sure that I’m making an attempt to offer the best experience to those who visit them. If you’re into performant, accessible and SEO friendly sites, you might like it too! You can check it out at Optimize Toolset.

About

Hi, 👋, I’m Ryan Hefner  and I built this site for me, and you! The goal of this site was to provide an easy way for me to check the stats on my npm packages, both for prioritizing issues and updates, and to give me a little kick in the pants to keep up on stuff.

As I was building it, I realized that I was actually using the tool to build the tool, and figured I might as well put this out there and hopefully others will find it to be a fast and useful way to search and browse npm packages as I have.

If you’re interested in other things I’m working on, follow me on Twitter or check out the open source projects I’ve been publishing on GitHub.

I am also working on a Twitter bot for this site to tweet the most popular, newest, random packages from npm. Please follow that account now and it will start sending out packages soon–ish.

Open Software & Tools

This site wouldn’t be possible without the immense generosity and tireless efforts from the people who make contributions to the world and share their work via open source initiatives. Thank you 🙏

© 2026 – Pkg Stats / Ryan Hefner

ga-mcp-guard

v1.0.1

Published

An MCP server wrapper with built-in moderation that aggregates multiple MCP servers into one

Vulnerabilities

Powered byPowered by Snyk
  • 0High
  • 0Medium
  • 0Low

Links

Git

Maintainers

rezhvrezhv

Keywords

mcpserverwrappermoderationai-safety

Readme

GA MCP Wrapper

An MCP server wrapper with built-in moderation that aggregates multiple MCP servers into one secure interface.

Features

  • Multi-server aggregation: Combine multiple MCP servers into a single interface
  • Built-in moderation: Automatically filters potentially harmful content using AI-powered detection
  • Zero setup: Use directly with npx - no cloning or building required
  • MCP client compatible: Works with Claude Desktop, Cline, and other MCP clients
  • Flexible configuration: Support for various MCP server types and configurations
  • Environment-based settings: Configurable API endpoints and security settings

Quick Start

Simple Usage (Like Supabase MCP)

Just use npx directly in your MCP client configuration:

{
  "mcpServers": {
    "ga-mcp-wrapper": {
      "command": "npx",
      "args": [
        "-y",
        "ga-mcp-wrapper",
        "[{\"name\": \"supabase\", \"command\": \"npx\", \"args\": [\"-y\", \"@supabase/mcp-server-supabase@latest\", \"--access-token\", \"your-token\"]}]"
      ],
      "env": {
        "API_KEY": "your-ga-api-key",
        "ENABLE_GUARD_API": "true"
      }
    }
  }
}

Command Line Usage

# Single server
npx ga-mcp-wrapper '[{"name": "supabase", "command": "npx", "args": ["-y", "@supabase/mcp-server-supabase@latest", "--access-token", "your-token"]}]'

# Multiple servers
npx ga-mcp-wrapper '[
  {"name": "supabase", "command": "npx", "args": ["-y", "@supabase/mcp-server-supabase@latest", "--access-token", "your-token"]},
  {"name": "filesystem", "command": "npx", "args": ["-y", "@modelcontextprotocol/server-filesystem@latest", "/path/to/directory"]}
]'

MCP Client Configuration Examples

Claude Desktop

Add this to your claude_desktop_config.json:

{
  "mcpServers": {
    "ga-mcp-wrapper": {
      "command": "npx",
      "args": [
        "-y",
        "ga-mcp-wrapper",
        "[{\"name\": \"supabase\", \"command\": \"npx\", \"args\": [\"-y\", \"@supabase/mcp-server-supabase@latest\", \"--access-token\", \"your-supabase-token\"]}]"
      ],
      "env": {
        "API_KEY": "your-ga-api-key",
        "ENABLE_GUARD_API": "true"
      }
    }
  }
}

Cline VSCode Extension

{
  "mcpServers": {
    "ga-mcp-wrapper": {
      "command": "npx",
      "args": [
        "-y",
        "ga-mcp-wrapper", 
        "[{\"name\": \"supabase\", \"command\": \"npx\", \"args\": [\"-y\", \"@supabase/mcp-server-supabase@latest\", \"--access-token\", \"your-supabase-token\"]}]"
      ],
      "env": {
        "API_KEY": "your-ga-api-key",
        "ENABLE_GUARD_API": "true"
      }
    }
  }
}

Multiple Servers Example

{
  "mcpServers": {
    "ga-mcp-wrapper-multi": {
      "command": "npx",
      "args": [
        "-y",
        "ga-mcp-wrapper",
        "[{\"name\": \"supabase\", \"command\": \"npx\", \"args\": [\"-y\", \"@supabase/mcp-server-supabase@latest\", \"--access-token\", \"your-supabase-token\"]}, {\"name\": \"filesystem\", \"command\": \"npx\", \"args\": [\"-y\", \"@modelcontextprotocol/server-filesystem@latest\", \"/Users/username/Documents\"]}]"
      ],
      "env": {
        "API_KEY": "your-ga-api-key",
        "ENABLE_GUARD_API": "true"
      }
    }
  }
}

Configuration

Environment Variables

Required for moderation to work:

# Required for moderation
API_KEY=your_ga_api_key_here
ENABLE_GUARD_API=true

⚠️ Important: If you set ENABLE_GUARD_API=true but don't provide an API_KEY, the wrapper will fail to start with an error.

Set these in your MCP client's env section:

Server Configuration Format

The wrapper accepts a JSON array of server configurations:

interface ServerConfig {
  name: string;           // Unique name for the server
  command: string;        // Command to run (usually "npx")
  args?: string[];        // Arguments for the command
  env?: Record<string, string>; // Environment variables
}

Real-World Examples

Supabase with Read-Only Access

{
  "name": "supabase",
  "command": "npx",
  "args": ["-y", "@supabase/mcp-server-supabase@latest", "--read-only", "--project-ref=your-project-ref"],
  "env": {
    "SUPABASE_ACCESS_TOKEN": "your-supabase-token"
  }
}

File System Server

{
  "name": "filesystem",
  "command": "npx",
  "args": ["-y", "@modelcontextprotocol/server-filesystem@latest", "/allowed/path"]
}

SQLite Server

{
  "name": "sqlite",
  "command": "npx",
  "args": ["-y", "@modelcontextprotocol/server-sqlite@latest", "/path/to/database.db"]
}

How It Works

  1. Aggregation: Connects to multiple MCP servers as configured
  2. Tool Prefixing: Prefixes all tools with server name (e.g., supabase_list_projects)
  3. Moderation: Analyzes all tool outputs for potential security threats
  4. Blocking: Automatically blocks responses containing prompt injection attempts
  5. Passthrough: Safe content passes through unchanged

Moderation System

The wrapper includes a built-in moderation system that:

  • Intercepts all tool outputs: Analyzes responses before they reach the client
  • AI-powered detection: Uses advanced heuristics and LLM analysis to detect prompt injection attempts
  • Blocks harmful content: Returns a standardized blocked response for flagged content
  • Maintains protocol compatibility: Ensures MCP protocol compliance even when blocking content
  • Configurable: Can be enabled/disabled via environment variables

Moderation Flow

  1. Tool is called → 2. Response generated → 3. Content analyzed → 4. Safe content passed through OR harmful content blocked

Supported MCP Servers

This wrapper works with any MCP-compatible server, including:

  • @supabase/mcp-server-supabase - Supabase database operations
  • @modelcontextprotocol/server-filesystem - File system operations
  • @modelcontextprotocol/server-fetch - HTTP requests
  • @modelcontextprotocol/server-sqlite - SQLite database operations
  • Custom MCP servers

Development

If you want to contribute or modify the wrapper:

git clone https://github.com/your-username/ga-mcp-wrapper.git
cd ga-mcp-wrapper
npm install
npm run build
npm test

Security Considerations

  • API Key Protection: Never commit API keys to version control
  • Environment Variables: Use MCP client's env section for sensitive configuration
  • Access Tokens: Rotate access tokens regularly
  • Network Security: Ensure secure connections to all services

API Reference

Guard API

The moderation system uses the General Analysis Guard API:

  • Endpoint: https://api.generalanalysis.com/guard
  • Method: POST
  • Authentication: Bearer token
  • Policy: @ga/mcp-injection (prompt injection detection)

Blocked Response Format

{
  "content": [
    {
      "type": "text",
      "text": "BLOCKED: This response was blocked by the moderation system due to potential prompt injection content."
    }
  ],
  "isError": true
}

License

MIT

Support

For issues and questions: