safety-protocols-mcp-server

v1.0.1

Published

3 months ago

MCP server for guardrails, compliance, and safety enforcement in GAFF

Downloads

0High
0Medium
0Low

mcp mcp-server model-context-protocol safety compliance guardrails gdpr ccpa pii-detection content-filtering rate-limiting gaff

safety-protocols MCP Server

Guardrails, compliance enforcement, and safety checks for GAFF workflows

Part of GAFF Framework - Open-source AI agent orchestration
Status: ✅ Production-Ready
Version: 1.0.1
Pipeline Position: Step 2 - Safety & Compliance Validation
Confluence: safety-protocols Documentation

⭐ Recommended: Use gaff-gateway to access this and all other GAFF servers through a single connection.

Overview

The safety-protocols MCP server provides comprehensive safety and compliance enforcement for the GAFF framework. It validates inputs, enforces guardrails, checks regulatory compliance, and ensures safe execution of multi-agent workflows.

Features

✅ PII Detection & Masking: Automatically detect and mask personally identifiable information
✅ Content Filtering: Filter unsafe or inappropriate content
✅ Compliance Validation: GDPR, CCPA, SOC2, and custom regulatory checks
✅ Rate Limiting: Per-user, per-IP, and per-endpoint rate limiting
✅ Input/Output Validation: Size limits, format checks, and schema enforcement
✅ Audit Logging: Comprehensive audit trails for compliance requirements
🌐 Gateway Compatible: Accessible via gaff-gateway with safety_* prefix

Tools

1. `validate_compliance`

Validates orchestration cards against compliance requirements.

Input:

{
  orchestration_card: object,
  compliance_requirements: string[] // e.g., ["GDPR", "CCPA"]
}

Output:

{
  is_compliant: boolean,
  violations: string[],
  warnings: string[],
  compliance_score: number
}

2. `check_guardrails`

Enforces safety guardrails on content.

Input:

{
  content: string,
  guardrail_types: string[] // e.g., ["pii_detection", "content_filtering"]
}

Output:

{
  is_safe: boolean,
  guardrail_violations: object[],
  masked_content: string,
  risk_score: number
}

3. `validate_input`

Pre-execution input validation.

Input:

{
  input_data: object,
  validation_rules: object
}

Output:

{
  is_valid: boolean,
  errors: string[],
  sanitized_input: object
}

4. `validate_output`

Post-execution output validation.

Input:

{
  output_data: object,
  validation_rules: object
}

Output:

{
  is_valid: boolean,
  errors: string[],
  sanitized_output: object
}

5. `enforce_rate_limits`

Checks and enforces rate limits.

Input:

{
  user_id: string,
  ip_address: string,
  endpoint: string
}

Output:

{
  is_allowed: boolean,
  remaining_requests: number,
  reset_time: string,
  retry_after_seconds: number
}

6. `audit_log`

Creates security audit log entries.

Input:

{
  event_type: string,
  user_id: string,
  action: string,
  metadata: object
}

Output:

{
  log_id: string,
  timestamp: string,
  status: string
}

Installation

cd gaff/mcp/safety-protocols
npm install
npm run build

Usage

Standalone

npm start

In GAFF

Configure in gaff.json:

{
  "primary_agent": {
    "mcp_servers": [
      "safety-protocols",
      "..."
    ]
  }
}

Configuration

Set environment variables in .env:

ENABLE_PII_DETECTION=true
ENABLE_CONTENT_FILTERING=true
ENABLE_RATE_LIMITING=true
RATE_LIMIT_REQUESTS_PER_MINUTE=100

Development

Build

npm run build

Watch mode

npm run watch

Test

npm test

License

Part of the GAFF Framework

Published

Vulnerabilities

Links

Maintainers

Keywords

Readme

safety-protocols MCP Server

Overview

Features

Tools

1. validate_compliance

2. check_guardrails

3. validate_input

4. validate_output

5. enforce_rate_limits

6. audit_log

Installation

Usage

Standalone

In GAFF

Configuration

Development

Build

Watch mode

Test

License

1. `validate_compliance`

2. `check_guardrails`

3. `validate_input`

4. `validate_output`

5. `enforce_rate_limits`

6. `audit_log`