I wrote a read-only scanner for MCP / agent-gateway production-readiness
A developer has created a read-only scanner called `mcp-gateway-scan` to assess the production readiness of MCP (Metaflow Control Plane) agent gateways. The tool analyzes seven key dimensions, including tool access, fail-close behavior, onboarding processes, observability, multi-LLM routing, secrets management, and general production-readiness features. It aims to identify common security and operational gaps that arise when agents move from development to production environments, referencing best practices from MCP security guidance and the OWASP LLM Top 10. AI
IMPACT Provides a practical tool for developers to proactively identify and fix security and operational risks in AI agent deployments.