Engineering notes on MCP security: sandboxing, credential injection, egress control, and building a security-first MCP gateway.https://gigmcp.dev/https://gigmcp.dev/blog/gigmcp-vs-composio/https://gigmcp.dev/blog/gigmcp-vs-composio/Two very different answers to the same problem: how do you give AI agents access to hundreds of tools without scattering API keys everywhere? A fair comparison of Composio's hosted connector platform and Gig'MCP's sandboxed, self-hosted gateway.Sun, 07 Jun 2026 00:00:00 GMThttps://gigmcp.dev/blog/keeping-api-keys-out-of-mcp-servers/https://gigmcp.dev/blog/keeping-api-keys-out-of-mcp-servers/Placeholder tokens, an envelope-encrypted vault, and a MITM egress proxy that injects real credentials only on HTTPS calls to allowlisted domains. A technical walkthrough of credential injection at the network boundary.Sun, 07 Jun 2026 00:00:00 GMThttps://gigmcp.dev/blog/mcp-servers-security-risk/https://gigmcp.dev/blog/mcp-servers-security-risk/Every MCP server you install runs with your raw API keys and unrestricted network access. Here's the threat model the ecosystem is ignoring, and how kernel-enforced sandboxing with bubblewrap, namespaces, and seccomp actually closes it.Sun, 07 Jun 2026 00:00:00 GMT