Vaubaan
Policy-enforcing MCP gateway for coding agents.
Filter and audit each MCP tool call from Claude Code, Cursor and the rest — without ever giving them a cloud provider token.
How it works
01Connect providers
GitHub App install · Vercel team token · Supabase Mgmt PAT. No paste-token, no agent ever sees the secret.
02Bind resources
Pin each project to specific repos / Vercel projects / Supabase project_refs.
03Compose Roles → Bot
Builtins (github:developer, vercel:viewer…) or custom — attach N to a Bot. Get a vbn_live_… api_key visible once.
04Drop key, ship
Paste in your agent’s mcp.json. Every call → authorize, mint JIT, forward, audit.