Company
About Vaubaan
A policy-enforcing MCP gateway. Built by people who ship code with agents every day.
Why we exist
Coding agents are productive. They are also remarkably good at making one-shot mistakes — force-pushing to main, deleting a Vercel project, dropping a Supabase table — the moment you hand them a long-lived token. Vaubaan sits between the agent and the provider, so the agent never holds a secret, every tool call passes through a policy, and every action is auditable after the fact.
What we believe
- Defense in depth, not in dialogue. Approval prompts get tuned out; policies don’t.
- Tokens are not credentials. They are short-lived capabilities. We mint them just in time, and they expire faster than a human can notice.
- The audit log is the product. Without it, “the agent did it” is unprovable; with it, every diff has a paper trail.
- Boring infra wins. Postgres, edge functions, and a tight contract per provider. No magic.
Where we’re based
Vaubaan operates from Paris, France. Data is processed in EU regions by default. See /subprocessors for the full list.
Get in touch
Sales, partnerships, press: hello@vaubaan.com
Security: security@vaubaan.com