Version: Next

Features

📄️ Tool Customization

Tool Customization, or tool hardening, lets you create hardened variants of existing tools with fixed input values, rewritten descriptions, or both. These customized tools appear alongside the original tool and can be used to enforce constraints, improve security, and guide AI agents toward the correct tool behavior.

📄️ Agent Access Control

The Tool Access in the Agent modal in MCPX lets you manage which tools and services each agent can use. It provides a simple toggle-based interface for granting or restricting access without editing configuration files.

📄️ Tool Groups

MCPX lets you logically organize tools from multiple servers into reusable collections that match real workflows into Tool Groups. Instead of assigning tools service by service, you can create cross-server groups such as Testing, Development, or Communication, then reuse them across multiple agents.

📄️ Basic API Key Authorization

MCPX supports basic API key authentication for new connections to MCPX.

📄️ Consumer Tags

MCPX lets clients identify themselves using the x-lunar-consumer-tag HTTP header. This enables fine-grained control over access, rate limiting, and observability.

📄️ MCPX Metrics

The MCPX server exposes detailed Prometheus metrics about tool calls available at//localhost:3000/metrics

📄️ OAuth

MCPX now supports OAuth-based authentication for remote MCP servers, enabling a more secure and streamlined connection process. You can authenticate servers with a few clicks, eliminating the need to manage tokens manually or navigate complex setup steps.

📄️ Static OAuth

Static OAuth support in MCPX extends the existing Client Credentials Flow by adding support for Device Flow Authorization (OAuth 2.0 Device Authorization Grant). Users can now configure either authentication method depending on their needs.

📄️ IP Access Control

IP access control lets users decide which clients can connect to an MCPX Server by checking their IP address. This can be handy when it is necessary to limit access to trusted sources such as office networks, VPNs, or specific load balancers. Both IPv4 and IPv6 addresses are supported, and users can define ranges with CIDR notation. If you do not configure anything, all IPs are allowed by default.

📄️ Audit Logs

Track agent tool-usage and configuration changes through MCPX with structured, persistent audit logs.