TMCP logoTMCPTool Gateway
Scoped tool access for agents

TMCP Tool Gateway

A secure control plane for connecting real tools to AI agents with account encryption, feature permissions, approval queues, rate limits, and audit logs.

Read DocumentationOpen Dashboard
Encrypted credentials
Approval-gated actions
Agent-readable docs
Gateway Console
LIVE
POST/api/gateway/execute

Run approved tool actions

GET/api/gateway/tools

Discover allowed features

GET/api/gateway/docs

Agent-readable reference

curl -X POST "/api/gateway/execute" \
  -H "Authorization: Bearer mcp_live_..." \
  -d '{"tool":"serper","action":"serper.search"}'

Operational surface

Everything an agent needs, governed in one place

Connect Operational Tools

Attach provider accounts for search, scraping, email, GitHub, SSH, Google tools, databases, AI models, and custom APIs.

Issue Agent Keys

Create scoped API keys per agent so every external workflow resolves to one identity.

Control Every Action

Grant feature-level permissions, daily limits, and approval gates before tools can be used.

Call One Gateway

Agents use one normalized API for execution, tool discovery, status, and documentation.

How it works

Four steps from connection to audit

TMCP standardizes the entire path an agent takes to use a tool — so policy is enforced the same way every time, no matter which provider is behind it.

01

Connect

Link provider accounts and store credentials encrypted — agents never see the secrets.

02

Govern

Scope each agent key to exact feature keys, with daily limits and approval requirements.

03

Execute

Agents send one gateway request; TMCP enforces policy and routes to the right tool runner.

04

Audit

Every call is logged with input, output, and approval trail for complete traceability.

Built for control

Guardrails on every request

Autonomy is only safe when access is bounded. TMCP enforces who can do what, how often, and with which account — and keeps a record of all of it.

See the gateway API

Encrypted credential vault

Provider tokens and API keys are encrypted at rest and resolved server-side, never returned to the model.

Approval-gated actions

Mark dangerous features so they pause for human approval before any irreversible operation runs.

Per-key rate limits

Cap daily usage per agent key to contain runaway loops and unexpected cost.

Full audit logs

Searchable execution history with feature key, account, status, and payload for every request.

Where it fits

One gateway, many workflows

Autonomous workflows

Let agents enrich leads, send outreach, and update CRMs — each action permission-checked at the gateway.

Data & operations

Give agents safe, read-or-write scoped access to databases, sheets, and storage with mutations gated.

DevOps automation

Run SSH commands, manage repos, and trigger deploys behind approvals and rate limits.

4

Gateway endpoints

43+

Built-in tool integrations

3

Snippet languages per tool

Get started

Give your agents tools you can trust them with

Connect a provider, issue a scoped key, and route every action through one accountable gateway.

Open DashboardLearn more