Extend profile/config model for multi-service MCP boundaries #76

Open
opened 2026-07-02 05:46:28 -05:00 by jcwalker3 · 0 comments
Owner

Extend the existing Gitea execution profile model (see #12, #19, docs/gitea-execution-profiles.md, docs/credential-isolation.md) into a generic per-service MCP profile/config model suitable for Jenkins and GlitchTip.

The model should preserve credential isolation:

  • Gitea tools hold only Gitea credentials.
  • Jenkins tools hold only Jenkins credentials.
  • GlitchTip tools hold only GlitchTip credentials.
  • Orchestrators coordinate without becoming an all-powerful credentials holder.

Acceptance criteria

  • Defines profile schema for Jenkins and GlitchTip.
  • Defines allowed_operations per service.
  • Missing profile or credentials fail closed.
  • Tokens are never printed or logged.
  • Environment overrides are documented.
  • Audit identity/source is included in mutating actions.
  • Existing Gitea profile behavior remains backward compatible.
Extend the existing Gitea execution profile model (see #12, #19, `docs/gitea-execution-profiles.md`, `docs/credential-isolation.md`) into a generic per-service MCP profile/config model suitable for Jenkins and GlitchTip. The model should preserve credential isolation: * Gitea tools hold only Gitea credentials. * Jenkins tools hold only Jenkins credentials. * GlitchTip tools hold only GlitchTip credentials. * Orchestrators coordinate without becoming an all-powerful credentials holder. ## Acceptance criteria * Defines profile schema for Jenkins and GlitchTip. * Defines `allowed_operations` per service. * Missing profile or credentials fail closed. * Tokens are never printed or logged. * Environment overrides are documented. * Audit identity/source is included in mutating actions. * Existing Gitea profile behavior remains backward compatible.
jcwalker3 added the mcpsecurityarchitecture labels 2026-07-02 05:46:51 -05:00
Sign in to join this conversation.