Epydios FAQs

Name: Epydios
Author: Epydios

Question 1

What kind of audit logging does Epydios provide?

Accepted Answer

Epydios generates an append-only audit trail in JSONL format, recording all policy decisions (allow/deny), approval workflow events, and the outcomes of tool executions. This provides comprehensive visibility and evidence for compliance and operational monitoring.

Question 2

How does Epydios enforce security and control over AI tool calls?

Accepted Answer

Epydios provides granular allow/deny policies for tool calls, implements interactive step-up approval workflows via CLI, ensures secure sandboxed execution for shell and filesystem operations, and maintains an append-only audit log of all policy decisions and executions. It also supports separation of duties to prevent self-approval.

Question 3

Can Epydios manage tool calls across multiple MCP servers?

Accepted Answer

Yes, Epydios can operate in proxy mode, acting as a gateway between a client and one or more downstream MCP servers. It merges tool lists, intercepts and evaluates calls against its policies, and then routes them to the correct server, centralizing security and auditing for distributed MCP environments.

Question 4

What is Epydios and what problem does it solve?

Accepted Answer

Epydios is an MCP Policy Gateway designed to secure AI tool execution by intercepting Model Context Protocol (MCP) tool calls. It solves the challenge of safely integrating AI agents with system tools by enforcing access policies, requiring human approvals for sensitive actions, and maintaining a verifiable audit trail.

Question 5

What types of tools can Epydios sandbox and control?

Accepted Answer

Epydios specifically controls Model Context Protocol (MCP) tool calls for operations like `shell.exec` (sandboxed with an allowlist), `fs.list`, `fs.read`, and `fs.write`. The sandboxing environment enforces strict rlimits, blocks unsafe paths, and can be further isolated using Docker for enhanced security.

Epydios

Epydios

Key Features

Use Cases

Key Features

Use Cases