Skip to content

Add FedMCP to Docker MCP catalog #113

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
wants to merge 1 commit into
base: main
Choose a base branch
from
Open

Add FedMCP to Docker MCP catalog #113

wants to merge 1 commit into from

Conversation

LazerLance777
Copy link

Add FedMCP to Docker MCP Catalog

Summary

This PR adds FedMCP (Federal Model Context Protocol) to the Docker MCP Catalog. FedMCP is a FedRAMP-aligned superset of MCP that adds critical security features for government and enterprise deployments.

Type of Submission

  • Docker-Built Image - We request Docker to build and maintain our image with enhanced security features
  • Community-Built Image

Checklist

  • Created servers/fedmcp/server.yaml with all required fields
  • Repository is public and contains a Dockerfile
  • Documentation is comprehensive
  • License allows consumption (Apache 2.0)
  • Server follows MCP standards
  • Includes proper error handling and logging

Why FedMCP Should Be in the Catalog

  1. Unique Value: First and only MCP server focused on government compliance and security
  2. Production Ready: Already deployed in government environments
  3. Security Features: Audit trails, PII detection/redaction, cryptographic signing
  4. Enterprise Focus: Built for FedRAMP High and DoD IL5 compliance

Key Features

  • Audit Trails: Complete CloudWatch logging of all operations
  • PII Protection: Integrated Presidio for automatic PII detection and redaction
  • Cryptographic Signing: All artifacts are signed using P-256 ECDSA
  • Multi-language SDKs: Available on PyPI (fedmcp) and npm (@fedmcp/core)

Resources

Security Considerations

FedMCP is designed with security as the primary focus:

  • All operations are logged for audit trails
  • PII is automatically detected and can be redacted
  • Artifacts are cryptographically signed
  • Follows NIST 800-53 security controls

We believe FedMCP fills a critical gap in the MCP ecosystem for organizations requiring compliance and enhanced security.

/cc @docker/mcp-maintainers

@LazerLance777
Add FedMCP to MCP catalog
eefc209 
  FedMCP is a FedRAMP-aligned superset of MCP with audit trails,
  PII detection/redaction, and cryptographic signing for government
  cloud workloads. Built for FedRAMP High and DoD IL5 compliance.
@LazerLance777 LazerLance777 requested a review from a team as a code owner July 22, 2025 05:49
@ipedrazas
Copy link
Contributor

The repo doesn't have a Dockerfile.

Please, run task validate -- --name fedmcp and task build -- --tools fedmcp and address the issues.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@LazerLance777 @ipedrazas