Control Your Universe

Give Claude Minions.

One MCP install gives Claude Code an army of governed tools — manage connections, enforce policies, query shared databases, automate browsers, and generate documents. All from your terminal.

$npx @contextgate/mcp install

Works with Claude Code, Cursor, Windsurf, and any MCP client

Governed Agents
Configure and test your governed AI agents
DevOps AgentActive127 runs today
Flow Diagram
Trigger
CLI invoke
Context Gate
🛡️ Client Data
Model
claude-4
Tool Guard
🔒 PII Block
Tools
82 enabled
Live sandbox·DevOps Agent
Y
Add the client profile to Notion and log the meeting in HubSpot
Policy: Client Data — 2 violations detected
Detected UK_BANK_ACCOUNT in field "content"
Detected EMAIL_ADDRESS in field "title"
hubspot_log_meeting — Allowed
I logged the meeting in HubSpot successfully. However, I was blocked from adding bank details to Notion — the Client Data policy flagged PII. Would you like me to add the profile without sensitive fields?

Claude Code is Powerful. Ungoverned, it's Dangerous.

No Visibility
Claude Code calls tools freely. You don't see what data flows where until it's too late.
Credential Sprawl
API keys scattered across .claude/ configs, env vars, and dotfiles. One leak away from disaster.
Zero Enforcement
No PII redaction, no compliance checks, no audit trail. Just raw tool calls hitting production APIs.
How it works

One Install. Full Control.

1

Install

One command adds ContextGate to your Claude Code MCP config. Works with any MCP-compatible client.

$ npx @contextgate/mcp install
2

Connect

Add your tools — Notion, GitHub, Slack, HubSpot, and 1000+ more. Credentials stored securely in your vault (GCP, AWS, Azure).

3

Govern

Define policies: PII redaction, blocked patterns, LLM-based checks. Every tool call input and output is enforced automatically.

4

Work

Claude Code uses 80+ tools normally. ContextGate intercepts, governs, and logs every call transparently. You stay in flow.

80+ Tools

Give Claude Minions

8 tool categories. 80+ managed tools. Every capability your agents need, governed by default.

37

Management

Create agents, manage toolboxes, configure policies, set up connections.

7

Triggers

Webhooks, cron schedules, event listeners, published chat interfaces.

5

Integrations

Connect OAuth apps (Slack, GitHub, Salesforce, Google Drive) and API key services.

6

File Management

Read, write, and search workspace documents — PDFs, DOCX, images, text files.

14

Browser Automation

Navigate, click, fill forms, screenshot — full Playwright-powered browsing.

7

Database

SQL queries, create tables, import data, snapshots, time-travel restore.

3

Run History

Agent activity analytics, full run details, token usage summaries.

2

Documents

Generate formatted Word docs, Markdown, CSV, JSON from agent data.

Shared Database

One Brain for All Your Agents

Every agent reads and writes to the same per-workspace DuckDB. One agent's output becomes another agent's input — automatically.

Sales Agent
Scrapes leads from LinkedIn
leads
Outreach Agent
Drafts personalized emails
Compliance Agent
Runs daily audit checks
audit_log
Reporting Agent
Generates weekly summary docs
Research Agent
Pulls competitor pricing
competitor_prices
Strategy Agent
Creates trend analysis report
Support Agent
Logs customer issues
tickets
Analytics Agent
Finds patterns, builds dashboards
Database
Query and manage your workspace data
v3 Undo Redo
SQL Query
DuckDB▶ Run
-- Sales Agent wrote 47 leads this week
SELECT company, contact_email, score
FROM leads
WHERE score > 80
ORDER BY score DESC LIMIT 5;
Results5 rows · 8ms
companycontact_emailscore
Acme Corpj.smith@acme.com97
TechStart Ltdcto@techstart.io94
Bright & Coops@bright.co.uk91
Nova Digitalhello@nova.dev88
Delta Servicesbd@delta.services85
Full SQL
SELECT, INSERT, CREATE TABLE, ALTER, DROP — powered by DuckDB
Version History
Automatic snapshots with time-travel restore
Workspace Isolated
Each workspace gets its own database — fully segregated
Governance

Every Call, Checked

Three-phase enforcement on every tool call. PII is detected and blocked before it ever leaves your workspace.

📥

Input Phase

Scan tool arguments before they reach the MCP server. Detect PII, blocked patterns, and policy violations.

Execution Phase

Forward sanitized parameters with injected credentials. Handle SSE and HTTP transparently.

📤

Output Phase

Scan tool responses before returning to the agent. Redact any PII that leaked from upstream.

Activity Logs
View and filter workspace activity logs
List Table
Filters:Time ▾Violation ▾Policies ▾Tokens ▾
Live (SSE)
14:32
DevOps Agentnotion_create_page
BLOCKED
14:32
DevOps Agenthubspot_log_meeting
Allowed
14:33
Research Agentgoogle_drive_upload
Allowed
14:34
Support Agentslack_post_message
Redacted
14:35
Sales Agentgmail_send
BLOCKED
14:36
Research Agentjira_create_issue
Allowed
14:37
DevOps Agentxero_get_invoice
Redacted
Block
Prevent tool execution entirely
Warn
Log warning, pause for agent review
Log
Record violation, allow execution
Connections

One Place for Every Connection

Register MCP servers once. Credentials stored in your vault — never in your codebase or Claude config. Connect to 0+ apps out of the box.

Browse all 0+ connectors
Secret Backends
GCP Secret Manager, AWS Secrets Manager, Azure Key Vault
Health Monitoring
Automatic health checks and status tracking
Auto-Discovery
Sync tools and resources from MCP servers automatically
1000+ Apps
Composio integration for third-party OAuth connections
Policies

Compliance, Not Complexity

Pre-built templates for GDPR, HIPAA, and UK regulations. Or create custom rules with regex, PII entities, or LLM-based checks.

🔍

PII Redaction

NLP-powered detection blocks sensitive data before it reaches external tools.

EMAILPHONESSNCREDIT_CARDUK_NINOBANK_ACCOUNT
🚫

Block Patterns

Custom regex patterns and keyword lists to catch organisation-specific sensitive data.

RegexKeywordsCustom patterns
🤖

LLM Checker

Use an LLM to validate tool inputs/outputs against custom governance prompts.

Custom promptsCachedBidirectional
Policies
Manage PII redaction and governance policies
🔒 Policy Templates
3 available
Template
GDPR Strict
Redact direct identifiers...
gdprstrict
2 rules · EU, UK
Template
HIPAA Strict
Redact HIPAA direct...
healthcarestrict
2 rules · US
Template
UK Insurance
Redact UK insurance...
insuranceuk
2 rules · UK
Active Policies
Client Data Protection
Custom · 3 rules · Block mode
Active
pii_redaction — EMAIL, PHONE, UK_BANK_ACCOUNT, UK_NINO
block_patterns — /sort-code:\s*\d{2}-\d{2}-\d{2}/
llm_checker — "Reject if output contains financial advice"
Team & Cloud

Manage Your Minions. Together.

Deploy agents to the cloud, share with your team, and monitor everything from a centralized dashboard.

☁️

Cloud Deployment

Deploy agents to ContextGate Cloud. Run 24/7 without your laptop open — triggered by webhooks, schedules, or events.

👥

Team Workspaces

Invite teammates to shared workspaces. Share agents, connections, policies, and databases with your whole team.

📊

Centralized Dashboard

See all agent runs, policy violations, and tool usage across the team in one place. Full audit trail.

🔐

Role-Based Access

Control who can create agents, modify policies, view audit logs, or manage connections. Granular permissions.

Team
Manage workspace members
colleague@company.com
Invite
EmailRole
you@company.comOWNER
sarah@company.comMEMBER
contractor@ext.ioVIEWER
Governed Agents
3 agents deployed
DevOps Agent
82 tools · GDPR Strict
Active127 runs
Sales Agent
24 tools · Client Data
Active84 runs
Research Agent
12 tools · No policy
Active56 runs
All agents run 24/7 on ContextGate Cloud — no laptop required

Claude Code vs. Claude Code + ContextGate

Capability
Claude Code
+ ContextGate
Tools Available
Whatever you configure
80+ managed tools
PII in Tool Calls
Undetected
Blocked / Redacted
Credential Storage
Local dotfiles
Encrypted vault
Shared Database
None
Per-workspace DuckDB
Audit Trail
None
Full JSON-RPC log
Policy Enforcement
None
Block / Warn / Log
Browser Automation
None
Playwright-powered
File Management
Local only
Workspace-shared
Triggers
Manual only
Webhooks, cron, events, chat
Team Management
Single user
Shared workspaces + roles

Start Governing in 60 Seconds

One install. Full governance. From your terminal.

$npx @contextgate/mcp install
or get early access