One of the most common questions since we open-sourced DevOps Open Agent:
MCP is great, but how do you stop users from pointing it at any random MCP server?
Fair question. And a good one.
When you connect MCP, your AI can call real tools on real systems: repos, issues, incidents, workflows. Thatβs powerful for DevOps. It also means an unrestricted paste-any-URL setup isnβt something most teams want in production.
We listened. The latest MCP update in DevOps Open Agent adds layered URL controls:
β Platform allowlist: Admins can limit all users to approved MCP endpoints (MCP_ALLOWED_SERVER_URLS)
β User whitelist: Name and save trusted servers; once enabled, only those URLs can be used
β User blacklist: Block specific MCP servers, even if theyβd otherwise be allowed
β Official server catalog: Start from supported remote MCP servers (GitHub, Linear, Sentry, etc.) instead of unknown URLs
Checks run when you save settings, test a connection, ask MCP, and during AI investigation enrichment, not just on day one.
This is what open source should feel like: ship β get honest feedback β tighten the product. Thank you to everyone who tried DevOps Open Agent and pushed us on security. Keep the feedback coming.
Configure under Integrations β MCP:
π github.com/ideaweaver-ai/devops-open-agent
π₯ Demo: https://lnkd.in/eBWcPRtj
Weβre also going deeper at the intersection of DevOps and GenAI. If thatβs your world, check the links
Configure under Integrations β MCP:
π github.com/ideaweaver-ai/devops-open-agent
π₯ Demo: https://lnkd.in/eBWcPRtj
π Want Live Instructor-Led Training?
If you'd like hands-on, instructor-led sessions where you can ask questions and get your doubts resolved live, check out our courses:

Top comments (0)