From ec2f9a6c258c868e2925b3c6616d61f08ef45f5c Mon Sep 17 00:00:00 2001 From: armorer-labs Date: Tue, 19 May 2026 14:32:22 +0800 Subject: [PATCH] Document Armorer Guard MCP proxy --- README.md | 24 ++++++++++++++++++++++++ 1 file changed, 24 insertions(+) diff --git a/README.md b/README.md index 2667f226..1707ecea 100644 --- a/README.md +++ b/README.md @@ -121,6 +121,30 @@ Add the following to your `.cursor/mcp.json` or `claude_desktop_config.json` (Ma } ``` +Optional local guardrail with [Armorer Guard](https://github.com/ArmorerLabs/Armorer-Guard): + +```json +{ + "mcpServers": { + "notionApi": { + "command": "armorer-guard", + "args": [ + "mcp-proxy", + "--", + "npx", + "-y", + "@notionhq/notion-mcp-server" + ], + "env": { + "NOTION_TOKEN": "ntn_****" + } + } + } +} +``` + +This wraps the same Notion MCP server with a local proxy that inspects tool-call arguments for prompt injection, credential leakage, exfiltration risk, and dangerous actions before forwarding safe calls to Notion. + ###### Option 2: Using OPENAPI_MCP_HEADERS (for advanced use cases) ```json