bluerock

Name: bluerock
Rating: 2.2 (29 reviews)
Author: bluerock-io

by bluerock-io·★ 29·Score 44

BlueRock provides runtime visibility for Python MCP servers with zero code changes, monitoring tool calls, sessions, imports and subprocess execution as structured NDJSON.

securitydeveloper-toolsmonitoring

Forks

Open issues

this month

Last commit

2d ago

Indexed

Overview

BlueRock is a lightweight runtime security sensor for Python MCP servers. It hooks into Python at startup to capture MCP tool calls, session lifecycle, module imports with SHA-256 verification, and subprocess execution. The sensor writes structured NDJSON events to a log file, providing visibility into what your Python applications are doing at runtime without requiring any code changes. It uses two mechanisms: wrapt monkey-patching for MCP protocol libraries and sys.meta_path import hooks for supply-chain visibility.

Try asking AI

After installing, here are 5 things you can ask your AI assistant:

you:Security monitoring for MCP servers in production environments

you:Audit tool usage and resource access patterns in AI applications

you:Detect suspicious module imports or subprocess execution in Python MCP servers

you:Does BlueRock require code changes to my Python application?

you:What events does BlueRock capture?

When to choose this

Choose BlueRock when you need security monitoring for MCP servers without modifying your application code, especially when you want visibility into tool calls, session lifecycle, and module integrity with SHA-256 verification.

When NOT to choose this

Don't choose BlueRock if you need Windows support (Linux/macOS only), require features beyond MCP monitoring and import tracking, or if you're looking for a lightweight solution with minimal resource overhead.

Comparable tools

py-spyeBPF-based monitoring toolsOpenTelemetry for PythonAppDynamicsDatadog APM

Installation

# Install from PyPI
pip install bluerock[oss]

# Create configuration
echo '{"enable": true, "mcp": true}' > ~/.bluerock/bluerock-oss.json

# Run your Python script with BlueRock
python -m bluepython --oss your_script.py

For Claude Desktop integration, add to claude_desktop_config.json:

{
  "mcpServers": {
    "bluerock": {
      "command": "python",
      "args": ["-m", "bluepython", "--oss"]
    }
  }
}

FAQ

Does BlueRock require code changes to my Python application?: No, BlueRock works with zero code changes. It wraps your Python process at startup.
What events does BlueRock capture?: BlueRock captures MCP tool calls, resource access, session lifecycle, module imports (with SHA-256), and subprocess execution as structured NDJSON events.

On Hacker News

Recent discussion from the developer community.

Show HN: MCP Python Hooks – sys.addaudithook and import hooks for MCP▲ 4
Story by BlueRock-Jake · 2026-05-06

Compare bluerock with

bluerock vs mcp-server-chart bluerock vs everything bluerock vs filesystem bluerock vs time bluerock vs sequentialthinking

GitHub →

Last updated 2026-05-17 · Auto-generated from public README + GitHub signals.