Agent-Ex

MCP & Tools

Connections to external services, APIs, and databases via Model Context Protocol

Amazon Kiro
Extension Name MCP Servers
Vendor Terms MCP servers, mcp.json, MCP registry, Add to Kiro badge, Tool Search
Scopes
User / HomeProject / Repo RootOrganization / Enterprise
Interfaces IDE, CLI
Availability current (explicit)
Trust Model Tool calls require per-use approval unless auto-approved; enterprise registry allow-list with client-side enforcement
Notes Workspace and user configs merge with workspace precedence; CLI adds agent config as a third tier; Tool Search loads tools on demand via BM25 keyword search; OAuth clientId for services without DCR; enterprise MCP registry allow-list with fail-closed enforcement
MCP overview ↗MCP configuration ↗CLI Tool Search ↗Enterprise MCP governance ↗
Claude Code
Extension Name MCP Servers
Vendor Terms MCP servers, .mcp.json, managed-mcp.json, MCP Tool Search
Scopes
User / HomeProject / Repo RootOrganization / Enterprise
Interfaces terminal CLI, VS Code, Desktop, web, JetBrains
Availability current (explicit)
Trust Model Project-scoped servers require explicit approval; enterprise lockdown via managed-mcp.json allowlist/denylist
Notes Five-tier scope hierarchy (local > project > user > plugin > claude.ai connectors); Tool Search defers tool loading until needed; supports HTTP, SSE, stdio, and WebSocket transports; OAuth 2.0 with headersHelper for dynamic auth; Claude Code can serve as an MCP server
MCP ↗Settings ↗
GitHub Copilot
Extension Name MCP Servers
Vendor Terms MCP servers, GitHub MCP server, MCP Registry, MCP allowlist, toolsets
Scopes
Machine / AdminProject / Repo RootOrganization / Enterprise
Interfaces GitHub.com, VS Code, Visual Studio, JetBrains, Eclipse, Xcode, CLI, Copilot SDK
Availability current (explicit)
Trust Model Tool calls subject to OAuth/PAT auth and allowlist enforcement; enterprise policies override org policies; push protection blocks secrets in AI-generated responses
Notes Available on all surfaces regardless of plan; GitHub MCP Registry in public preview; remote MCP servers without local setup; toolset customization for GitHub API capabilities; enterprise allowlist policy disabled by default for Business/Enterprise
About MCP ↗Configure MCP registry ↗MCP allowlist enforcement ↗
OpenAI Codex
Extension Name MCP Servers
Vendor Terms MCP servers, OAuth authentication, remote MCP
Scopes
User / HomeProject / Repo Root
Interfaces CLI, IDE extension, app
Availability current (explicit)
Trust Model Destructive tool calls always require approval; enterprise allowlist enforces name + identity matching
Notes STDIO and streamable HTTP transports; remote MCP stdio experimental; OAuth via codex mcp login; per-tool approval modes (auto/prompt/approve) with allow/deny lists; plugin-provided servers supported
MCP ↗Agent approvals and security ↗
Data last updated 2026-06-01 · Auto-generated from upstream docs and may be inaccurate · Source on GitHub