Comparison
mcp-trust-plane vs gate22
Verdict
Pick mcp-trust-plane if mCP Trust Plane is designed for organizations that need to enforce security policies on MCP traffic without modifying core components of the protocol stack; pick gate22 if gate22 is an open-source MCP gateway and control plane for governing AI agents' tool usage and actions with comprehensive auditability.
Markdown twin · mcp-trust-plane alternatives · gate22 alternatives
GraphCanon updated today
Trust & integrity
| Signal | mcp-trust-plane | gate22 |
|---|---|---|
| Maintenance | Active (25d since push) As of today · github_public_v1 | Slowing (215d since push) As of today · github_public_v1 |
| Provenance | Not a fork · Organization account As of today · github_public_v1 | Not a fork · Organization account As of today · github_public_v1 |
| OSV dependency advisories | No lockfile (source not queried) As of today · osv@v1 | No lockfile (source not queried) As of today · osv@v1 |
| deps.dev advisories | Not queried deps.dev@v1 | Not queried deps.dev@v1 |
| OpenSSF Scorecard | Not queried openssf-scorecard@v1 | Not queried openssf-scorecard@v1 |
Tagline
- mcp-trust-plane
- Pluggable security framework for MCP traffic
- gate22
- MCP gateway and control plane for agent governance
Stars
- mcp-trust-plane
- 59
- gate22
- 177
Forks
- mcp-trust-plane
- 14
- gate22
- 22
Open issues
- mcp-trust-plane
- 0
- gate22
- 23
Language
- mcp-trust-plane
- JavaScript
- gate22
- TypeScript
Adopt for
- mcp-trust-plane
- MCP Trust Plane is designed for organizations that need to enforce security policies on MCP traffic without modifying core components of the protocol stack.
- gate22
- Gate22 is an open-source MCP gateway and control plane for governing AI agents' tool usage and actions with comprehensive auditability.
Persona
- mcp-trust-plane
- -
- gate22
- -
Runtime
- mcp-trust-plane
- -
- gate22
- -
License
- mcp-trust-plane
- Apache-2.0
- gate22
- Apache-2.0
Last pushed
- mcp-trust-plane
- Jun 19, 2026
- gate22
- Dec 12, 2025
Categories
- mcp-trust-plane
- AI Agents, Evaluation & Observability
- gate22
- AI Agents, Evaluation & Observability
Trust and health
Maintenance
- mcp-trust-plane
- Active (82%)
- gate22
- Slowing (36%)
Days since push
- mcp-trust-plane
- 25d
- gate22
- 215d
Open issues (now)
- mcp-trust-plane
- 0
- gate22
- 23
Full report
- mcp-trust-plane
- Trust report
- gate22
- Trust report
Choose mcp-trust-plane if…
- mcp-trust-plane is primarily JavaScript; gate22 is TypeScript.
- Pricing: MCP Trust Plane is open-source under Apache 2.0, making it available at no cost but provides flexibility to extend commercially through proprietary filter implementations..
- Requirements: Min 1 GB RAM.
- Tags unique to mcp-trust-plane: access-control, data-governance-and-ai, data-security, enterprise-security.
- mcp-trust-plane ships Docker support for self-hosted deployment.
- MCP Trust Plane should be used when you require granular control over tool calls in your MCP-enabled systems, such as enforcing PII redaction or operation blocking.
When NOT to use mcp-trust-plane
- Avoid MCP Trust Plane if your security needs do not require modification of traffic post-response, as it introduces an additional layer of complexity and latency.
- MCP Trust Plane may not be the best choice for environments that strictly enforce language-specific policies since its filters are written in any language and must comply with a strict contract.
Choose gate22 if…
- gate22 is primarily TypeScript; mcp-trust-plane is JavaScript.
- Tags unique to gate22: agents, control-plane, gateway, guardrails.
- When you need to standardize governance over the tools and actions across various AI environments such as agentic IDEs.
When NOT to use gate22
- For scenarios where a closed-source solution is preferred due to specific confidentiality or proprietary concerns.
- If the organization's tech stack does not align well with TypeScript, which Gate22 employs for its development.
Explore
Sources
Every stat on this page traces to a dated GitHub sync, license file, enrichment field, or trust scan.
- GitHub stars (abluva-research/mcp-trust-plane) · observed Jul 15, 2026
- GitHub forks (abluva-research/mcp-trust-plane) · observed Jul 15, 2026
- Last push (abluva-research/mcp-trust-plane) · observed Jun 19, 2026
- License file (Apache-2.0) · observed Jul 15, 2026
- Decision facts (enrichment) · observed Jul 15, 2026
- Trust scan (lockfile / OSV) · observed Jul 15, 2026
- GitHub stars (aipotheosis-labs/gate22) · observed Jul 15, 2026
- GitHub forks (aipotheosis-labs/gate22) · observed Jul 15, 2026
- Last push (aipotheosis-labs/gate22) · observed Dec 12, 2025
- License file (Apache-2.0) · observed Jul 15, 2026
- Decision facts (enrichment) · observed Jul 15, 2026
- Trust scan (lockfile / OSV) · observed Jul 15, 2026
GitHub stars on cards: mcp-trust-plane 59 · gate22 177 (synced Jul 15, 2026).
Common questions
- What is the difference between mcp-trust-plane and gate22?
- mcp-trust-plane: Pluggable security framework for MCP traffic. gate22: MCP gateway and control plane for agent governance. See the comparison table for live GitHub stats and shared categories.
- When should I choose mcp-trust-plane over gate22?
- Choose mcp-trust-plane over gate22 when mcp-trust-plane is primarily JavaScript; gate22 is TypeScript; Pricing: MCP Trust Plane is open-source under Apache 2.0, making it available at no cost but provides flexibility to extend commercially through proprietary filter implementations.; Requirements: Min 1 GB RAM; Tags unique to mcp-trust-plane: access-control, data-governance-and-ai, data-security, enterprise-security; mcp-trust-plane ships Docker support for self-hosted deployment; MCP Trust Plane should be used when you require granular control over tool calls in your MCP-enabled systems, such as enforcing PII redaction or operation blocking.
- When should I choose gate22 over mcp-trust-plane?
- Choose gate22 over mcp-trust-plane when gate22 is primarily TypeScript; mcp-trust-plane is JavaScript; Tags unique to gate22: agents, control-plane, gateway, guardrails; When you need to standardize governance over the tools and actions across various AI environments such as agentic IDEs.
- When should I avoid mcp-trust-plane?
- Avoid MCP Trust Plane if your security needs do not require modification of traffic post-response, as it introduces an additional layer of complexity and latency. MCP Trust Plane may not be the best choice for environments that strictly enforce language-specific policies since its filters are written in any language and must comply with a strict contract.
- When should I avoid gate22?
- For scenarios where a closed-source solution is preferred due to specific confidentiality or proprietary concerns. If the organization's tech stack does not align well with TypeScript, which Gate22 employs for its development.
- Is mcp-trust-plane or gate22 more popular on GitHub?
- gate22 has more GitHub stars (177 vs 59). Stars measure visibility, not whether either tool fits your constraints.
- Are mcp-trust-plane and gate22 open source?
- Yes - both are open-source projects on GitHub (mcp-trust-plane: Apache-2.0, gate22: Apache-2.0).
- Where can I find alternatives to mcp-trust-plane or gate22?
- GraphCanon lists graph-backed alternatives at mcp-trust-plane alternatives and gate22 alternatives (mcp-trust-plane markdown twin, gate22 markdown twin), ranked by typed relationship edges rather than popularity votes.
- Is there a machine-readable version of this comparison?
- Yes. The markdown twin at this comparison mirrors this page for agents and LLM crawlers, with the same stats table and FAQ answers.
- Which is better maintained, mcp-trust-plane or gate22?
- mcp-trust-plane: Active. gate22: Slowing. Compare maintenance labels, days since push, and release cadence in the trust section below - stars alone do not measure maintenance.
- Where are the full trust reports for mcp-trust-plane and gate22?
- GraphCanon publishes per-repo trust reports with dated maintenance, provenance, and scan summaries: mcp-trust-plane trust report; gate22 trust report.