Changelog

Configurable security guardrails for MCP tool calls. Define policies to block, warn, or audit specific actions based on tool name, parameters, or calling context. Enforce least-privilege access at the protocol level.

Enterprise single sign-on with SAML 2.0 integration. Connect your identity provider for centralized authentication and automated user provisioning across your Ultra organization.

Sign in to Ultra Hub with your Google account. One-click authentication for teams already using Google Workspace.

Automated user lifecycle management with SCIM 2.0. Sync users and groups from your identity provider to Ultra Hub, with support for Okta and other SCIM-compatible providers.

Native Okta integration for SAML SSO and SCIM provisioning. Manage Ultra access directly from your Okta admin console with automatic user sync and deprovisioning.

Device trust and endpoint compliance via Jamf Pro. Verify managed device status and enforce security posture requirements before granting access to MCP infrastructure.

Real-time Slack notifications for security events, anomaly detections, and policy violations. Configure per-channel routing with customizable alert thresholds.

Launched docs.ultra.security with comprehensive guides for installation, configuration, client setup, Hub management, observability, and security concepts.

New application-level security events system with a dedicated Admin Log page in the Hub. Tracks login attempts, member role changes, invite lifecycle events, and organization management actions with structured, auditable security trails.

Four-tier role hierarchy -- Owner, Admin, Member, and Read-only -- with per-route permission enforcement across the Hub. Ensures proper least-privilege access for all users.

Complete security platform purpose-built for Model Context Protocol ecosystems with intelligent threat detection and response.

Complete visibility into your MCP ecosystem with real-time monitoring, automated discovery of all agents, servers, and tools. Includes detailed trace views for every MCP interaction with full request-response inspection.

Comprehensive logging for all MCP interactions with tamper-proof audit trails, real-time analytics, and compliance reporting. Full request and response payloads, latency breakdowns, and policy evaluation results.

Behavioral analysis of agent-tool interactions that establishes baselines and flags deviations in real time. Detects unusual tool call patterns, unexpected parameter values, and suspicious sequences.

Advanced client and agent identity verification with cryptographic attestation, tamper-proof mechanisms, and zero-trust authentication.