This tool operates as a local proxy, intercepting all MCP tool calls to evaluate them against defined policy-as-code rules. It provides critical runtime protection by blocking dangerous or non-compliant operations before they execute.