Skip to content

docs: add Maybe Don't integration guides#350

Open
robotdan wants to merge 1 commit intoOpenHands:mainfrom
maybedont:degroff/maybedont-integration
Open

docs: add Maybe Don't integration guides#350
robotdan wants to merge 1 commit intoOpenHands:mainfrom
maybedont:degroff/maybedont-integration

Conversation

@robotdan
Copy link

@robotdan robotdan commented Feb 20, 2026

Summary

  • Adds Maybe Don't as an MCP security proxy option on the MCP Settings page (openhands/usage/settings/mcp-settings.mdx)
  • Adds MaybeDontAnalyzer as a third-party security analyzer on the Security & Action Confirmation guide (sdk/guides/security.mdx)

MCP Settings Page

  • Docker quick-start for running Maybe Don't
  • Configuration examples for downstream MCP servers and pointing OpenHands at Maybe Don't
  • Overview of CEL and AI-powered policy validation
  • Cross-link to the security analyzer integration

Security Guide

  • MaybeDontAnalyzer setup with gateway_url parameter and MAYBE_DONT_GATEWAY_URL env var
  • Risk level mapping table (high/medium/low/unknown → SecurityRisk)
  • Ready-to-run example following existing patterns (expandable code block, RunExampleCode snippet)
  • Two-layer protection story: security analyzer (all actions) + MCP proxy (tool calls)

Context

This is part of the Maybe Don't OpenHands integration. The companion SDK PR adding MaybeDontAnalyzer is at OpenHands/software-agent-sdk#2142.

Test plan

  • Verify MCP settings page renders correctly with the new "Security with Maybe Don't" section
  • Verify security guide renders the new "Maybe Don't Security Analyzer" section with expandable example
  • Verify cross-links between the two pages work
  • Verify anchor links (#ready-to-run-example-maybe-dont, #maybe-dont-security-analyzer) resolve correctly

🤖 Generated with Claude Code

@claude
docs: add Maybe Don't integration guides
9cdb77f 
Add Maybe Don't as an MCP security proxy option on the MCP Settings page
and as a third-party security analyzer on the Security & Action
Confirmation guide.

MCP Settings:
- Docker quick-start for running Maybe Don't
- Configuration examples for downstream MCP servers
- Overview of CEL and AI-powered validation rules

Security Guide:
- MaybeDontAnalyzer setup and configuration
- Risk level mapping table
- Ready-to-run example with ConfirmRisky policy
- Cross-links between MCP proxy and security analyzer integrations

Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@xingyaoww xingyaoww Awaiting requested review from xingyaoww xingyaoww is a code owner

@enyst enyst Awaiting requested review from enyst enyst is a code owner

@mamoodi mamoodi Awaiting requested review from mamoodi mamoodi is a code owner

At least 1 approving review is required to merge this pull request.

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@robotdan

Comments