Supported Environments
Cup'n'String coordinates directly with operating systems, native firewall kernel engines, and virtualization frameworks to secure developer workstations without workflow disruption.
What do the support levels mean?
First-class, product-specific adapter with richer metadata, attribution, policy controls, and lifecycle awareness.
Cup’n’String sits in the path of tool, API, and MCP activity and can audit, block, redact, or shield secrets.
Detected through processes, sockets, config files, contexts, ports, or known installation paths.
Integrated through a common compatibility layer such as MCP, OpenAI/Anthropic-compatible APIs, Docker sockets, LSP, or local proxy conventions.
Baseline process fingerprinting, outbound policy, local-service access control, and secret shielding without deeper IDE hooks.
A reusable policy profile applied to an agent across every IDE or editor it runs in.
Provider and API requests are routed through a managed proxy for attribution, auditing, and control.
Support is intentionally early or experimental.
Support depth varies by environment. See the FAQ for how observe, warn, and enforce modes apply.
Linux nftables & iptables
Coordinates system-level network filters on Linux hosts using nftables and legacy iptables. Provides instant rule rollback on service interruption.
Detected via nftables/iptables tables and chains
macOS Packet Filter (pf)
Directly orchestrates the native BSD packet filter (pf) rulesets to block unauthorized outbound LLM tool network calls and enforce local security policy boundaries.
Detected via pfctl anchors and ruleset state
Windows Filtering Platform (WFP)
Configures native Windows Defender rules and utilizes the Windows Filtering Platform (WFP) API to inject real-time security rules into workstation network interfaces.
Detected via WFP filter layers and Defender rules
Outbound Reverse Tunneling
Establishes secure, bidirectional gRPC & WebSocket tunnels over TLS 1.3. Bypasses restricted NATs and enterprise firewalls without requiring open inbound ports.
Detected via Agent-initiated outbound TLS session
Docker / Docker Desktop
Discovers running Docker Engine containers and local Docker Compose environments via the Docker-compatible socket. Exposes unreachable container ports securely through outbound tunnels.
Detected via docker.sock, DOCKER_HOST, docker context
Colima
Supports lightweight Linux VMs running container runtimes on macOS. Discovers running sockets and groups them under the Docker-compatible adapter.
Detected via Colima profile sockets
OrbStack
First-class integration with OrbStack. Automatically scans OrbStack contexts and attributes display domains (*.orb.local) as display metadata.
Detected via OrbStack socket and *.orb.local contexts
Podman
Scans for rootless or rootful Podman compatibility sockets to discover running pods and local containers without requiring a daemon.
Detected via Podman compat socket (rootless/rootful)
Rancher Desktop
Detects active Rancher container engines and maps services dynamically for administrative governance.
Detected via Rancher Desktop socket and contexts
Kubernetes (kind / minikube)
Scans local clusters created with kind or minikube. Reads active ingress controllers and cluster service mappings for secure endpoint routing.
Detected via kubeconfig context enumeration
K3s / K3d
Integrates with lightweight k3s Kubernetes clusters running inside Docker. Discovers local services dynamically without elevated cluster privileges.
Detected via k3s/k3d kubeconfig contexts
MicroK8s
Enables discovery and tunnel mapping for local Canonical MicroK8s developer environments.
Detected via MicroK8s kubeconfig context
Cursor
Enforces firewall boundaries and credential protection for Cursor's local AI agent. Routes model and MCP traffic through the managed proxy to audit tool calls and shield secrets.
Detected via Process + MCP config + provider endpoints
JetBrains IDEs
Native policy coverage across the JetBrains family (IntelliJ IDEA, PyCharm, GoLand, WebStorm, Rider, CLion and more). Attributes outbound AI activity and applies local-service access control.
Detected via JetBrains Toolbox + IDE process fingerprint
VS Code
Identifies the Visual Studio Code process and routes its AI extension traffic through the managed proxy. Audits tool calls, applies outbound policy, and shields workspace credentials.
Detected via Process + extension host + MCP config
Android Studio
Covered by the JetBrains-family native adapter, with Gemini-aware governance applied to outbound assistant activity.
Detected via JetBrains-family process fingerprint
Devin Desktop / Windsurf
Detects the Windsurf editor through process and installation signals, with a path toward native integration. Governs model and MCP traffic via the compatibility adapter today.
Detected via Process + install path + MCP config
Kiro
Detects the Kiro agentic IDE and governs its MCP servers and model providers through the compatibility adapter, auditing tool calls and shielding local credentials.
Detected via Process + MCP config (mcp.json)
Visual Studio
Applies a native policy profile to Microsoft Visual Studio, governing Copilot and other AI assistants with outbound policy and credential shielding.
Detected via devenv.exe process fingerprint
Eclipse
Detects Eclipse installations and applies baseline outbound policy and local-service access control to AI plugin traffic.
Detected via Process + install path
Neovim / Vim / Emacs
Governs terminal editors and their AI plugins through the compatibility adapter (LSP and local proxy conventions) plus process and network governance.
Detected via Process + LSP / local proxy conventions
Xcode
Detects Xcode and applies process and network governance, with Copilot/MCP-aware policy where those assistants are present.
Detected via Process fingerprint + extension scan
Zed
Detects the Zed editor and applies baseline process fingerprinting and outbound policy to its assistant traffic without deeper editor hooks.
Detected via Process fingerprint
Claude Code
Routes Claude Code's terminal agent traffic through the managed proxy. Audits tool and MCP calls, applies outbound policy, and shields local API keys.
Detected via CLI process + MCP servers
Claude Desktop
Proxies Claude Desktop's Model Context Protocol (MCP) servers, auditing file reads and terminal executions while safeguarding local API keys.
Detected via App process + MCP server config
GitHub Copilot
A reusable policy profile for GitHub Copilot, Copilot Chat, and Agent Mode that travels across supported IDEs. Attributes outbound activity and applies consistent outbound policy.
Detected via Copilot endpoints across host IDEs
Cline
Monitors file-system access and command execution from the Cline VS Code agent via the secure local proxy, auditing tool calls and shielding credentials.
Detected via VS Code extension + MCP config
Continue.dev
Governs the Continue.dev assistant through the compatibility adapter, applying outbound policy and MCP-aware auditing to its configured providers.
Detected via IDE extension + config.json providers
Gemini Code Assist
Applies a policy profile to Gemini Code Assist across supported IDEs and governs its provider traffic through the compatibility adapter.
Detected via Plugin + Gemini API endpoints
OpenCode
Governs the OpenCode terminal agent through the compatibility adapter, with MCP and provider proxy support to audit tool calls and route model traffic.
Detected via CLI process + provider/MCP endpoints
Roo Code
Monitors file-system access and command execution from the Roo Code VS Code agent via the secure local proxy, auditing tool calls and shielding credentials.
Detected via VS Code extension + MCP config
Aider
Applies baseline process fingerprinting and outbound policy to the Aider terminal agent, with secret shielding for configured provider keys.
Detected via CLI process fingerprint
Sourcegraph Cody / Augment
Lower-priority coverage for Sourcegraph Cody and Augment via the compatibility adapter, applying outbound policy and attribution to provider traffic.
Detected via Extension + provider endpoints
Tabnine
Detects Tabnine across IDEs and applies process and network governance, routing cloud provider traffic through the compatibility adapter where configured.
Detected via Extension + provider endpoints
Local Model Servers
Detects local inference servers (Ollama, LM Studio, llama.cpp-compatible, and other OpenAI-compatible local endpoints) and governs their access through the compatibility adapter.
Detected via Loopback ports (e.g. 11434) + process
Model Context Protocol (MCP)
Sits in the path of MCP servers and clients to audit tool calls, block disallowed actions, redact sensitive output, and shield local secrets.
Detected via MCP stdio/SSE servers + client configs
OpenAI-compatible API Gateways
Routes OpenAI-compatible API traffic through a managed proxy to attribute outbound activity, apply policy, and shield API keys.
Detected via /v1/chat/completions style endpoints
Anthropic-compatible API Gateways
Routes Anthropic-compatible API traffic through a managed proxy to attribute activity, apply outbound policy, and shield credentials.
Detected via /v1/messages style endpoints
Gemini-compatible API Gateways
Routes Gemini-compatible API traffic through a managed proxy to attribute activity, apply policy, and shield provider keys.
Detected via generativelanguage / Vertex endpoints
OpenRouter-compatible Gateways
Routes OpenRouter-compatible aggregator traffic through a managed proxy to attribute outbound activity across providers and shield keys.
Detected via openrouter.ai/api endpoints
Linux (amd64 / arm64)
Pre-compiled systemd daemons and binary distributions for Debian, Ubuntu, RedHat, and Arch configurations.
Detected via systemd daemon (amd64 / arm64)
macOS
Full Apple Silicon (M1/M2/M3) and Intel 64-bit native application support. Signed PKG/DMG distribution formats.
Detected via Signed native app (arm64 / x86_64)
Windows
Native agent compiled for Windows 10/11 x64 systems, packaged as an enterprise-grade MSI installer.
Detected via Signed MSI service (x64)
Android
Kotlin Multiplatform mobile agent built for background WebSocket service tunneling and enrollment via link or QR code.
Detected via KMP app + background service
HarmonyOS NEXT
Preview version of the client SDK and agent interface targeting HarmonyOS NEXT devices.
Detected via Preview client SDK
No matches found
Try adjusting your keywords or selecting a different category.
Don't see your specific stack?
Cup'n'String is built on open standards like Docker API, Kubernetes configs, and standard OS system sockets. Custom adaptors can be easily introduced via our Kotlin Multiplatform Agent SDK.
Request Custom Adaptor Support