A MCP gateway is a useful tool, I have a prototype of something similar I built but I'm not super enthusiastic about working on it (bigger fish to fry). One thing I'd suggest is to have a meta-mcp that an agenct can query to search for the best tool for a given job, that it can then inject into its context. Currently we're all manually injecting tools but it's a pain in the ass, we tend to pollute context with tools agents don't need (which makes them worse at calling the tools they do) and whatnot.

What I was talking about here is different though. My agent (Smith) has an inversion of control architecture where rather than running as a process on a system and directly calling tools on that system, it emits intents to a queue, and an executor service that watches that queue and analyzes those intents, validates them, schedules them and emits results back to an async queue the agent is watching. This is more secure and easier to scale. This architecture could be built out to support safe multiple agents simultaneously driving your desktop pretty easily (from a conceptual standpoint, it's a lot of work to make it robust). I would be totally down to collaborate with someone on how they could build a system like this on top of my architecture.

Looks interesting. Once an org configures their MCP servers on the gateway, what is the config process like for Cursor?