Home / Integrations / VS Code
// INTEGRATION

Use Intercept with VS Code

Add policy enforcement to GitHub Copilot in VS Code in one line.

Config file: .vscode/mcp.json (workspace) or user profile mcp.json

VS Code uses servers instead of mcpServers. The type field is required.

// BEFORE

A standard MCP server in your VS Code config -- no controls.

.vscode/mcp.json 
{
  "servers": {
    "github": {
      "type": "stdio",
      "command": "npx",
      "args": ["-y", "@modelcontextprotocol/server-github"],
      "env": {
        "GITHUB_PERSONAL_ACCESS_TOKEN": "ghp_..."
      }
    }
  }
}
// WITH INTERCEPT

Wrap the server command with Intercept. Same config structure, policy enforced.

.vscode/mcp.json 
{
  "servers": {
    "github": {
      "type": "stdio",
      "command": "npx",
      "args": [
        "-y", "@policylayer/intercept",
        "-c", "policy.yaml",
        "--",
        "npx", "-y", "@modelcontextprotocol/server-github"
      ],
      "env": {
        "GITHUB_PERSONAL_ACCESS_TOKEN": "ghp_..."
      }
    }
  }
}
// WHAT YOU GET
Rate limits
Cap tool calls per minute, hour, or day
Access controls
Allow, deny, or conditionally gate any tool
Spend caps
Limit financial operations with daily thresholds
Audit logs
Full trace of every tool call and policy decision
// EXAMPLE POLICY
policy.yaml 
version: "1"
default: deny

tools:
  list_customers:
    rules:
      - action: allow
        rate_limit: 30/minute

  create_refund:
    rules:
      - name: "daily cap"
        rate_limit: 10/day

  delete_repository:
    rules:
      - action: deny
// INSTALL
npx -y @policylayer/intercept
github.com/policylayer/intercept →
// GET IN TOUCH

Have a question or want to learn more? Send us a message.

Message sent.

We'll get back to you soon.