Skill v1.0.0

currentTrusted Publisher100/100

openai/tunnel-client/tunnel-mcp

──Details

PublishedMay 20, 2026 at 04:38 AM

Content Hashsha256:7737d6d0090a36a1...

Git SHA

──Files

Files (1 file, 3.0 KB)

SKILL.md3.0 KBactive

SKILL.md · 62 lines · 3.0 KB

version: "1.0.0" name: tunnel-mcp description: Create, connect, list, and inspect MCP tunnel runtimes through the local tunnel-client plugin. Use when Codex needs to manage secure MCP tunnels with aliases and native tunnel-client runtime processes.

Tunnel MCP

Use scripts/tunnel_mcp from this plugin when a user asks Codex to manage MCP tunnels through tunnel-client. The plugin entrypoint is a thin router onto the public native tunnel-client runtimes ... and tunnel-client admin-profiles ... command trees.

When the tunnel-mcp MCP app tools are available, use them first instead of manual shell routing:

install_or_select_tunnel_client
create_tunnel_runtime
connect_stdio_mcp
list_runtime_aliases
runtime_status
stop_runtime

The app tools are an operator surface over native tunnel-client; they orchestrate tunnel-client runtimes ..., normalize structured output, and keep tunnel protocol/runtime behavior in the Go binary.

Before acting, consult only the smallest relevant reference under references/:

references/binary.md: how to find or obtain a public-safe tunnel-client binary
references/setup-and-install.md: install, export, reset, binary-vs-bundle setup
references/profiles-state-and-keys.md: profiles, state dirs, admin/runtime key split
references/runtime-flows.md: create, connect, list, status, stop, rm, attach by tunnel id
references/troubleshooting.md: /healthz, /readyz, /ui, status, logs, stale aliases

Rules

Use tunnel-client admin tunnels for remote tunnel CRUD. Do not call raw

tunnel-service HTTP endpoints from this plugin.

Route operational actions through tunnel-client runtimes ... and

tunnel-client admin-profiles ....

Use scripts/tunnel_mcp self-check for plugin/binary/router compatibility;

it must report secret reference presence without printing secret values.

Use native tunnel-client run --profile <name>; do not translate profile

files into flags in the plugin layer.

Do not assume a source checkout, build system, helper, or tmux. The installed

plugin must work with the selected tunnel-client binary alone.

Treat ambient PATH binary candidates as diagnostics unless selected through

--tunnel-client-bin, TUNNEL_CLIENT_BIN, or .tunnel-client-bin.

Tunnel state, admin profiles, generated runtime profiles, stale-alias

handling, cleanup classification, and local process management are owned by native tunnel-client; consult the relevant reference before explaining those details.

Keep admin and runtime credentials split: admin CRUD uses

admin-profiles; runtime attach/connect uses --runtime-api-key env:NAME or file:/path. Do not pass literal keys.

Never write literal API keys, bearer tokens, cookies, or inline sk- style

secret material into plugin state or generated configs.

Surface control_plane_poll_health separately from /healthz and /readyz;

local readiness can be green while control-plane polling fails through a dead proxy.

All versions