Rewrites and restructures Permit MCP Gateway documentation to improve clarity, accelerate adoption for developers, and enhance credibility for security teams.

Changes

Landing Page (index.mdx) — Concise Intro + Navigation Hub

• Outcome-driven hero with dual-audience framing (developers + security/IAM teams)
• "Built on Permit.io" section explaining the control plane / data plane relationship
• Trimmed to avoid content overlap with overview — delegates "what and why" detail to overview.mdx

Overview Page (overview.mdx) — Major Rewrite

• New "How Permit and Permit MCP Gateway Are Connected" section
  • Permit as control plane and default data plane
  • Every Host = Permit Environment (1:1 mapping)
  • Two-dashboard model: app.permit.io + app.agent.security
• Security and Trust Model section (what the gateway sees/enforces/logs, what it doesn't solve)
• Comparison table vs API gateways, IAM platforms, manual access
• Use Cases, When to Use, Deployment Options sections (moved from index.mdx)

Getting Started (guide.mdx) — Fast Activation Path

• 5-minute Quick Start at the top (8 steps to first allowed call, denied call, and audit event)
• Expected results after each setup step
• Mini troubleshooting block for common quick-start issues

Architecture Page — Executive Summary + Control Plane

• Executive summary before the deep technical dive
• New "Permit.io as Control Plane and Data Plane" section with diagram
• Control plane / data plane framing throughout

Permit.io Integration Page — Connection Explanation

• New relationship overview table (Permit vs Gateway roles, dashboards, storage)
• "Every gateway host maps to a Permit environment" explanation
• Full policy engine capabilities available through the connection

Audit Logs — Investigation Examples

• 5 practical investigation walkthroughs (denied action, human→agent tracing, server audit, access history, compliance report)

Host Setup — Rollout Guidance

• 3-phase rollout plan: Pilot → Controlled Expansion → Production
• Rollout principles (start restrictive, pilot before production, review before broadening)
• Trust level keyword table replaced with example-based table + link to canonical reference

Advanced Features — Agent Interrogation + Claims Hygiene

• New: Agent Interrogation — agentic-native identity mechanism using the MCP protocol itself
  • Composite identity: delegating human + workflow context + agent fingerprint
  • Value for policy: hard-gated tool access, per-workflow policy, drift-triggered reactions
  • Value for auditing: persistent identity, declared vs observed intent, full identity chain
  • Value for prompt injection protection: baseline fingerprinting, multi-dimensional drift detection
• Linked Agent Verification and Intent-Based Access Control to Interrogation as underlying mechanism
• Feature maturity summary table with honest status indicators
• Maturity callouts for features under active development
• Flagged marketing-site claims not yet supported in docs

CR Fixes

• Subdomain example acme-pink-panda-6942 → acme-brave-coral-37 across all 9 files to match actual {prefix}-{adjective}-{color}-{2-digit} generation logic
• Content overlap between index/overview/guide reduced — index trimmed to intro + navigation, overview owns the detailed pitch
• Abbreviated trust level keyword lists in host-setup.mdx replaced with example-based table + link to canonical reference in guide.mdx

Naming Consistency — All Files

• "Agent Security" → "Permit MCP Gateway" across all 12 documentation files
• Config snippet names updated to permit-mcp-gateway
• Zero remaining marketing metaphors or inflated claims