Interface-engine costs are climbing just as healthcare budgets tighten. MessageFoundry is the open-source alternative — self-hosted, with no per-interface licensing. It connects a wide range of healthcare protocols and message types, with deep HL7 v2 support and AI-assisted migration to get your interfaces off legacy fast.
from messagefoundry import MLLP, File, Send, inbound, outbound, router, handler # Connections — named endpoints, wired together by name inbound("IB_Test_ADT", MLLP(port=2575), router="adt_router") outbound("FILE_Test_ADT", File(directory="./out/adt", filename="{MSH-10}.hl7")) @router("adt_router") def route(msg): if msg["MSH-9.1"] != "ADT": return [] # not ADT → UNROUTED return ["archive"] @handler("archive") def archive(msg): if msg["MSH-9.2"] not in ("A01", "A04", "A08"): return None # filtered out (FILTERED) return Send("FILE_Test_ADT", msg)
A focused, dependable alternative to expensive legacy engines — for any interface you run, whatever the protocol or message type. Every message is delivered reliably and never silently dropped, your team stays in control instead of locked into a vendor's platform, and you can stand it up fast and migrate your existing interfaces over with AI assistance.
You don't have to be a developer to get started — setup wizards in the VS Code extension generate the wiring for you. And because Python is one of the easiest languages to learn, your interfaces stay readable and reviewable as your team grows into them.
Every interface change is a reviewable diff in version control — see who changed what, roll back in seconds, and ship with confidence. Nothing critical is hidden inside a database.
Messages are delivered reliably and in order, retried automatically when a peer is down, and replayable on demand — durable by design, with nothing extra to install, run, or babysit.
Built to recognized standards — NIST SSDF, the HIPAA Security Rule, and OWASP ASVS Level 2 — with authentication, least-privilege access, a tamper-evident audit trail, and encryption on by default. PHI is protected from day one, not bolted on later.
Real-world HL7 is rarely textbook-perfect. MessageFoundry keeps quirky, non-conformant messages flowing — and applies strict validation only where you choose to turn it on.
Every message that arrives is recorded with a clear outcome before it's acknowledged — so nothing is ever silently dropped, and your counts always reflect what really happened.
A monitoring console to watch interfaces live and replay with a click, plus a VS Code extension with setup wizards — so analysts and developers can configure, test, and operate from familiar tools.
For PHI, security is the foundation — not a feature. MessageFoundry follows a published Secure Development Standard and is measured against the frameworks a healthcare CISO already knows, so the trust conversation starts from common ground.
Built through a secure development lifecycle — threat-modeled per interface, peer-reviewed, and secure by default.
Tested rigorously — SAST, dependency, and secret scanning on every build, plus independent review before release.
Controls mapped to the HIPAA Security Rule — access control, audit, integrity, and transmission security.
Verified to the application-security level expected of software that handles sensitive data.
Secure by default — TLS everywhere, encryption on, least-privilege access, a tamper-resistant audit trail, and no PHI in logs — with modern interface authentication (mTLS, OAuth2, SMART on FHIR, Active Directory). The software supports a HIPAA-compliant deployment; you stay in control of your environment.
Open source and self-hosted, so your costs don't climb every time you add an interface, and nothing is locked inside a vendor's runtime or contract.
Configure interfaces with guided wizards, keep full Python control when you need it, and run it in your own environment — with no per-interface fees.
