Tool Filter MCP

index.ts•14.6 KiB

#!/usr/bin/env node import { parseArgs } from 'node:util'; import { ProxyConfig } from './types.js'; import { ProxyOrchestrator } from './proxy.js'; import { createMCPServer } from './server.js'; import { Client } from '@modelcontextprotocol/sdk/client/index.js'; import { SSEClientTransport, type SSEClientTransportOptions, } from '@modelcontextprotocol/sdk/client/sse.js'; import { StreamableHTTPClientTransport, type StreamableHTTPClientTransportOptions, } from '@modelcontextprotocol/sdk/client/streamableHttp.js'; import type { EventSourceInit } from 'eventsource'; import type { Tool } from '@modelcontextprotocol/sdk/types.js'; import { formatStartupError } from './utils/error-handler.js'; import { parseHeaders } from './utils/header-parser.js'; type ToolListFormat = 'table' | 'json' | 'names'; interface CLIArgs { upstream: string; deny?: string; header?: string[]; listTools?: boolean; format?: ToolListFormat; } export function parseCLIArgs(): CLIArgs { const { values } = parseArgs({ options: { upstream: { type: 'string', short: 'u', }, deny: { type: 'string', short: 'd', }, header: { type: 'string', short: 'h', multiple: true, }, 'list-tools': { type: 'boolean', short: 'l', }, format: { type: 'string', short: 'f', }, }, }); if (!values.upstream) { console.error('Error: --upstream argument is required'); console.error('Usage: tool-filter-mcp --upstream <url> [--deny <patterns>] [--header <name:value>] [--list-tools] [--format <table|json|names>]'); process.exit(1); } const upstream = values.upstream; const deny = values.deny; const header = values.header; const listTools = values['list-tools']; const format = values.format as ToolListFormat | undefined; try { new URL(upstream); } catch { console.error(`Error: Invalid upstream URL: ${upstream}`); process.exit(1); } // Validate format if provided if (format && !['table', 'json', 'names'].includes(format)) { console.error(`Error: Invalid format "${format}". Must be one of: table, json, names`); process.exit(1); } return { upstream, deny, header, listTools, format: format || 'table', }; } export function createProxyConfig(args: CLIArgs): ProxyConfig { const denyPatterns = args.deny ? args.deny.split(',').map((p) => p.trim()).filter((p) => p.length > 0) : []; const headers = args.header && args.header.length > 0 ? parseHeaders(args.header) : undefined; return { upstreamUrl: args.upstream, denyPatterns, headers, timeouts: { connection: 30000, toolList: 10000, }, }; } export function truncateDescription(desc: string, maxLength: number): string { const firstLine = desc.split('\n')[0]; if (firstLine.length > maxLength) { return firstLine.substring(0, maxLength) + '...'; } return firstLine !== desc ? firstLine + '...' : firstLine; } export function formatToolsList(tools: Tool[], format: ToolListFormat): string { if (tools.length === 0) { return format === 'json' ? '[]' : ''; } switch (format) { case 'json': return JSON.stringify(tools, null, 2); case 'names': return tools.map((t) => t.name).join(','); case 'table': default: const header = `Available tools (${tools.length} total):\n`; const maxNameLength = Math.max(...tools.map((t) => t.name.length), 20); const separator = '\n'; const maxDescLength = 100; const rows = tools.map((tool) => { const name = tool.name.padEnd(maxNameLength + 2); const desc = truncateDescription(tool.description || '(no description)', maxDescLength); return `${name}${desc}`; }); return header + separator + rows.join('\n'); } } function normalizeAllowHeader(header: string | null): string | null { if (!header) { return null; } const methods = header .split(',') .map((method) => method.trim().toUpperCase()) .filter((method) => method.length > 0); if (methods.length === 0) { return null; } return [...new Set(methods)].join(', '); } async function probeAllowedMethods( upstreamUrl: string, headers: Record<string, string>, fetchImpl: typeof fetch ): Promise<string | null> { const methodsToTry: Array<RequestInit['method']> = ['OPTIONS', 'HEAD']; const headerEntries = Object.entries(headers ?? {}); for (const method of methodsToTry) { try { const requestInit: RequestInit = { method }; if (headerEntries.length > 0) { const requestHeaders = new Headers(); for (const [key, value] of headerEntries) { requestHeaders.set(key, value); } requestInit.headers = requestHeaders; } const response = await fetchImpl(upstreamUrl, requestInit); const allowHeader = normalizeAllowHeader( response.headers && typeof response.headers.get === 'function' ? response.headers.get('allow') : null ); if (allowHeader) { return allowHeader; } } catch { continue; } } return null; } function isMethodNotAllowedError(error: unknown): boolean { if (!error || typeof error !== 'object') { return false; } const code = (error as { code?: unknown }).code; if (typeof code === 'number') { return code === 405; } if (typeof code === 'string') { const parsed = Number(code); return Number.isInteger(parsed) && parsed === 405; } return false; } export interface WrappedClient { connect(): Promise<void>; listTools(): Promise<{ tools: Tool[] }>; callTool(name: string, args: Record<string, unknown>): Promise<unknown>; disconnect(): void; isConnected(): boolean; } export async function createUpstreamClient( upstreamUrl: string, headers?: Record<string, string> ): Promise<WrappedClient> { const allowHeaderRef: { value: string | null } = { value: null }; const baseFetch: typeof fetch = fetch; const upstreamTarget = new URL(upstreamUrl); const safeHeaders = headers ?? {}; const fetchWithAllowCapture: typeof fetch = async (input, init) => { const response = await baseFetch(input, init); if (response && typeof response === 'object' && 'status' in response && response.status === 405) { const headers = 'headers' in response && response.headers && typeof (response.headers as Headers).get === 'function' ? (response.headers as Headers) : undefined; const allowHeader = headers ? headers.get('allow') : null; allowHeaderRef.value = normalizeAllowHeader(allowHeader); } return response; }; const eventSourceInit: EventSourceInit & { headers?: Record<string, string>; fetch: typeof fetch; } = { fetch: fetchWithAllowCapture, }; const requestInit: RequestInit | undefined = Object.keys(safeHeaders).length > 0 ? { headers: safeHeaders } : undefined; if (Object.keys(safeHeaders).length > 0) { eventSourceInit.headers = safeHeaders; } const transportOptions: SSEClientTransportOptions = { eventSourceInit, fetch: fetchWithAllowCapture, ...(requestInit ? { requestInit } : {}), }; const streamableOptions: StreamableHTTPClientTransportOptions = { fetch: fetchWithAllowCapture, ...(requestInit ? { requestInit } : {}), }; const determineTransportOrder = (url: URL): Array<'streamable' | 'sse'> => { const rawPath = url.pathname.toLowerCase(); const normalizedPath = rawPath === '/' ? '/' : rawPath.replace(/\/+$/, ''); if (normalizedPath.endsWith('/sse')) { return ['sse', 'streamable']; } if (normalizedPath.endsWith('/mcp')) { return ['streamable', 'sse']; } return ['streamable', 'sse']; }; const transportOrder = determineTransportOrder(upstreamTarget); const createClient = (): Client => new Client( { name: 'tool-filter-mcp', version: '0.2.0', }, { capabilities: {}, } ); let client: Client = createClient(); let activeTransport: SSEClientTransport | StreamableHTTPClientTransport | null = null; let connected = false; const closeTransport = async ( transport: SSEClientTransport | StreamableHTTPClientTransport ): Promise<void> => { try { await transport.close(); } catch {} }; const shouldFallbackToSse = (error: unknown): boolean => { if (isMethodNotAllowedError(error)) { return true; } if (error instanceof Error && typeof error.message === 'string') { return /HTTP\s+40[45]/.test(error.message); } return false; }; return { async connect(): Promise<void> { activeTransport = null; connected = false; for (let index = 0; index < transportOrder.length; index += 1) { const attempt = transportOrder[index]; allowHeaderRef.value = null; client = createClient(); const transport = attempt === 'streamable' ? new StreamableHTTPClientTransport(new URL(upstreamUrl), streamableOptions) : new SSEClientTransport(new URL(upstreamUrl), transportOptions); try { await client.connect(transport); activeTransport = transport; connected = true; return; } catch (error) { await closeTransport(transport); activeTransport = null; connected = false; if (attempt === 'streamable') { const hasSseRemaining = transportOrder.slice(index + 1).includes('sse'); if (hasSseRemaining && shouldFallbackToSse(error)) { allowHeaderRef.value = null; continue; } if (isMethodNotAllowedError(error)) { const allowedMethods = allowHeaderRef.value ?? (await probeAllowedMethods(upstreamUrl, safeHeaders, fetchWithAllowCapture)); const message = allowedMethods ? `Upstream responded with HTTP 405 Method Not Allowed. Supported methods: ${allowedMethods}.` : 'Upstream responded with HTTP 405 Method Not Allowed and did not provide an Allow header.'; throw new Error(message, { cause: error }); } throw error; } const hasStreamableRemaining = transportOrder.slice(index + 1).includes('streamable'); if (hasStreamableRemaining) { continue; } if (isMethodNotAllowedError(error)) { const allowedMethods = allowHeaderRef.value ?? (await probeAllowedMethods(upstreamUrl, safeHeaders, fetchWithAllowCapture)); const message = allowedMethods ? `Upstream responded with HTTP 405 Method Not Allowed. Supported methods: ${allowedMethods}.` : 'Upstream responded with HTTP 405 Method Not Allowed and did not provide an Allow header.'; throw new Error(message, { cause: error }); } throw error; } } }, async listTools(): Promise<{ tools: Tool[] }> { const result = await client.listTools(); return result as { tools: Tool[] }; }, async callTool(name: string, args: Record<string, unknown>): Promise<unknown> { return await client.callTool({ name, arguments: args }); }, disconnect(): void { if (activeTransport instanceof StreamableHTTPClientTransport) { void activeTransport.terminateSession().catch(() => undefined); } void client.close(); connected = false; activeTransport = null; }, isConnected(): boolean { return connected; }, }; } export async function listToolsMode(args: CLIArgs): Promise<void> { try { const config = createProxyConfig(args); console.error(`Connecting to upstream MCP at ${config.upstreamUrl}...`); const upstreamClient = await createUpstreamClient(config.upstreamUrl, config.headers); await upstreamClient.connect(); console.error('Fetching tools from upstream...'); const result = await upstreamClient.listTools(); let tools = result.tools; // Apply filtering if deny patterns are provided if (config.denyPatterns.length > 0) { const patterns = config.denyPatterns.map((pattern) => new RegExp(pattern)); tools = tools.filter((tool) => { return !patterns.some((pattern) => pattern.test(tool.name)); }); console.error(`Applied ${config.denyPatterns.length} filter pattern(s)`); } // Output to stdout (not stderr) so it can be piped/redirected const formatted = formatToolsList(tools, args.format || 'table'); // eslint-disable-next-line no-console console.log(formatted); upstreamClient.disconnect(); } catch (error) { const errorMessage = formatStartupError(error); console.error(`Error: ${errorMessage}`); process.exit(1); } } async function main(): Promise<void> { try { const args = parseCLIArgs(); // Handle list-tools mode if (args.listTools) { await listToolsMode(args); return; } const config = createProxyConfig(args); console.error(`Connecting to upstream MCP at ${config.upstreamUrl}...`); const upstreamClient = await createUpstreamClient(config.upstreamUrl, config.headers); const proxy = new ProxyOrchestrator(config, upstreamClient); await proxy.startup(); const filteredTools = proxy.getCachedTools(); console.error( `Proxy ready. Filtered ${filteredTools.length} tools from upstream.` ); if (config.denyPatterns.length > 0) { console.error(`Deny patterns: ${config.denyPatterns.join(', ')}`); } if (config.headers && Object.keys(config.headers).length > 0) { console.error(`Custom headers: ${Object.keys(config.headers).join(', ')}`); } const server = await createMCPServer(proxy); console.error('MCP proxy server running on stdio'); console.error('Press Ctrl+C to stop'); process.on('SIGINT', () => { console.error('\nShutting down...'); proxy.shutdown(); void server.close(); process.exit(0); }); process.on('SIGTERM', () => { console.error('\nShutting down...'); proxy.shutdown(); void server.close(); process.exit(0); }); } catch (error) { const errorMessage = formatStartupError(error); console.error(`Error: ${errorMessage}`); process.exit(1); } } // Run main() unless we're being imported for testing // Check for common test environments instead of exact path matching // which breaks with npx due to symlink resolution const isTest = process.env.NODE_ENV === 'test' || process.argv.some(arg => arg.includes('vitest') || arg.includes('jest')); if (!isTest) { void main(); }

Loading blob content...

Latest Blog Posts

Redis vs ioredis vs valkey-glide
By punkpeye on January 26, 2026.
benchmark
Redis
valkey
Quickstart: Publish an MCP Server to the MCP Registry
By punkpeye on January 24, 2026.
mcp
official reference mirror
Official MCP Registry Server.json Requirements
By punkpeye on January 24, 2026.
mcp
official reference mirror

MCP directory API

We provide all the information about MCP servers via our MCP API.

curl -X GET 'https://glama.ai/api/mcp/v1/servers/respawn-app/tool-filter-mcp'

If you have feedback or need assistance with the MCP directory API, please join our Discord server

index.ts•14.6 KiB