Foundry MCP

# Configuration foundry-mcp supports configuration via TOML and environment variables. The CLI and MCP server share the same settings. ## Configuration order Configuration is loaded in layers, with each layer overriding the previous: 1. **Defaults** - Built-in default values 2. **User config** - `~/.foundry-mcp.toml` (optional, user-wide settings) 3. **Project config** - `./foundry-mcp.toml` (optional, project-specific) 4. **Environment variables** - Runtime overrides (highest priority) ### Config file locations | Location | Purpose | Example use cases | |----------|---------|-------------------| | `~/.foundry-mcp.toml` | User defaults | API keys, preferred LLM providers, logging preferences | | `./foundry-mcp.toml` | Project settings | specs_dir, workspace roots, project-specific tool config | ### Legacy compatibility For backwards compatibility, if `./foundry-mcp.toml` doesn't exist, the system will fall back to `./.foundry-mcp.toml` (dot-prefixed) in the project directory. ## Minimal TOML example ```toml [workspace] specs_dir = "./specs" [logging] level = "INFO" [llm] provider = "openai" model = "gpt-4.1" timeout = 30 ``` ## Common environment variables | Variable | Purpose | | --- | --- | | `FOUNDRY_MCP_SPECS_DIR` | Override specs directory | | `FOUNDRY_MCP_WORKSPACE_ROOTS` | Restrict allowed workspace roots | | `FOUNDRY_MCP_LOG_LEVEL` | Set log level (INFO, DEBUG, etc.) | | `FOUNDRY_MCP_API_KEYS` | Require API keys for tool access | | `FOUNDRY_MCP_REQUIRE_AUTH` | Enforce auth on all tools | | `FOUNDRY_MCP_FEATURE_FLAGS` | Enable feature flags | ## LLM providers Quick setup for common providers: - OpenAI: set `FOUNDRY_MCP_LLM_PROVIDER=openai` and `OPENAI_API_KEY` - Anthropic: set `FOUNDRY_MCP_LLM_PROVIDER=anthropic` and `ANTHROPIC_API_KEY` - Local: set `FOUNDRY_MCP_LLM_PROVIDER=local` and `FOUNDRY_MCP_LLM_BASE_URL` Common LLM environment variables: | Variable | Purpose | | --- | --- | | `FOUNDRY_MCP_LLM_PROVIDER` | Provider name (`openai`, `anthropic`, `local`) | | `FOUNDRY_MCP_LLM_API_KEY` | Unified API key override | | `FOUNDRY_MCP_LLM_MODEL` | Model identifier | | `FOUNDRY_MCP_LLM_BASE_URL` | Custom API endpoint | | `FOUNDRY_MCP_LLM_TIMEOUT` | Request timeout (seconds) | LLM configuration is documented in detail here: - [LLM Configuration Guide](guides/llm-configuration.md) ## Research Configuration The `[research]` section controls deep research workflows including search provider settings. For full configuration options, see `samples/foundry-mcp.toml`. ### Tavily Search Provider Tavily is a web search provider optimized for AI applications. Configure via environment variable or TOML: ```bash export TAVILY_API_KEY="tvly-..." ``` #### Search Parameters | Setting | Type | Default | Description | |---------|------|---------|-------------| | `tavily_search_depth` | string | `"basic"` | Search mode: `"basic"`, `"advanced"` (2x credits), `"fast"`, `"ultra_fast"` | | `tavily_topic` | string | `"general"` | Search topic: `"general"`, `"news"` | | `tavily_news_days` | int | `null` | Days limit for news (1-365, only when `topic="news"`) | | `tavily_include_images` | bool | `false` | Include image results | | `tavily_country` | string | `null` | ISO 3166-1 alpha-2 code to boost results (e.g., `"US"`) | | `tavily_chunks_per_source` | int | `3` | Chunks per source for advanced search (1-5) | | `tavily_auto_parameters` | bool | `false` | Let Tavily auto-configure based on query | #### Extract Parameters Tavily Extract enables URL content extraction for deeper analysis. | Setting | Type | Default | Description | |---------|------|---------|-------------| | `tavily_extract_depth` | string | `"basic"` | Extract mode: `"basic"`, `"advanced"` | | `tavily_extract_include_images` | bool | `false` | Include images in extraction | | `tavily_extract_in_deep_research` | bool | `false` | Enable extract as follow-up step | | `tavily_extract_max_urls` | int | `5` | Max URLs to extract per deep research run | #### Research Mode Smart Defaults When using deep research, parameters are adjusted based on `deep_research_mode`: | Mode | Search Depth | Source Prioritization | |------|-------------|----------------------| | `"general"` | `basic` | No preference | | `"academic"` | `advanced` | Journals, publishers, preprints | | `"technical"` | `advanced` | Official docs, arxiv, Stack Overflow | #### Example Configuration ```toml [research] # Search provider credentials (prefer env vars in production) # tavily_api_key = "tvly-..." # Search parameters tavily_search_depth = "basic" # "basic", "advanced" (2x credits), "fast", "ultra_fast" tavily_topic = "general" # "general", "news" tavily_news_days = 7 # only when topic = "news" tavily_include_images = false tavily_country = "US" # boost results from country tavily_chunks_per_source = 3 # 1-5, for advanced search tavily_auto_parameters = false # let Tavily auto-configure # Extract parameters tavily_extract_depth = "basic" # "basic", "advanced" tavily_extract_include_images = false tavily_extract_in_deep_research = false # enable extract follow-up tavily_extract_max_urls = 5 # max URLs per deep research run # Deep research mode affects Tavily parameter selection deep_research_mode = "technical" # "general", "academic", "technical" ``` #### Credit Cost Awareness - `search_depth="basic"` - Standard credit cost - `search_depth="advanced"` - 2x credit cost (use for deeper analysis) - `search_depth="fast"` / `"ultra_fast"` - Reduced latency, standard cost ### Deep Research Resilience The following settings control timeout, cancellation, and resilience behavior for deep research workflows. #### Timeout Configuration | Setting | Type | Default | Description | |---------|------|---------|-------------| | `deep_research_timeout` | float | `600.0` | Overall workflow timeout in seconds (10 minutes) | | `deep_research_planning_timeout` | float | `360.0` | Planning phase timeout | | `deep_research_analysis_timeout` | float | `360.0` | Analysis phase timeout | | `deep_research_synthesis_timeout` | float | `600.0` | Synthesis phase timeout (longer for complex reports) | | `deep_research_refinement_timeout` | float | `360.0` | Refinement phase timeout | **Timeout Precedence:** 1. Explicit `task_timeout` parameter in API call (highest priority) 2. `deep_research_timeout` from configuration 3. Hardcoded fallback of 600 seconds #### Status Response Metadata When polling `deep-research-status`, the response includes resilience metadata: | Field | Type | Description | |-------|------|-------------| | `last_heartbeat_at` | string (ISO 8601) | Last activity timestamp, updated before provider calls | | `is_timed_out` | bool | True if task exceeded timeout | | `is_stale` | bool | True if no activity for 5+ minutes | | `effective_timeout` | float | The actual timeout applied to the task | #### Example Configuration ```toml [research] # Workflow-level timeout (overall limit) deep_research_timeout = 600.0 # 10 minutes # Per-phase timeouts (optional overrides) deep_research_planning_timeout = 360.0 deep_research_analysis_timeout = 360.0 deep_research_synthesis_timeout = 600.0 deep_research_refinement_timeout = 360.0 # Retry behavior deep_research_max_retries = 2 deep_research_retry_delay = 5.0 ``` ### Document Digest The document digest feature compresses source content into structured summaries with evidence snippets for citation traceability. This reduces context usage while preserving key information. #### Digest Settings | Setting | Type | Default | Description | |---------|------|---------|-------------| | `deep_research_digest_policy` | string | `"auto"` | When to digest: `"off"`, `"auto"`, `"always"` | | `deep_research_digest_min_chars` | int | `500` | Minimum content length to trigger digest | | `deep_research_digest_max_sources` | int | `50` | Maximum sources to digest per iteration | | `deep_research_digest_timeout` | float | `120.0` | Timeout per digest operation (seconds) | | `deep_research_digest_max_concurrent` | int | `3` | Maximum concurrent digest operations | | `deep_research_digest_include_evidence` | bool | `true` | Include evidence snippets in output | | `deep_research_digest_evidence_max_chars` | int | `400` | Maximum characters per evidence snippet (1-500) | | `deep_research_digest_max_evidence_snippets` | int | `5` | Maximum evidence snippets per digest (1-10) | | `deep_research_digest_fetch_pdfs` | bool | `false` | Fetch and extract PDF content | | `deep_research_digest_provider` | string | `null` | Primary LLM provider for digest (uses analysis provider if not set) | | `deep_research_digest_providers` | list | `[]` | Fallback providers for digest (tried in order if primary fails) | **Digest Policies:** | Policy | Behavior | |--------|----------| | `off` | Never digest - all sources pass through unchanged | | `auto` | Digest HIGH/MEDIUM quality sources above size threshold | | `always` | Always digest sources with content | #### Content Archival When archival is enabled, canonical (normalized) text is stored before compression, enabling verification of evidence snippet locators against original content. | Setting | Type | Default | Description | |---------|------|---------|-------------| | `deep_research_archive_content` | bool | `false` | Archive canonical text before digest | | `deep_research_archive_retention_days` | int | `30` | Days to retain archived content (0 = keep indefinitely) | **Archive Location:** Archives are stored at: ``` ~/.foundry-mcp/research_archives/{source_id}/{content_hash}.txt ``` - Files are created with owner-only permissions (0600) - Directories are created with owner-only permissions (0700) - Old archives are automatically cleaned based on `retention_days` #### Example Configuration ```toml [research] # Digest settings deep_research_digest_policy = "auto" deep_research_digest_min_chars = 500 deep_research_digest_fetch_pdfs = true # Archival (for citation verification) deep_research_archive_content = true deep_research_archive_retention_days = 60 ``` ### Audit Verbosity The `audit_verbosity` setting controls the size of JSONL audit payloads written during deep research workflows. This can reduce CPU spent on large audit writes while maintaining schema stability for downstream analysis tools. | Setting | Type | Default | Description | |---------|------|---------|-------------| | `audit_verbosity` | string | `"full"` | Audit payload detail level: `"full"` or `"minimal"` | **Verbosity Modes:** | Mode | Behavior | |------|----------| | `full` | Original audit events unchanged - complete audit trail with all prompts, responses, and content | | `minimal` | Large text fields set to `null` while preserving schema shape and metrics | **Fields Nulled in Minimal Mode:** Top-level fields: - `system_prompt` - LLM system prompt text - `user_prompt` - LLM user prompt text - `raw_response` - Raw LLM response text - `report` - Generated report content - `error` - Error message text - `traceback` - Error traceback text Nested fields: - `findings[*].content` - Finding content text - `gaps[*].description` - Gap description text **Fields Preserved (Always Included):** Metrics and identifiers are always preserved for analysis compatibility: - `provider_id` - LLM provider identifier - `model_used` - Model identifier - `tokens_used` - Token consumption - `duration_ms` - Operation duration - `sources_added` - Source count - `report_length` - Report character count - `parse_success` - Parse status boolean **Schema Stability Guarantee:** Both modes produce the same JSON schema shape - all keys are present in both modes. The difference is that `minimal` mode sets large text values to `null`. This ensures downstream analysis tools can process audit files from either mode without schema changes. **Example Configuration:** ```toml [research] # Reduce audit file size while maintaining schema audit_verbosity = "minimal" ``` ## Specs directory resolution If you do not set `FOUNDRY_MCP_SPECS_DIR`, the CLI and server will attempt to auto-detect a `specs/` directory in the workspace.