opa-mcp-server

Overview Schema Related Servers Score Discussions

Evaluate Rego query

rego_eval

Evaluates Rego queries against policies and input documents, returning standard OPA results. Supports full and partial evaluation.

Instructions

Evaluate a Rego query against a policy and an input document using opa eval. Returns the standard {result: [...]} shape. The bread-and-butter authoring tool.

Input Schema

TableJSON Schema

Name	Required	Description
`query`	Yes	Rego query to evaluate, e.g. "data.example.allow".
`source`	No	Inline Rego policy source. Mutually exclusive with `paths`.
`paths`	No	Policy / data file or directory paths. Each must be inside an allowed root.
`input`	No	Inline input document.
`inputPath`	No	Path to a JSON input file. Mutually exclusive with `input`.
`unknowns`	No	Refs to treat as unknown during partial evaluation.
`partial`	No	Run partial evaluation rather than full evaluation.
`strictBuiltinErrors`	No	Treat builtin errors as fatal instead of returning undefined.

Implementation Reference

src/tools/evaluation/eval.ts:25-27 (handler)
The actual handler for the `rego_eval` tool — calls `runEval(opa, config, args, {})` (no extra flags). This is the anonymous async function passed as the third argument to server.registerTool for 'rego_eval'
```
async (args) => {
  return withToolEnvelope<RegoEvalOutput>(config, () => runEval(opa, config, args, {}));
},
```

src/tools/evaluation/_shared.ts:19-43 (schema)

Input schema shared by rego_eval and its variants. Defines fields: query, source, paths, input, inputPath, unknowns, partial, strictBuiltinErrors — all via Zod.

export const SharedEvalInput = {
  query: z.string().min(1).describe('Rego query to evaluate, e.g. "data.example.allow".'),
  source: z
    .string()
    .optional()
    .describe('Inline Rego policy source. Mutually exclusive with `paths`.'),
  paths: z
    .array(z.string())
    .optional()
    .describe('Policy / data file or directory paths. Each must be inside an allowed root.'),
  input: z.unknown().optional().describe('Inline input document.'),
  inputPath: z
    .string()
    .optional()
    .describe('Path to a JSON input file. Mutually exclusive with `input`.'),
  unknowns: z
    .array(z.string())
    .optional()
    .describe('Refs to treat as unknown during partial evaluation.'),
  partial: z.boolean().optional().describe('Run partial evaluation rather than full evaluation.'),
  strictBuiltinErrors: z
    .boolean()
    .optional()
    .describe('Treat builtin errors as fatal instead of returning undefined.'),
};

src/tools/evaluation/_shared.ts:45-52 (schema)

Output type for rego_eval: result, errors, metrics, explanation, profile, coverage — all optional.

export interface RegoEvalOutput {
  result?: unknown[];
  errors?: unknown[];
  metrics?: Record<string, unknown>;
  explanation?: unknown[];
  profile?: unknown[];
  coverage?: unknown;
}

src/tools/evaluation/_shared.ts:76-140 (helper)

Shared `runEval` helper that validates inputs, constructs the EvalInput, calls `opa.eval()`, and parses the JSON result into a ToolEnvelope<RegoEvalOutput>. Used by rego_eval and all its variants.

export async function runEval(
  opa: OpaCli,
  config: Config,
  args: EvalArgs,
  flags: EvalFlags,
): Promise<ToolEnvelope<RegoEvalOutput>> {
  if (!args.source && !args.paths?.length) {
    return err(
      'INVALID_INPUT',
      'rego_eval requires either `source` or at least one entry in `paths`.',
    );
  }
  if (args.input !== undefined && args.inputPath) {
    return err('INVALID_INPUT', 'rego_eval accepts either `input` or `inputPath`, not both.');
  }

  const evalInput: EvalInput = { query: args.query };
  if (args.source !== undefined) evalInput.source = args.source;

  if (args.paths?.length) {
    const validation = validatePaths(args.paths, config, { mustExist: true });
    if (!validation.ok) return validation.error;
    evalInput.paths = validation.resolved;
  }

  if (args.input !== undefined) {
    evalInput.input = args.input;
  } else if (args.inputPath) {
    const inputPathValidation = validatePaths([args.inputPath], config, { mustExist: true });
    if (!inputPathValidation.ok) return inputPathValidation.error;
    evalInput.inputPath = inputPathValidation.resolved[0];
  }

  if (args.partial) evalInput.partial = true;
  if (args.unknowns?.length) evalInput.unknowns = args.unknowns;
  if (args.strictBuiltinErrors) evalInput.strictBuiltinErrors = true;

  if (flags.explain) evalInput.explain = flags.explain;
  if (flags.profile) evalInput.profile = true;
  if (flags.coverage) evalInput.coverage = true;
  if (flags.metrics) evalInput.metrics = true;

  const result = await opa.eval(evalInput);

  const subprocessFailure = mapSubprocessFailure(result, 'opa');
  if (subprocessFailure) return subprocessFailure;

  // `opa eval` returns exit code 0 even when the query produces no
  // results or partial results. A non-zero exit means a hard error
  // (parse, type, runtime). Output JSON is on stdout.
  const parsed = tryParseJson<RegoEvalOutput>(result.stdout);

  if (result.exitCode !== 0) {
    return err('EVAL_ERROR', 'opa eval exited with an error.', {
      details: parsed ?? { stderr: result.stderr.trim(), stdout: result.stdout.trim() },
    });
  }

  if (parsed === undefined) {
    return err('UNKNOWN_ERROR', 'opa eval produced no parseable JSON output.', {
      details: { stdout: result.stdout.trim() },
    });
  }
  return ok<RegoEvalOutput>(parsed);
}

src/tools/evaluation/eval.ts:14-74 (registration)

Registration of `rego_eval` (and its three variants: with_explain, with_profile, with_coverage) via `server.registerTool`. The function `registerRegoEval` is called from `registerEvaluationTools`.

export function registerRegoEval(server: McpServer, config: Config): void {
  const opa = new OpaCli(config);

  server.registerTool(
    'rego_eval',
    {
      title: 'Evaluate Rego query',
      description:
        'Evaluate a Rego query against a policy and an input document using `opa eval`. Returns the standard `{result: [...]}` shape. The bread-and-butter authoring tool.',
      inputSchema: SharedEvalInput,
    },
    async (args) => {
      return withToolEnvelope<RegoEvalOutput>(config, () => runEval(opa, config, args, {}));
    },
  );

  server.registerTool(
    'rego_eval_with_explain',
    {
      title: 'Evaluate Rego with execution trace',
      description:
        "Evaluate with `--explain=full` and return a structured trace alongside the result. Use this when an agent needs to see why a rule fired (or didn't) — the trace is the basis for `rego_explain_decision`.",
      inputSchema: SharedEvalInput,
    },
    async (args) => {
      return withToolEnvelope<RegoEvalOutput>(config, () =>
        runEval(opa, config, args, { explain: 'full' }),
      );
    },
  );

  server.registerTool(
    'rego_eval_with_profile',
    {
      title: 'Evaluate Rego with profiling',
      description:
        'Evaluate with `--profile` and return per-rule timing and evaluation counts. Use this to find hot rules in slow policies.',
      inputSchema: SharedEvalInput,
    },
    async (args) => {
      return withToolEnvelope<RegoEvalOutput>(config, () =>
        runEval(opa, config, args, { profile: true, metrics: true }),
      );
    },
  );

  server.registerTool(
    'rego_eval_with_coverage',
    {
      title: 'Evaluate Rego with coverage',
      description:
        "Evaluate with `--coverage` and return per-line coverage data. Useful for verifying that tests actually exercise the rules they're meant to.",
      inputSchema: SharedEvalInput,
    },
    async (args) => {
      return withToolEnvelope<RegoEvalOutput>(config, () =>
        runEval(opa, config, args, { coverage: true }),
      );
    },
  );
}

Tool Definition Quality

B3.2/5.0

Behavior3/5

Does the description disclose side effects, auth requirements, rate limits, or destructive behavior?

The description notes it uses `opa eval` and returns the standard result shape, implying a read-only evaluation. However, with no annotations, it does not elaborate on behavioral traits like side effects, permissions, or limitations beyond the basic operation.

Agents need to know what a tool does to the world before calling it. Descriptions should go beyond structured annotations to explain consequences.

Conciseness4/5

Is the description appropriately sized, front-loaded, and free of redundancy?

The description is very concise at two sentences. It front-loads the core functionality but ends with a vague phrase 'bread-and-butter authoring tool' that adds little value. Still, it is efficient and minimal.

Shorter descriptions cost fewer tokens and are easier for agents to parse. Every sentence should earn its place.

Completeness3/5

Given the tool's complexity, does the description cover enough for an agent to succeed on first attempt?

Given the tool has 8 parameters and no output schema, the description covers the basic purpose but omits important context like mutual exclusivity of parameters (e.g., input vs inputPath) and the specifics of the return value. It is adequate for a simple tool but not fully complete.

Complex tools with many parameters or behaviors need more documentation. Simple tools need less. This dimension scales expectations accordingly.

Parameters3/5

Does the description clarify parameter syntax, constraints, interactions, or defaults beyond what the schema provides?

All 8 parameters have descriptions in the schema (100% coverage), so the description does not need to add parameter details. It does not provide any extra insight beyond what the schema already offers, which fits the baseline of 3.

Input schemas describe structure but not intent. Descriptions should explain non-obvious parameter relationships and valid value ranges.

Purpose4/5

Does the description clearly state what the tool does and how it differs from similar tools?

The description clearly states the tool evaluates a Rego query against a policy and input document using `opa eval` and returns a standard result shape. However, it does not differentiate itself from sibling tools like rego_eval_with_coverage or rego_eval_with_explain, which share similar purposes but add extra features.

Agents choose between tools based on descriptions. A clear purpose with a specific verb and resource helps agents select the right tool.

Usage Guidelines2/5

Does the description explain when to use this tool, when not to, or what alternatives exist?

No guidance is provided on when to use this tool instead of alternatives such as rego_eval_with_coverage or rego_eval_with_explain. The description does not mention any exclusions or context for choosing this basic eval over specialized variants.

Agents often have multiple tools that could apply. Explicit usage guidance like "use X instead of Y when Z" prevents misuse.

Install Server

Latest Blog Posts

Lightport: Open-Sourcing Glama's AI Gateway
By punkpeye on April 27, 2026.
open source
OpenAI
Tool Definition Quality Score (TDQS)
By punkpeye on April 3, 2026.
mcp
The Hackers Who Tracked My Sleep Cycle
By punkpeye on March 26, 2026.
security

MCP directory API

We provide all the information about MCP servers via our MCP API.

curl -X GET 'https://glama.ai/api/mcp/v1/servers/OrygnsCode/opa-mcp-server'

If you have feedback or need assistance with the MCP directory API, please join our Discord server