Skip to main content
Glama
ingpoc

Token-Efficient MCP Server

by ingpoc
OverviewSchemaRelated ServersScoreDiscussions
JavaScript
Local

Execute Code in Sandbox

execute_code

Execute Python, Bash, or Node.js code in a secure sandboxed environment to process data and achieve significant token savings by offloading computation from LLM context.

Instructions

Execute code in sandboxed environment. Supports Python, Bash, Node.js. Now with heredoc support for bash scripts (<<EOF, <<'EOF', <<EOT). Achieves 98%+ token savings by processing in execution environment.

Input Schema

TableJSON Schema
NameRequiredDescriptionDefault
codeYesCode to execute. Supports heredocs for bash/sh: <<EOF, <<'EOF'.
languageNoProgramming languagebash
timeoutNoExecution timeout in seconds
response_formatNosummary

Implementation Reference

  • src/index.ts:473-607 (handler)
    The main handler for execute_code tool. Creates a temp directory, writes code to a file, executes it with the appropriate interpreter (python3, bash, sh, or node), handles heredoc parsing for bash/sh scripts, manages timeouts, and returns results with token metrics. Cleans up temp files on completion.
    private async executeCode(args: {
  code: string;
  language?: string;
  timeout?: number;
  response_format?: string;
}): Promise<{ content: any[] }> {
  const startTime = Date.now();
  const language = args.language || 'bash';
  const timeout = args.timeout || 30;
  const responseFormat = args.response_format || 'summary';

  // Language configuration
  const languageConfig: Record<string, { cmd: string; ext: string }> = {
    python: { cmd: 'python3', ext: '.py' },
    bash: { cmd: 'bash', ext: '.sh' },
    sh: { cmd: 'sh', ext: '.sh' },
    node: { cmd: 'node', ext: '.js' },
    javascript: { cmd: 'node', ext: '.js' },
  };

  if (!languageConfig[language]) {
    return {
      content: [{
        type: 'text',
        text: JSON.stringify({
          success: false,
          error: `Unsupported language: ${language}. Supported: ${Object.keys(languageConfig).join(', ')}`
        }, null, 2)
      }]
    };
  }

  let tmpDir: string | null = null;
  try {
    const config = languageConfig[language];
    // Use /var/tmp for srt sandbox compatibility
    tmpDir = await fs.mkdtemp(path.join('/var/tmp', 'mcp-exec-'));
    const tmpFile = path.join(tmpDir, `code${config.ext}`);

    // Check for heredocs and extract them
    let codeToWrite = args.code;
    let heredocFiles: string[] = [];

    if (language === 'bash' || language === 'sh') {
      const heredocs = this.parseHeredocs(args.code);

      if (heredocs.length > 0) {
        // Write each heredoc content to a temp file
        for (const heredoc of heredocs) {
          const heredocFileName = path.join(tmpDir, `heredoc_${heredoc.delimiter}_${heredocs.indexOf(heredoc)}.txt`);
          await fs.writeFile(heredocFileName, heredoc.content + '\n', 'utf-8');
          heredocFiles.push(heredocFileName);
        }

        // Replace heredocs with file redirections using actual tmpDir paths
        codeToWrite = this.replaceHeredocs(args.code, heredocs, tmpDir);
      }
    }

    // Write code to temp file
    await fs.writeFile(tmpFile, codeToWrite, 'utf-8');

    // Execute with timeout, setting TMPDIR so tsx/node can create IPC pipes in our temp dir
    const { stdout, stderr } = await execAsync(`${config.cmd} ${tmpFile}`, {
      timeout: timeout * 1000,
      maxBuffer: 10 * 1024 * 1024, // 10MB
      env: {
        ...process.env,
        TMPDIR: tmpDir,    // Direct tsx IPC to our writable temp dir
        TMP: tmpDir,
        TEMP: tmpDir,
        NODE_TMPDIR: tmpDir
      }
    });

    const result: any = {
      success: true,
      language,
      output: stdout.trim(),
      exit_code: 0
    };

    // Track heredoc usage
    if (heredocFiles.length > 0) {
      result.heredocs_processed = heredocFiles.length;
      result.heredoc_support = 'enabled';
    }

    const processingTime = Date.now() - startTime;

    if (responseFormat === 'summary') {
      // Truncate long output
      if (result.output.length > 500) {
        result.output = result.output.substring(0, 500) + `\n... (${result.output.length - 500} more chars)`;
        result.truncated = true;
      }
    }

    // Wrap with metrics
    return {
      content: [{
        type: 'text',
        text: JSON.stringify(
          this.wrapWithMetrics(result, args.code.length, processingTime),
          null, 2
        )
      }]
    };

  } catch (error: any) {
    const errorResult: any = {
      success: false,
      language,
      error: error.message || 'Execution failed'
    };

    if (error.stdout) errorResult.stdout = error.stdout.substring(0, 200);
    if (error.stderr) errorResult.stderr = error.stderr.substring(0, 200);
    if (error.code === 'ETIMEDOUT') {
      errorResult.error = `Execution timed out after ${timeout}s`;
    }

    return {
      content: [{
        type: 'text',
        text: JSON.stringify(errorResult, null, 2)
      }]
    };
  } finally {
    // Clean up temp directory
    if (tmpDir) {
      await fs.rm(tmpDir, { recursive: true, force: true }).catch(() => {});
    }
  }
}
  • src/index.ts:609-626 (registration)
    Tool registration defining the execute_code tool with its name, title, description, and JSON Schema input schema. Supports code execution in Python, Bash, Sh, Node.js, and JavaScript with configurable timeout and response format.
    private getToolDefinitions(): Tool[] {
  return [
    {
      name: 'execute_code',
      title: 'Execute Code in Sandbox',
      description: 'Execute code in sandboxed environment. Supports Python, Bash, Node.js. Now with heredoc support for bash scripts (<<EOF, <<\'EOF\', <<EOT). Achieves 98%+ token savings by processing in execution environment.',
      inputSchema: {
        type: 'object',
        properties: {
          code: { type: 'string', description: 'Code to execute. Supports heredocs for bash/sh: <<EOF, <<\'EOF\'.', minLength: 1, maxLength: 50000 },
          language: { type: 'string', enum: ['python', 'bash', 'sh', 'node', 'javascript'], default: 'bash', description: 'Programming language' },
          timeout: { type: 'number', default: 30, description: 'Execution timeout in seconds', minimum: 1, maximum: 300 },
          response_format: { type: 'string', enum: ['summary', 'json', 'markdown'], default: 'summary' },
        },
        required: ['code'],
        $schema: 'https://json-schema.org/draft/2020-12/schema',
      },
    },
  • src/index.ts:87-94 (handler)
    Request handler setup that dispatches incoming tool calls. The switch statement routes 'execute_code' requests to the executeCode method.
    this.server.setRequestHandler(CallToolRequestSchema, async (request) => {
  const { name, arguments: args } = request.params;

  try {
    switch (name) {
      case 'execute_code':
        return await this.executeCode(args as any);
      case 'process_csv':
  • src/index.ts:39-45 (schema)
    Type definition for heredoc parsing results, used by the execute_code handler to process heredoc syntax in bash/sh scripts.
    interface HeredocMatch {
  delimiter: string;
  content: string;
  startIndex: number;
  endIndex: number;
  quoted: boolean; // true for <<'EOF', false for <<EOF
}
  • src/index.ts:391-470 (helper)
    Helper methods for heredoc processing: parseHeredocs extracts heredoc blocks from bash/sh code, and replaceHeredocs transforms them into file redirections for safe execution in the sandbox.
    private parseHeredocs(code: string): HeredocMatch[] {
  const heredocs: HeredocMatch[] = [];

  // Heredoc patterns:
  // 1. <<'DELIM' (quoted, no variable expansion)
  // 2. <<"DELIM" (double quoted, variable expansion)
  // 3. <<DELIM (unquoted, variable expansion)
  const heredocRegex = /<<(\s*)('?|"?)([A-Za-z_][A-Za-z0-9_]*)\2/g;

  let match: RegExpExecArray | null;
  const matches: Array<{ fullMatch: string; quote: string; delimiter: string; index: number }> = [];

  // Find all heredoc start markers
  while ((match = heredocRegex.exec(code)) !== null) {
    matches.push({
      fullMatch: match[0],
      quote: match[2], // '', ", or empty
      delimiter: match[3],
      index: match.index
    });
  }

  // Extract each heredoc content
  for (const m of matches) {
    const startIndex = m.index + m.fullMatch.length;
    const delimiterPattern = new RegExp(`^${m.delimiter}\\s*$`, 'm');

    // Find the closing delimiter
    const afterStart = code.slice(startIndex);
    const endMatch = delimiterPattern.exec(afterStart);

    if (endMatch) {
      const endIndex = startIndex + endMatch.index;
      const content = afterStart.slice(0, endMatch.index);

      heredocs.push({
        delimiter: m.delimiter,
        content: content,
        startIndex: m.index,
        endIndex: endIndex + m.delimiter.length,
        quoted: m.quote === "'" // <<'EOF' means quoted
      });
    }
  }

  return heredocs;
}

/**
 * Replace heredocs in code with file redirections
 */
private replaceHeredocs(code: string, heredocs: HeredocMatch[], tmpDir: string): string {
  let transformedCode = code;
  const replacements: Array<{ original: string; replacement: string; index: number }> = [];

  for (const heredoc of heredocs) {
    // startIndex points to where <<'DELIM' begins, endIndex points to content end (before closing delimiter)
    // We need to include the closing delimiter and its newline
    const fullHeredocEnd = heredoc.endIndex + heredoc.delimiter.length + 1;
    const originalHeredoc = code.slice(heredoc.startIndex, fullHeredocEnd);
    const tempFileName = path.join(tmpDir, `heredoc_${heredoc.delimiter}_${heredocs.indexOf(heredoc)}.txt`);

    // Replace entire heredoc (from <<'DELIM' to closing DELIM) with file redirection
    replacements.push({
      original: originalHeredoc,
      replacement: `< "${tempFileName}"`,
      index: heredoc.startIndex
    });
  }

  // Apply replacements (reverse order to maintain positions)
  let offset = 0;
  for (const rep of [...replacements].reverse()) {
    const before = transformedCode.slice(0, rep.index + offset);
    const after = transformedCode.slice(rep.index + offset + rep.original.length);
    transformedCode = before + rep.replacement + after;
    offset += rep.replacement.length - rep.original.length;
  }

  return transformedCode;

Tool Definition Quality

B3.3/5.0
Behavior2/5

Does the description disclose side effects, auth requirements, rate limits, or destructive behavior?

With no annotations provided, the description carries full burden for behavioral disclosure. It mentions 'sandboxed environment' (safety context) and '98%+ token savings' (performance trait), but lacks critical details like authentication needs, rate limits, error handling, or what 'sandboxed' entails (e.g., isolation level, resource constraints). For a mutation tool (code execution) with zero annotation coverage, this is insufficient.

Agents need to know what a tool does to the world before calling it. Descriptions should go beyond structured annotations to explain consequences.

Conciseness4/5

Is the description appropriately sized, front-loaded, and free of redundancy?

The description is appropriately sized with three sentences, front-loaded with core functionality. The second sentence adds useful language support, and the third provides performance context, but the token savings claim could be trimmed as it doesn't directly aid tool selection. Overall efficient with minimal waste.

Shorter descriptions cost fewer tokens and are easier for agents to parse. Every sentence should earn its place.

Completeness2/5

Given the tool's complexity, does the description cover enough for an agent to succeed on first attempt?

For a code execution tool with 4 parameters, no annotations, and no output schema, the description is incomplete. It lacks details on return values (e.g., stdout/stderr format), error cases, security implications of sandboxing, and prerequisites. The 98% token savings note is tangential rather than essential for tool understanding, leaving gaps in operational context.

Complex tools with many parameters or behaviors need more documentation. Simple tools need less. This dimension scales expectations accordingly.

Parameters3/5

Does the description clarify parameter syntax, constraints, interactions, or defaults beyond what the schema provides?

Schema description coverage is 75%, providing good baseline documentation for parameters. The description adds value by explicitly listing supported languages (Python, Bash, Node.js) and detailing heredoc syntax for bash, which clarifies the 'code' parameter beyond the schema's generic description. However, it doesn't explain other parameters like 'timeout' or 'response_format' beyond what the schema already covers.

Input schemas describe structure but not intent. Descriptions should explain non-obvious parameter relationships and valid value ranges.

Purpose5/5

Does the description clearly state what the tool does and how it differs from similar tools?

The description clearly states the specific action ('Execute code') and resource ('in sandboxed environment'), with explicit mention of supported languages (Python, Bash, Node.js). It distinguishes from sibling tools like batch_process_csv or process_logs by focusing on code execution rather than data processing.

Agents choose between tools based on descriptions. A clear purpose with a specific verb and resource helps agents select the right tool.

Usage Guidelines3/5

Does the description explain when to use this tool, when not to, or what alternatives exist?

The description implies usage for executing code in supported languages, but provides no explicit guidance on when to use this tool versus alternatives like batch_process_csv for data tasks. It mentions heredoc support for bash, which hints at usage for multi-line scripts, but lacks clear when/when-not scenarios or named alternatives.

Agents often have multiple tools that could apply. Explicit usage guidance like "use X instead of Y when Z" prevents misuse.

Install Server

Other Tools

Latest Blog Posts

MCP directory API

We provide all the information about MCP servers via our MCP API.

curl -X GET 'https://glama.ai/api/mcp/v1/servers/ingpoc/token-efficient-mcp'

If you have feedback or need assistance with the MCP directory API, please join our Discord server