feat(mcp/server): improve MCP server logging and suppress output during tool execution

[vitali87]

Refactor setup_logging() to write logs to a rotating file instead of stderr, with opt-in via MCP_ENABLE_LOGGING env var. Suppress stdout/stderr and loguru output during tool handler execution to prevent corrupting STDIO transport and wasting LLM context tokens.

Dependency graph

Merge in this order:

pr-1: chore: update .gitignore with popular vibe-coding agent directories
pr-2: fix(llm): add retries to RAG orchestrator to handle output validation issues
├── pr-4: feat(mcp/tools): add shell_command, document_analyzer, semantic_search, and ask_agent tools to MCP registry
│   └── pr-5: feat(mcp/client): add MCP client CLI for querying the code graph via MCP server
│       └── pr-7: docs: update README with non-interactive mode, new MCP tools, and agent tool list
└── pr-6: feat(main): add non-interactive --ask-agent mode to the CLI
    └── pr-7: docs: update README with non-interactive mode, new MCP tools, and agent tool list
pr-3: feat(mcp/server): improve MCP server logging and suppress output during tool execution  <-- this PR
└── pr-4: feat(mcp/tools): add shell_command, document_analyzer, semantic_search, and ask_agent tools to MCP registry
    └── pr-5: feat(mcp/client): add MCP client CLI for querying the code graph via MCP server
        └── pr-7: docs: update README with non-interactive mode, new MCP tools, and agent tool list

[gemini-code-assist]

Summary of Changes

Hello, I'm Gemini Code Assist¹! I'm currently reviewing this pull request and will post my feedback shortly. In the meantime, here's a summary to help you and other reviewers quickly get up to speed!

This pull request significantly enhances the MCP server's logging and output management. It transitions the logging system from direct stderr output to a more controlled, file-based, and opt-in approach, which is crucial for debugging without impacting the primary communication channel. Furthermore, it introduces robust suppression of all output during tool execution, ensuring clean STDIO transport and optimizing LLM token consumption by preventing extraneous information from being sent.

Highlights

• Logging Refactor: The setup_logging function was refactored to write logs to a rotating file instead of stderr, improving log management and preventing interference with STDIO transport.
• Opt-in Logging: Logging is now opt-in, controlled by the MCP_ENABLE_LOGGING environment variable, to avoid wasting LLM context tokens by default.
• Configurable Log File Path: The log file path can be configured via the MCP_LOG_FILE environment variable, with a default location in ~/.cache/code-graph-rag/mcp.log.
• Tool Execution Output Suppression: All stdout, stderr, and loguru output are now suppressed during tool handler execution to prevent corrupting STDIO transport and reduce LLM context token usage.
• Generic Error Handling: Error messages during tool execution are now generic to avoid leaking sensitive information or internal details to the LLM.

Changelog

• codebase_rag/mcp/server.py
  • Removed unused sys import.
  • Refactored setup_logging to implement file-based logging with rotation and retention, controlled by environment variables.
  • Added redirect_stdout and redirect_stderr context managers to call_tool to suppress all output during tool execution.
  • Modified tool execution error handling to return a generic error message instead of detailed exceptions.

Using Gemini Code Assist

The full guide for Gemini Code Assist can be found on our documentation page, here are some quick tips.

Invoking Gemini

You can request assistance from Gemini at any point by creating a comment using either /gemini <command> or @gemini-code-assist <command>. Below is a summary of the supported commands on the current page.

Feature	Command	Description
Code Review	/gemini review	Performs a code review for the current pull request in its current state.
Pull Request Summary	/gemini summary	Provides a summary of the current pull request in its current state.
Comment	@gemini-code-assist	Responds in comments when explicitly tagged, both in pull request comments and review comments.
Help	/gemini help	Displays a list of available commands.

Customization

To customize Gemini Code Assist for GitHub experience, repository maintainers can create a configuration file and/or provide a custom code review style guide (such as PEP-8 for Python) by creating and adding files to a .gemini/ folder in the base of the repository. Detailed instructions can be found here.

Limitations & Feedback

Gemini Code Assist may make mistakes. Please leave feedback on any instances where its feedback is incorrect or counter productive. You can react with 👍 and 👎 on @gemini-code-assist comments. If you're interested in giving your feedback about your experience with Gemini Code Assist for Github and other Google products, sign up here.

You can also get AI-powered code generation, chat, as well as code reviews directly in the IDE at no cost with the Gemini Code Assist IDE Extension.

Footnotes

1. Review the Privacy Notices, Generative AI Prohibited Use Policy, Terms of Service, and learn how to configure Gemini Code Assist in GitHub here. Gemini can make mistakes, so double check it and use code with caution. ↩

[gemini-code-assist]

Code Review

This pull request refactors the MCP server's logging to be file-based and optional, and suppresses stdout/stderr during tool execution, which are good improvements for an LLM agent environment. However, the current implementation uses global state redirection (redirect_stdout and logger.disable) in an asynchronous context, creating a race condition that can corrupt the server's communication channel during concurrent tool executions, leading to a denial of service. Additionally, the implementation introduces critical error handling issues where exceptions are caught and silenced without being logged, making debugging difficult. There are also opportunities to simplify logging configuration logic and address a violation of a project rule regarding docstrings.

[gemini-code-assist]

Catching all exceptions and failing silently without logging is a dangerous pattern that can hide critical bugs and make debugging extremely difficult. While the goal is to prevent error details from reaching the LLM, they absolutely should be logged to the configured file (if logging is enabled). Using logger.exception() will handle this correctly, as it will only log if the logger is enabled and will include valuable traceback information.

        except Exception:
            # Log the exception if logging is enabled, but return a generic error to the client.
            logger.exception(f"[GraphCode MCP] Error executing tool '{name}'")
            return [
                TextContent(
                    type="text", text="Error: There was an error executing the tool"
                )
            ]

[gemini-code-assist]

While returning a generic error message to the LLM is reasonable to save tokens, removing the log for an unknown tool makes debugging difficult. Please log this error. The log will be correctly routed to a file or disabled based on the setup_logging configuration.

                logger.error(f"[GraphCode MCP] Unknown tool: {name}")
                return [TextContent(type="text", text="Error: Unknown tool")]

[gemini-code-assist]

The use of contextlib.redirect_stdout and logger.disable within an asynchronous function creates a race condition that can lead to a Denial of Service (DoS). In Python, sys.stdout and the loguru logger's enabled/disabled state are global. Since call_tool is an async function, multiple tool calls can execute concurrently. If one tool call redirects stdout or disables logging, it affects all other concurrent tasks, including the MCP server's own transport mechanism which relies on stdout for JSON-RPC communication. This can result in the corruption of the transport protocol, causing the server to crash or become unresponsive when multiple tools are invoked simultaneously.

[gemini-code-assist]

According to the project's general rules, docstrings are not allowed. Please convert this docstring into a regular block comment to adhere to the project's standards.

# Configure logging for MCP stdio transport.
#
# By default, logging is disabled to prevent token waste in LLM context.
# Can be enabled via environment variable MCP_ENABLE_LOGGING=1 for debugging.
#
# When enabled, logs are written to a file to avoid polluting STDIO transport.
# The log file path can be configured via MCP_LOG_FILE environment variable.
#
# Args:
#     enable_logging: Whether to enable logging output. Defaults to False.
#                    Can also be controlled via MCP_ENABLE_LOGGING environment variable.

References

1. Docstrings are not allowed in this project, as enforced by a pre-commit hook.

[gemini-code-assist]

The logic for determining the log file path and creating its parent directory can be simplified to avoid redundant mkdir calls and improve clarity. You can determine the Path object for the log file first, and then call mkdir once on its parent directory.

        log_file_path_str = os.environ.get("MCP_LOG_FILE")
        if log_file_path_str:
            log_file = Path(log_file_path_str)
        else:
            # Use ~/.cache/code-graph-rag/mcp.log as default
            cache_dir = Path.home() / ".cache" / "code-graph-rag"
            log_file = cache_dir / "mcp.log"

        # Ensure log file directory exists
        log_file.parent.mkdir(parents=True, exist_ok=True)

[greptile-apps]

Greptile Summary

Refactors MCP server logging to write to a rotating file instead of stderr, with opt-in via MCP_ENABLE_LOGGING environment variable. Suppresses stdout/stderr during tool execution to prevent corrupting STDIO transport and reduce LLM context token usage.

Critical Issue:

• logger.enable("codebase_rag") in the finally block (line 215) re-enables logging globally after the first tool call, even when logging was disabled by default in setup_logging(). This defeats the purpose of the opt-in logging feature.

Style Violations (per rule d4240b05-b763-467a-a6bf-94f73e8b6859):

• Extensive hardcoded strings (env var names, paths, error messages) should be moved to constants.py and tool_errors.py
• Imports placed inside function instead of module top
• Inline comments without (H) marker violate comment policy
• Redundant directory creation in default path case

Confidence Score: 2/5

• This PR has a critical logic bug that breaks the disabled-by-default logging feature
• Score reflects critical bug where logger.enable() re-enables logging globally after first tool call, plus multiple coding standard violations (hardcoded strings, inline comments, imports in function). The logic bug will cause logging to be enabled even when MCP_ENABLE_LOGGING is not set, wasting tokens and potentially corrupting STDIO transport.
• Pay close attention to codebase_rag/mcp/server.py - contains critical logger enable/disable bug and multiple style violations

Important Files Changed

Filename	Overview
codebase_rag/mcp/server.py	Refactored logging to use file-based output with opt-in via env var. Critical bug: logger.enable() at line 215 re-enables logging globally after first tool call, defeating disabled-by-default behavior. Multiple style violations: hardcoded strings, imports inside function, inline comments without (H), redundant directory creation.

_{Last reviewed commit: 1183bb1}

[greptile-apps]

_{1 file reviewed, 6 comments}

_{Edit Code Review Agent Settings | Greptile}

[greptile-apps]

logger.enable() in finally re-enables logging globally, even when setup_logging() disabled it. After first tool call, all logs will appear despite MCP_ENABLE_LOGGING not being set.

Check if logging was enabled before disabling, and only restore previous state:

# Track if logging was enabled
logging_was_enabled = not logger._core.enabled.get("codebase_rag", False)
if logging_was_enabled:
    logger.disable("codebase_rag")
try:
    result = await handler(**arguments)
    # ...
finally:
    if logging_was_enabled:
        logger.enable("codebase_rag")

Prompt To Fix With AI

This is a comment left during a code review.
Path: codebase_rag/mcp/server.py
Line: 202-215

Comment:
`logger.enable()` in finally re-enables logging globally, even when `setup_logging()` disabled it. After first tool call, all logs will appear despite `MCP_ENABLE_LOGGING` not being set.

Check if logging was enabled before disabling, and only restore previous state:

```python
# Track if logging was enabled
logging_was_enabled = not logger._core.enabled.get("codebase_rag", False)
if logging_was_enabled:
    logger.disable("codebase_rag")
try:
    result = await handler(**arguments)
    # ...
finally:
    if logging_was_enabled:
        logger.enable("codebase_rag")
```

How can I resolve this? If you propose a fix, please make it concise.

[greptile-apps]

Directory created twice in default path case - cache_dir.mkdir() at 51, then log_path.parent.mkdir() at 56 creates same directory.

Suggested change

	cache_dir = Path.home() / ".cache" / "code-graph-rag"
	cache_dir.mkdir(parents=True, exist_ok=True)
	log_file = str(cache_dir / "mcp.log")
	# Ensure log file directory exists
	log_path = Path(log_file)
	log_path.parent.mkdir(parents=True, exist_ok=True)
	log_file = os.environ.get("MCP_LOG_FILE")
	if not log_file:
	# Use ~/.cache/code-graph-rag/mcp.log as default
	cache_dir = Path.home() / ".cache" / "code-graph-rag"
	log_file = str(cache_dir / "mcp.log")
	# Ensure log file directory exists (handles both env and default cases)
	Path(log_file).parent.mkdir(parents=True, exist_ok=True)

Prompt To Fix With AI

This is a comment left during a code review.
Path: codebase_rag/mcp/server.py
Line: 50-56

Comment:
Directory created twice in default path case - `cache_dir.mkdir()` at 51, then `log_path.parent.mkdir()` at 56 creates same directory.

```suggestion
        log_file = os.environ.get("MCP_LOG_FILE")
        if not log_file:
            # Use ~/.cache/code-graph-rag/mcp.log as default
            cache_dir = Path.home() / ".cache" / "code-graph-rag"
            log_file = str(cache_dir / "mcp.log")

        # Ensure log file directory exists (handles both env and default cases)
        Path(log_file).parent.mkdir(parents=True, exist_ok=True)
```

How can I resolve this? If you propose a fix, please make it concise.

[greptile-apps]

Hardcoded strings violate coding standards. Per rule d4240b05, non-config/constants/logs files should have almost no string literals. Move to codebase_rag/mcp/constants.py:

# constants.py
from enum import StrEnum

ENV_MCP_ENABLE_LOGGING = "MCP_ENABLE_LOGGING"
ENV_MCP_LOG_FILE = "MCP_LOG_FILE"
ENABLE_VALUES = ("1", "true", "yes")
DEFAULT_CACHE_DIR = ".cache"
DEFAULT_PROJECT_NAME = "code-graph-rag"
DEFAULT_LOG_FILE = "mcp.log"
LOG_FORMAT = "{time:YYYY-MM-DD HH:mm:ss} | {level: <8} | {message}"
LOG_ROTATION = "10 MB"
LOG_RETENTION = "7 days"
LOGGER_NAME = "codebase_rag"

Prompt To Fix With AI

This is a comment left during a code review.
Path: codebase_rag/mcp/server.py
Line: 38-69

Comment:
Hardcoded strings violate coding standards. Per rule d4240b05, non-config/constants/logs files should have almost no string literals. Move to `codebase_rag/mcp/constants.py`:

```python
# constants.py
from enum import StrEnum

ENV_MCP_ENABLE_LOGGING = "MCP_ENABLE_LOGGING"
ENV_MCP_LOG_FILE = "MCP_LOG_FILE"
ENABLE_VALUES = ("1", "true", "yes")
DEFAULT_CACHE_DIR = ".cache"
DEFAULT_PROJECT_NAME = "code-graph-rag"
DEFAULT_LOG_FILE = "mcp.log"
LOG_FORMAT = "{time:YYYY-MM-DD HH:mm:ss} | {level: <8} | {message}"
LOG_ROTATION = "10 MB"
LOG_RETENTION = "7 days"
LOGGER_NAME = "codebase_rag"
```

How can I resolve this? If you propose a fix, please make it concise.

_{Note: If this suggestion doesn't match your team's coding style, reply to this and let me know. I'll remember it for next time!}

[greptile-apps]

Imports inside function. Move to module top per Python conventions and project code organization standards.

Prompt To Fix With AI

This is a comment left during a code review.
Path: codebase_rag/mcp/server.py
Line: 188-189

Comment:
Imports inside function. Move to module top per Python conventions and project code organization standards.

How can I resolve this? If you propose a fix, please make it concise.

_{Note: If this suggestion doesn't match your team's coding style, reply to this and let me know. I'll remember it for next time!}

[greptile-apps]

Inline comments without (H) marker violate comment policy. Either prefix with (H) or remove (parameters are self-documenting).

Prompt To Fix With AI

This is a comment left during a code review.
Path: codebase_rag/mcp/server.py
Line: 63-65

Comment:
Inline comments without `(H)` marker violate comment policy. Either prefix with `(H)` or remove (parameters are self-documenting).

How can I resolve this? If you propose a fix, please make it concise.

_{Note: If this suggestion doesn't match your team's coding style, reply to this and let me know. I'll remember it for next time!}

[greptile-apps]

Error messages are hardcoded strings. Move to tool_errors.py per coding standards:

# tool_errors.py  
from enum import Enum

class ToolError(str, Enum):
    UNKNOWN_TOOL = "Unknown tool"
    EXECUTION_FAILED = "There was an error executing the tool"
    
    def __call__(self, **kwargs) -> str:
        return self.value.format(**kwargs) if kwargs else self.value

Prompt To Fix With AI

This is a comment left during a code review.
Path: codebase_rag/mcp/server.py
Line: 195-221

Comment:
Error messages are hardcoded strings. Move to `tool_errors.py` per coding standards:

```python
# tool_errors.py  
from enum import Enum

class ToolError(str, Enum):
    UNKNOWN_TOOL = "Unknown tool"
    EXECUTION_FAILED = "There was an error executing the tool"
    
    def __call__(self, **kwargs) -> str:
        return self.value.format(**kwargs) if kwargs else self.value
```

How can I resolve this? If you propose a fix, please make it concise.

_{Note: If this suggestion doesn't match your team's coding style, reply to this and let me know. I'll remember it for next time!}