feat(mcp/client): add MCP client CLI for querying the code graph via MCP server

[vitali87]

New module codebase_rag/mcp/client.py that spawns the MCP server as a subprocess and calls the ask_agent tool, printing only clean output to stdout. Useful for scripting and CI pipelines.

Dependency graph

Merge in this order:

pr-1: chore: update .gitignore with popular vibe-coding agent directories
pr-2: fix(llm): add retries to RAG orchestrator to handle output validation issues
├── pr-4: feat(mcp/tools): add shell_command, document_analyzer, semantic_search, and ask_agent tools to MCP registry
│   └── pr-5: feat(mcp/client): add MCP client CLI for querying the code graph via MCP server  <-- this PR
│       └── pr-7: docs: update README with non-interactive mode, new MCP tools, and agent tool list
└── pr-6: feat(main): add non-interactive --ask-agent mode to the CLI
    └── pr-7: docs: update README with non-interactive mode, new MCP tools, and agent tool list
pr-3: feat(mcp/server): improve MCP server logging and suppress output during tool execution
└── pr-4: feat(mcp/tools): add shell_command, document_analyzer, semantic_search, and ask_agent tools to MCP registry
    └── pr-5: feat(mcp/client): add MCP client CLI for querying the code graph via MCP server  <-- this PR
        └── pr-7: docs: update README with non-interactive mode, new MCP tools, and agent tool list

[gemini-code-assist]

Summary of Changes

Hello, I'm Gemini Code Assist¹! I'm currently reviewing this pull request and will post my feedback shortly. In the meantime, here's a summary to help you and other reviewers quickly get up to speed!

This pull request introduces a new command-line interface (CLI) client for the MCP (Microservice Codebase Processor) server. This client enables programmatic interaction with the code graph by launching the MCP server as a subprocess and executing the ask_agent tool. The design prioritizes providing clean, scriptable output, which is particularly beneficial for integrating code graph queries into automated workflows and continuous integration pipelines.

Highlights

• New CLI Client: A new Python module, codebase_rag/mcp/client.py, has been introduced to provide a command-line interface for interacting with the MCP server.
• MCP Server Integration: The client is designed to spawn the MCP server as a subprocess, managing its lifecycle and communication.
• Ask Agent Tool Execution: It specifically calls the ask_agent tool on the MCP server, allowing users to query the code graph with natural language questions.
• Scripting and CI Support: The client processes the server's response and prints only clean output to stdout, making it highly suitable for scripting and integration into CI/CD pipelines.

Changelog

• codebase_rag/mcp/client.py
  • Added a new module to provide a CLI client for the MCP server.
  • Implemented functionality to spawn the MCP server as a subprocess, redirecting its stderr to /dev/null to suppress logs.
  • Included logic to call the ask_agent tool and parse its JSON or text output.
  • Ensured clean output to stdout for scripting purposes, printing only the relevant response.
  • Added error handling to catch exceptions during server communication and JSON parsing, printing errors to stderr and exiting with a non-zero status code.

Using Gemini Code Assist

The full guide for Gemini Code Assist can be found on our documentation page, here are some quick tips.

Invoking Gemini

You can request assistance from Gemini at any point by creating a comment using either /gemini <command> or @gemini-code-assist <command>. Below is a summary of the supported commands on the current page.

Feature	Command	Description
Code Review	/gemini review	Performs a code review for the current pull request in its current state.
Pull Request Summary	/gemini summary	Provides a summary of the current pull request in its current state.
Comment	@gemini-code-assist	Responds in comments when explicitly tagged, both in pull request comments and review comments.
Help	/gemini help	Displays a list of available commands.

Customization

To customize Gemini Code Assist for GitHub experience, repository maintainers can create a configuration file and/or provide a custom code review style guide (such as PEP-8 for Python) by creating and adding files to a .gemini/ folder in the base of the repository. Detailed instructions can be found here.

Limitations & Feedback

Gemini Code Assist may make mistakes. Please leave feedback on any instances where its feedback is incorrect or counter productive. You can react with 👍 and 👎 on @gemini-code-assist comments. If you're interested in giving your feedback about your experience with Gemini Code Assist for Github and other Google products, sign up here.

You can also get AI-powered code generation, chat, as well as code reviews directly in the IDE at no cost with the Gemini Code Assist IDE Extension.

Footnotes

1. Review the Privacy Notices, Generative AI Prohibited Use Policy, Terms of Service, and learn how to configure Gemini Code Assist in GitHub here. Gemini can make mistakes, so double check it and use code with caution. ↩

[gemini-code-assist]

Code Review

This pull request introduces a new CLI client for the MCP server, which is a useful addition for scripting and CI. However, a critical security vulnerability has been identified: the client passes untrusted natural language input directly to a powerful LLM agent with access to sensitive tools like shell command execution and file modification. This creates a high risk of prompt injection, especially when input is derived from untrusted sources in scripting and CI environments. It is crucial to implement confirmation prompts for sensitive operations and restrict tool access in non-interactive environments, aligning with the project's emphasis on fail-safe security for LLM agent interactions. Additionally, the implementation includes docstrings, which are disallowed by project coding standards, and the subprocess invocation could be made more robust by using sys.executable instead of a hardcoded python command.

[gemini-code-assist]

The main function in codebase_rag/mcp/client.py accepts a natural language question via a CLI option and passes it directly to the ask_agent tool on the MCP server. According to the project's architecture (seen in codebase_rag/main.py), the agent has access to highly sensitive tools, including shell_command_tool, file_writer_tool, and file_editor_tool.

The PR description explicitly states that this client is "Useful for scripting and CI pipelines." In such environments, the question input may be derived from untrusted sources, such as Pull Request titles, commit messages, or issue descriptions. An attacker could use prompt injection techniques to manipulate the LLM agent into executing arbitrary shell commands or making unauthorized modifications to the codebase.

Furthermore, unlike the primary CLI implementation in codebase_rag/main.py, this MCP client lacks any confirmation prompts or safety checks (e.g., the confirm_edits_globally logic) before executing potentially destructive operations.

References

1. For security-sensitive features like shell command execution by an LLM agent, prioritize fail-safe behavior. Prefer false positives (blocking a safe command) over false negatives (allowing a dangerous one), especially if the fix for the false positive adds complexity.

[gemini-code-assist]

This line passes the untrusted question directly to the ask_agent tool. If the agent is configured with sensitive tools (like shell access), this represents a significant security risk through prompt injection, especially in non-interactive environments like CI/CD.

References

1. For security-sensitive features like shell command execution by an LLM agent, prioritize fail-safe behavior. Prefer false positives (blocking a safe command) over false negatives (allowing a dangerous one), especially if the fix for the false positive adds complexity.

[gemini-code-assist]

According to the project's general rules, docstrings are not allowed. Please remove this module docstring.

References

1. Docstrings are not allowed in this project, as enforced by a pre-commit hook.

[gemini-code-assist]

According to the project's general rules, docstrings are not allowed. Please remove this function docstring. You can convert it to a regular comment if you wish to keep the explanation.

References

1. Docstrings are not allowed in this project, as enforced by a pre-commit hook.

[gemini-code-assist]

Hardcoding command="python" can lead to issues if the user's environment has multiple Python versions or is not on the system's PATH. It's more robust to use sys.executable to ensure the MCP server subprocess runs with the same Python interpreter as the client script.

Suggested change

	command="python",
	command=sys.executable,

[gemini-code-assist]

According to the project's general rules, docstrings are not allowed. Please remove this function docstring. The example can be moved to a regular comment if you wish to keep it.

References

1. Docstrings are not allowed in this project, as enforced by a pre-commit hook.

[codecov-commenter]

⚠️ Please install the to ensure uploads and comments are reliably processed by Codecov.

Codecov Report

❌ Patch coverage is 0% with 38 lines in your changes missing coverage. Please review.

Files with missing lines	Patch %	Lines
codebase_rag/mcp/client.py	0.00%	38 Missing ⚠️

📢 Thoughts on this report? Let us know!

[greptile-apps]

Greptile Summary

This PR adds a new MCP client CLI module (codebase_rag/mcp/client.py) that spawns the MCP server as a subprocess and queries it via the ask_agent tool, enabling non-interactive scripting and CI pipeline usage.

Key Changes:

• New async function query_mcp_server() that spawns MCP server subprocess and communicates via stdio
• CLI command with --ask-agent flag for querying the code graph
• Clean stdout output for scripting (JSON or text response)

Issues Found:

• Type safety violations: Uses dict[str, Any] and Any type instead of TypedDict
• Comment policy violations: Contains docstrings and inline comments without (H) prefix
• Missing constants: Hardcoded strings should be moved to constants file
• Potential IndexError: No length check before accessing result.content[0]
• Broad exception handling: Catches bare Exception instead of specific types
• Inconsistent logging: Uses print() for errors instead of loguru

Confidence Score: 2/5

• This PR has multiple code quality and type safety issues that should be addressed before merging
• Score reflects type safety violations (dict[str, Any], Any usage), potential runtime error (IndexError on empty content), extensive comment policy violations, and missing constants file. While the core functionality is straightforward, these issues violate project standards and could cause runtime failures.
• codebase_rag/mcp/client.py requires refactoring to address type safety, add proper error handling, and remove policy-violating comments

Important Files Changed

Filename	Overview
codebase_rag/mcp/client.py	New MCP client CLI with type safety violations, missing constants file, policy-violating docstrings/comments, and potential IndexError

Sequence Diagram

sequenceDiagram
    participant User
    participant CLI as MCP Client CLI
    participant Server as MCP Server<br/>(subprocess)
    participant Tool as ask_agent Tool

    User->>CLI: --ask-agent "question"
    CLI->>Server: spawn subprocess<br/>(python -m codebase_rag.main mcp-server)
    CLI->>Server: stdio_client connection
    CLI->>Server: session.initialize()
    Server-->>CLI: initialized
    CLI->>Server: call_tool("ask_agent", {"question": "..."})
    Server->>Tool: execute ask_agent
    Tool-->>Server: result
    Server-->>CLI: TextContent response
    CLI->>CLI: parse JSON response
    CLI->>User: print output to stdout

Loading

_{Last reviewed commit: 453f399}

[greptile-apps]

_{1 file reviewed, 9 comments}

_{Edit Code Review Agent Settings | Greptile}

[greptile-apps]

dict[str, Any] violates strict typing requirements. Use TypedDict instead:

Suggested change

	async def query_mcp_server(question: str) -> dict[str, Any]:
	async def query_mcp_server(question: str) -> MCPResponse:

Then define:

class MCPResponse(TypedDict):
    output: str

Context Used: Rule from dashboard - ## Technical Requirements

Agentic Framework

• PydanticAI Only: This project uses PydanticAI... (source)

Prompt To Fix With AI

This is a comment left during a code review.
Path: codebase_rag/mcp/client.py
Line: 24

Comment:
`dict[str, Any]` violates strict typing requirements. Use TypedDict instead:

```suggestion
async def query_mcp_server(question: str) -> MCPResponse:
```

Then define:
```python
class MCPResponse(TypedDict):
    output: str
```

**Context Used:** Rule from `dashboard` - ## Technical Requirements

### Agentic Framework
- **PydanticAI Only**: This project uses PydanticAI... ([source](https://app.greptile.com/review/custom-context?memory=d4240b05-b763-467a-a6bf-94f73e8b6859))

How can I resolve this? If you propose a fix, please make it concise.

_{Note: If this suggestion doesn't match your team's coding style, reply to this and let me know. I'll remember it for next time!}

[greptile-apps]

Any type is explicitly prohibited. Remove this import and use TypedDict for dict shapes.

Context Used: Rule from dashboard - ## Technical Requirements

Agentic Framework

• PydanticAI Only: This project uses PydanticAI... (source)

Prompt To Fix With AI

This is a comment left during a code review.
Path: codebase_rag/mcp/client.py
Line: 15

Comment:
`Any` type is explicitly prohibited. Remove this import and use TypedDict for dict shapes.

**Context Used:** Rule from `dashboard` - ## Technical Requirements

### Agentic Framework
- **PydanticAI Only**: This project uses PydanticAI... ([source](https://app.greptile.com/review/custom-context?memory=d4240b05-b763-467a-a6bf-94f73e8b6859))

How can I resolve this? If you propose a fix, please make it concise.

[greptile-apps]

Docstrings are not allowed per the Comment Policy. Code should be self-documenting. Only comments with (H) prefix are allowed.

Context Used: Rule from dashboard - ## Technical Requirements

Agentic Framework

• PydanticAI Only: This project uses PydanticAI... (source)

Prompt To Fix With AI

This is a comment left during a code review.
Path: codebase_rag/mcp/client.py
Line: 25-38

Comment:
Docstrings are not allowed per the Comment Policy. Code should be self-documenting. Only comments with `(H)` prefix are allowed.

**Context Used:** Rule from `dashboard` - ## Technical Requirements

### Agentic Framework
- **PydanticAI Only**: This project uses PydanticAI... ([source](https://app.greptile.com/review/custom-context?memory=d4240b05-b763-467a-a6bf-94f73e8b6859))

How can I resolve this? If you propose a fix, please make it concise.

[greptile-apps]

Docstrings are not allowed per the Comment Policy. Code should be self-documenting.

Context Used: Rule from dashboard - ## Technical Requirements

Agentic Framework

• PydanticAI Only: This project uses PydanticAI... (source)

Prompt To Fix With AI

This is a comment left during a code review.
Path: codebase_rag/mcp/client.py
Line: 88-95

Comment:
Docstrings are not allowed per the Comment Policy. Code should be self-documenting.

**Context Used:** Rule from `dashboard` - ## Technical Requirements

### Agentic Framework
- **PydanticAI Only**: This project uses PydanticAI... ([source](https://app.greptile.com/review/custom-context?memory=d4240b05-b763-467a-a6bf-94f73e8b6859))

How can I resolve this? If you propose a fix, please make it concise.

_{Note: If this suggestion doesn't match your team's coding style, reply to this and let me know. I'll remember it for next time!}

[greptile-apps]

Inline comments without (H) prefix violate the Comment Policy. Remove all comments or prefix them with (H) if they provide essential human context that cannot be expressed in code.

Context Used: Rule from dashboard - ## Technical Requirements

Agentic Framework

• PydanticAI Only: This project uses PydanticAI... (source)

Prompt To Fix With AI

This is a comment left during a code review.
Path: codebase_rag/mcp/client.py
Line: 41-113

Comment:
Inline comments without `(H)` prefix violate the Comment Policy. Remove all comments or prefix them with `(H)` if they provide essential human context that cannot be expressed in code.

**Context Used:** Rule from `dashboard` - ## Technical Requirements

### Agentic Framework
- **PydanticAI Only**: This project uses PydanticAI... ([source](https://app.greptile.com/review/custom-context?memory=d4240b05-b763-467a-a6bf-94f73e8b6859))

How can I resolve this? If you propose a fix, please make it concise.

[greptile-apps]

Hardcoded strings should be moved to a constants file. Create codebase_rag/mcp/constants.py for strings like "python", "-m", "codebase_rag.main", "mcp-server", "ask_agent", "question".

Context Used: Rule from dashboard - ## Technical Requirements

Agentic Framework

• PydanticAI Only: This project uses PydanticAI... (source)

Prompt To Fix With AI

This is a comment left during a code review.
Path: codebase_rag/mcp/client.py
Line: 47-59

Comment:
Hardcoded strings should be moved to a constants file. Create `codebase_rag/mcp/constants.py` for strings like `"python"`, `"-m"`, `"codebase_rag.main"`, `"mcp-server"`, `"ask_agent"`, `"question"`.

**Context Used:** Rule from `dashboard` - ## Technical Requirements

### Agentic Framework
- **PydanticAI Only**: This project uses PydanticAI... ([source](https://app.greptile.com/review/custom-context?memory=d4240b05-b763-467a-a6bf-94f73e8b6859))

How can I resolve this? If you propose a fix, please make it concise.

_{Note: If this suggestion doesn't match your team's coding style, reply to this and let me know. I'll remember it for next time!}

[greptile-apps]

Catching bare Exception is too broad. Catch specific exceptions like ConnectionError, TimeoutError, or create a custom exception type.

Context Used: Rule from dashboard - ## Technical Requirements

Agentic Framework

• PydanticAI Only: This project uses PydanticAI... (source)

Prompt To Fix With AI

This is a comment left during a code review.
Path: codebase_rag/mcp/client.py
Line: 111

Comment:
Catching bare `Exception` is too broad. Catch specific exceptions like `ConnectionError`, `TimeoutError`, or create a custom exception type.

**Context Used:** Rule from `dashboard` - ## Technical Requirements

### Agentic Framework
- **PydanticAI Only**: This project uses PydanticAI... ([source](https://app.greptile.com/review/custom-context?memory=d4240b05-b763-467a-a6bf-94f73e8b6859))

How can I resolve this? If you propose a fix, please make it concise.

[greptile-apps]

No type narrowing before accessing result.content[0]. This will raise IndexError if content is empty. Add length check:

Suggested change

	if result.content:
	response_text = result.content[0].text
	if result.content and len(result.content) > 0:
	response_text = result.content[0].text

Prompt To Fix With AI

This is a comment left during a code review.
Path: codebase_rag/mcp/client.py
Line: 63-64

Comment:
No type narrowing before accessing `result.content[0]`. This will raise `IndexError` if content is empty. Add length check:

```suggestion
                if result.content and len(result.content) > 0:
                    response_text = result.content[0].text
```

How can I resolve this? If you propose a fix, please make it concise.

[greptile-apps]

Use loguru for error logging instead of print() to stderr:

Suggested change

	print(f"Error: {str(e)}", file=sys.stderr)
	logger.error(f"Error: {str(e)}")
	sys.exit(1)

Context Used: Rule from dashboard - ## Technical Requirements

Agentic Framework

• PydanticAI Only: This project uses PydanticAI... (source)

Prompt To Fix With AI

This is a comment left during a code review.
Path: codebase_rag/mcp/client.py
Line: 114

Comment:
Use `loguru` for error logging instead of `print()` to stderr:

```suggestion
        logger.error(f"Error: {str(e)}")
        sys.exit(1)
```

**Context Used:** Rule from `dashboard` - ## Technical Requirements

### Agentic Framework
- **PydanticAI Only**: This project uses PydanticAI... ([source](https://app.greptile.com/review/custom-context?memory=d4240b05-b763-467a-a6bf-94f73e8b6859))

How can I resolve this? If you propose a fix, please make it concise.

_{Note: If this suggestion doesn't match your team's coding style, reply to this and let me know. I'll remember it for next time!}

[sonarqubecloud]

Quality Gate failed

Failed conditions
0.0% Coverage on New Code (required ≥ 80%)
C Reliability Rating on New Code (required ≥ A)

See analysis details on SonarQube Cloud

Catch issues before they fail your Quality Gate with our IDE extension SonarQube for IDE