YepCode

Implements the Model Context Protocol (MCP) specification via the YepCodeMcpServer class in src/server.ts, acting as a bridge that translates YepCode's cloud capabilities into standardized MCP tools consumable by AI platforms. The server maintains strict type safety through Zod schema validation and routes incoming MCP requests to appropriate tool handlers organized into five distinct categories: storage, environment variables, code execution, process execution, and dynamically discovered processes. This enables AI assistants like Claude Desktop or Cursor IDE to invoke YepCode operations through a unified, protocol-compliant interface.

Exposes YepCode's cloud-based sandbox runtime through the run-code-tool-definitions.ts module, allowing AI systems to execute arbitrary JavaScript or Python code in an isolated, secure environment. The implementation leverages the @yepcode/run package to handle runtime isolation, package management (NPM and PyPI), and execution lifecycle. Code execution requests are validated through Zod schemas before being dispatched to YepCode's infrastructure, which manages resource limits, timeout enforcement, and output capture. This enables AI agents to execute generated code without exposing the host system to security risks.

Implements file operations (create, read, update, delete, list) through the storage-tool-definitions.ts module, exposing YepCode's file storage as MCP tools. Each storage operation is validated through Zod schemas and routed through the YepCodeMcpServer to YepCode's backend storage service. This allows AI systems to persist data, manage configuration files, and organize code artifacts within the YepCode workspace without requiring direct filesystem access. The tool definitions include metadata about supported operations and parameter constraints.

Manages workspace environment variables through the env-vars-tool-definitions.ts module, allowing AI systems to read, set, and delete environment variables within the YepCode workspace scope. Variables are stored in YepCode's backend and validated through Zod schemas before being applied. This enables AI agents to configure runtime behavior, manage secrets (with appropriate security considerations), and pass data between code execution invocations without exposing variables to the host system. The implementation maintains strict workspace isolation — variables are scoped to the authenticated workspace only.

Automatically discovers and generates MCP tool definitions from tagged YepCode processes at runtime through the get-execution-tool-definition.ts module. The YepCodeMcpServer scans the authenticated workspace for processes marked with specific tags and dynamically creates tool definitions that expose those processes as invocable MCP tools. Each generated tool includes parameter schemas derived from the process definition, enabling AI systems to discover and invoke custom YepCode processes without requiring manual tool registration. This pattern allows users to extend YepCode capabilities by creating processes that are automatically exposed to AI systems.

Supports multiple deployment patterns through configuration options in README.md and package.json entry points, enabling the MCP server to run as a local Node.js process, remote HTTP service, or containerized Docker deployment. The server can be configured via environment variables (YEPCODE_API_TOKEN, YEPCODE_MCP_OPTIONS) and URL query parameters for remote deployments. This flexibility allows teams to integrate YepCode into different AI platform architectures — Claude Desktop uses local stdio transport, while custom platforms may use HTTP or other transport mechanisms. The implementation maintains consistent tool behavior across all deployment models.

Enforces strict type safety across all MCP tool invocations through Zod schema validation in src/types.ts and individual tool definition files. Every incoming MCP request is validated against its corresponding Zod schema before being dispatched to YepCode infrastructure, preventing malformed requests from reaching the backend. The type system is defined in TypeScript with Zod runtime validation, providing both compile-time type checking and runtime safety. This approach catches invalid inputs early and provides clear error messages to AI systems when requests don't match expected schemas.

Implements structured error handling throughout the MCP server that returns MCP-compliant error codes and messages when tool invocations fail. The error handling strategy is defined in src/server.ts and applied consistently across all tool categories. Errors from YepCode backend operations are caught, transformed into MCP error responses with appropriate error codes, and returned to the AI system with context about what failed. This enables AI systems to understand and potentially recover from errors rather than receiving opaque failure messages.

Implements authentication through YEPCODE_API_TOKEN environment variable that is validated when the YepCodeMcpServer initializes. The token (format: sk-c2E...RD) authenticates all requests to YepCode's infrastructure and scopes all operations to the authenticated workspace. The authentication is handled by the YepCodeApi, YepCodeRun, and YepCodeEnv service classes in src/server.ts, which use the token to establish authenticated connections to YepCode backend services. This ensures that all file storage, code execution, environment variables, and process invocations are scoped to the authenticated user's workspace.