mirrors/codex
1
0
Fork 0
mirror of https://github.com/openai/codex.git synced 2026-04-28 18:32:04 +03:00
Code Issues Packages Projects Releases Wiki Activity
Files
a409c34c856e39ea6b2ac8eb1af7fdf8758c481e
codex/prs/bolinfest/study/PR-1591-study.md
Daniel Edrisian d2af202db7 study last 100 days PRs
2025-09-02 15:17:45 -07:00

2.2 KiB
Raw Blame History

MCP Server Name Validation — Review Takeaways

DOs

  • Validate early: Check names against ^[a-zA-Z0-9_-]+$ before spawning; skip invalid.
let mut join_set = JoinSet::new();
let mut errors = ClientStartErrors::new();

for (server_name, cfg) in mcp_servers {
    if !is_valid_mcp_server_name(&server_name) {
        let msg = anyhow::anyhow!(
            "invalid server name '{}': must match pattern ^[a-zA-Z0-9_-]+$",
            server_name
        );
        errors.insert(server_name, msg);
        continue;
    }

    join_set.spawn(async move {
        let McpServerConfig { command, args, env } = cfg;
        let client_res = McpClient::new_stdio_client(command, args, env).await;
        (server_name, client_res)
    });
}
  • Keep helpers local: Define private, domain-specific validator in mcp_connection_manager.rs.
// core/src/mcp_connection_manager.rs
fn is_valid_mcp_server_name(name: &str) -> bool {
    !name.is_empty() && name.chars().all(|c| c.is_ascii_alphanumeric() || c == '_' || c == '-')
}
  • Avoid needless clones: Move owned loop variables into async tasks.
// Good: move ownership into the async task; no clone needed
join_set.spawn(async move {
    // use moved `server_name`
    (server_name, some_async().await)
});
  • Write clear errors: Include the offending name and required pattern.
let err = anyhow::anyhow!(
    "invalid server name '{}': must match pattern ^[a-zA-Z0-9_-]+$",
    server_name
);

DONTs

  • Dont spawn invalid: Never launch clients and then validate inside the task.
// Bad: spawning first, validating later
join_set.spawn(async move {
    if !is_valid_mcp_server_name(&server_name) {
        return (server_name, Err(anyhow::anyhow!("invalid name")));
    }
    (server_name, Ok(connect().await?))
});
  • Dont use generic util: Avoid adding one-off helpers to a catchall util.rs.
// Bad: core/src/util.rs
pub fn is_valid_server_name(_: &str) -> bool { /* ... */ } // too generic, wrong place
  • Dont clone unnecessarily: Avoid clone() when you already own the value.
// Bad: unnecessary clone
let server_name_cloned = server_name.clone();
join_set.spawn(async move {
    (server_name_cloned, do_work().await)
});
Reference in New Issue View Git Blame Copy Permalink