molecule-ai/molecule-contracts
49
0
Fork 0
Code Issues Pull Requests 2 Actions Packages Projects Releases Wiki Activity
29 Commits 6 Branches 0 Tags
main
T
Clone
Open with VS Code Open with VSCodium Open with Intellij IDEA
Download ZIP Download TAR.GZ Download BUNDLE

README.md

molecule-contracts

Single source of truth for the Molecule tool/capability and template contracts. Implements RFC molecule-core#3285 ("Tool-Contract SSOT & Codegen Architecture").

This repo is the Public tier: third-party-facing shared schemas + the plugin SDK. Control-plane config/topology contracts stay Internal (they live with the CP).

Why this exists

The #3082 phantom-verb class of incident: a contract was authored against a tool verb (create_workspace) that the management-mode MCP never actually exposed (provision_workspace). The fix landed (core#3280/#3281, mcp-server#66), but the durable answer is structural — make the producer the SSOT, generate the contract/manifest from it, and enforce conformance at the boundary:

producer (mcp-server, runtime, CP)
      │  emits
      ▼
generated manifest / IDL  ──►  codegen  ──►  typed bindings (Go / TS / Python)
      │                                            │ compile-time within a side
      ▼                                            ▼
   conformance gate at the boundary  ◄──────────  consumers
   (advisory → soak → required; fail-closed)
  • Data shapes are checked at compile time within each side (generated bindings).
  • Capabilities (does the verb actually exist on the live surface?) are checked by the conformance gate at the boundary — because compile-time can't see across a process.

Layout (target)

Path Contents Tier
mcp/ MCP tool/capability contracts (IDL: JSON-Schema) — incl. the migrated mcp-plugin-delivery contract Public
templates/ Template / config asset contracts Public
sdk/ The plugin SDK (typed bindings consumers import) Public
gen/ Generated bindings (Go / TS / Python) — codegen output, never hand-edited Public
tools/ Codegen + validation scripts

IDL

JSON-Schema (RFC §15 decision). One schema per contract; bindings are generated, not hand-written. Naming is canonicalized with no rename of existing verbs (avoids the regression class the RFC §15 flagged).

Status

WIP — P2. P0/P1 shipped on the producer + CI side:

  • P1 producer manifest — mcp-server emits dist/manifest.json from the real server (mcp-server PR #71).
  • P1 reusable conformance gatemolecule-ci composite action (PR #40), fail-closed.
  • Advisory grep-lint banning raw mcp__… literals (core#3299) — forbidigo can't ban string literals, so this is a grep CI job.

P2 (this repo): migrate the contract to JSON-Schema IDL here, stand up multi-language codegen, publish the surface family. P3 (owner-gated): marketplace attestation/signing.

See the canonical RFC issue for the full rollout and Definition-of-Ready.

Reference in New Issue View Git Blame Copy Permalink
S
Description
Tool-Contract SSOT — single source of truth for capability/tool + template contracts (RFC molecule-core#3285). Public tier: third-party-facing schemas + the plugin SDK. WIP (P2).
Readme 120 KiB
Languages
JavaScript 83.3%
TypeScript 8.4%
Python 8.3%