Skip to content

Rework MCP safety and pricing outputs#62

Open
JaeLeex wants to merge 3 commits into
jl/pricing-experiments-20260701from
jl/mcp-trade-noninteractive-20260701
Open

Rework MCP safety and pricing outputs#62
JaeLeex wants to merge 3 commits into
jl/pricing-experiments-20260701from
jl/mcp-trade-noninteractive-20260701

Conversation

@JaeLeex

@JaeLeex JaeLeex commented Jul 1, 2026

Copy link
Copy Markdown
Contributor

Summary

  • Prevent MCP subprocess helpers from inheriting stdin so trade/tool calls fail fast instead of hanging in noninteractive clients.
  • Gate MCP wallet_auto behind explicit confirmation because it creates and writes private-key material.
  • Add mode-specific MCP/inference pricing output, including hosted MCP C_seat, Mode 2 inference spend, and Mode 3 builder-fee economics.

Test plan

  • python3 -m pytest tests/test_mcp_money_tools.py tests/test_trade_command.py tests/test_pricing_aggregate.py

Made with Cursor

JaeLeex and others added 3 commits July 1, 2026 11:53
Ensure hosted MCP subprocess calls fail fast without inherited stdin, gate wallet creation behind explicit confirmation, and report pricing around MCP/inference modes instead of hosted-agent runtime assumptions.

Co-authored-by: Cursor <cursoragent@cursor.com>
Updates Railway defaults and docs so the subscription path runs the shared MCP tools runtime instead of a per-user autonomous agent, with tests for the mcp default.

Co-authored-by: Cursor <cursoragent@cursor.com>
Add opt-in hosted entitlement consumption, builder-code broadcast validation, identity registration metadata, and dry-run pricing evidence so local/BYO mode stays ungated while hosted paths fail closed where required.

Co-authored-by: Cursor <cursoragent@cursor.com>
@JaeLeex

JaeLeex commented Jul 1, 2026

Copy link
Copy Markdown
Contributor Author

Follow-up update for the remaining actionable MCP subscription items:

  • Added opt-in hosted MCP entitlement consumption in agent-cli from inline JSON, file, or web-auth pair-token fetch. Local/BYO MCP remains ungated when no Nunchi entitlement is configured.
  • Enforced tool allowlists/buckets, safety-gated confirm checks, local free-call limits, and model policy for hosted entitlement mode.
  • Added pair/register identity metadata (agentId, agentName, runtimeLocation: local, connectionMode).
  • Hardened direct HL broadcast path with fail-closed builder-code validation and builder metadata in dry-run/live trade ledgers.
  • Improved pricing dry-run reporting with manifest, dry-run trade rows, aggregate dry-run/live-fill separation, and blocked-live-measurement notes.

Validation:

  • python3 -m pytest tests/test_mcp_entitlements.py tests/test_mcp_money_tools.py tests/test_builder_fee.py tests/test_hl_adapter.py tests/test_pricing_aggregate.py
  • python3 scripts/pricing_experiment_suite.py --dry-run-only --experiment-id cursor-dryrun-20260701-v2

Blocked live measurements remain OpenRouter/funded-wallet dependent. Programmatic binding remains intentionally deferred.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

None yet

Projects

None yet

Development

Successfully merging this pull request may close these issues.

1 participant