Skip to main content

Model Context Protocol (MCP)

A protocol for seamless integration between LLM applications and external data sources.

The Model Context Protocol (MCP) is an open protocol that enables seamless integration between LLM applications and external data sources and tools. Whether you're building an AI-powered IDE, enhancing a chat interface, or creating custom AI workflows, MCP provides a standardized way to connect LLMs with the context they need.

MCP is an open protocol that standardizes how applications provide context to LLMs. Think of MCP like a USB-C port for AI applications. Just as USB-C provides a standardized way to connect your devices to various peripherals and accessories, MCP provides a standardized way to connect AI models to different data sources and tools.

Transport pipes

  • stdio: server and client at one end, basically the same local machine
  • SSE: server to client streaming with HTTP POST requests for client to server communication basically when client and host server are different (for prod env)

Why MCP?

MCP helps you build agents and complex workflows on top of LLMs. LLMs frequently need to integrate with data and tools, and MCP provides:

  • A growing list of pre-built integrations that your LLM can directly plug into
  • The flexibility to switch between LLM providers and vendors
  • Best practices for securing your data within your infrastructure

General Architecture

At its core, MCP follows a client-server architecture where a host application can connect to multiple servers:

MCP Architecture

  • MCP Hosts: Programs like Claude Desktop, IDEs, or AI tools that want to access data through MCP
  • MCP Clients: Protocol clients that maintain 1:1 connections with servers
  • MCP Servers: Lightweight programs that each expose specific capabilities through the standardized Model Context Protocol
  • Local Data Sources: Your computer’s files, databases, and services that MCP servers can securely access
  • Remote Services: External systems available over the internet (e.g., through APIs) that MCP servers can connect to

How MCP Works

How Model Context Protocol (MCP) Works

Concept

  • Tools - Model Context Protocol
    • Tools enable models to interact with external systems, such as querying databases, calling APIs, or performing computations. Each tool is uniquely identified by a name and includes metadata describing its schema.
  • Resources - Model Context Protocol
    • Resources allow servers to share data that provides context to language models, such as files, database schemas, or application-specific information. Each resource is uniquely identified by a URI.

Getting Started

For Claude Desktop Users - Model Context Protocol

claude_desktop_config.json
{
  "mcpServers": {
    "filesystem": {
      "command": "npx",
      "args": [
        "-y",
        "@modelcontextprotocol/server-filesystem",
        "/Users/deepaksood/Desktop",
        "/Users/deepaksood/Downloads"
      ]
    },
    "memory": {
      "command": "npx",
      "args": [
        "-y",
        "@modelcontextprotocol/server-memory"
      ]
    }
  }
}

Debug Logs - tail -n 100 ~/Library/Logs/Claude/mcp-server-*.log

Requests

Requesting Exact Columns (The Request)

To specify which columns or fields you want, you should use URI parameters (for Resources) or Argument properties (for Tools).

For Resources (URI Templates)

When defining a resource in your MCP server, use a URI template that includes a columns or fields parameter.

  • Template Example: database://{table_name}?columns={column_list}
  • Client Call: The client requests database://users?columns=id,email,username.

For Tools (Input Schema)

If you are using a Tool to fetch data, you define the required columns in the inputSchema. This is the most "official" way to handle filtering.

{
  "name": "get_customer_data",
  "description": "Fetch specific customer records",
  "inputSchema": {
    "type": "object",
    "properties": {
      "customer_id": { "type": "string" },
      "fields": {
        "type": "array",
        "items": { "type": "string" },
        "description": "List of specific columns to return"
      }
    },
    "required": ["customer_id", "fields"]
  }
}

2. Adding Filters

Filtering is handled by passing query parameters or search criteria through the same request structure.

Logical Filtering in Tools

You can add complex filtering logic by defining a filters object in your tool's arguments:

  • Criteria: status == 'active'
  • Range: date > '2023-01-01'

Example Tool Argument:

"filters": {
  "type": "object",
  "properties": {
    "status": { "type": "string", "enum": ["active", "inactive"] },
    "min_spend": { "type": "number" }
  }
}

3. Shaping the Response

MCP responses follow a strict structure. To ensure only the "exact columns" are returned, your server logic must prune the data before sending it back in the content array.

The Response Structure

Your MCP server should return a CallToolResult or ReadResourceResult containing only the requested keys.

{
  "content": [
    {
      "type": "text",
      "text": "{\"id\": 101, \"email\": \"user@example.com\"}"
    }
  ]
}

Pro Tip: Even if your underlying database returns 50 columns, your MCP Server code should iterate through the fields array provided in the request and delete any keys from the JSON object that weren't requested. This keeps the LLM's context window clean and reduces token costs.

Summary Table

FeatureResource ApproachTool Approach
SelectionUse URI Query Params (?select=a,b)Define a fields array in inputSchema
FilteringUse URI Query Params (?id=123)Define specific filter properties in Schema
ImplementationParse the URI string in the serverAccess arguments object in the tool handler

Servers

Memory

Knowledge Graph Memory Server - servers/src/memory at main · modelcontextprotocol/servers · GitHub ⭐ 85k

GitHub - qdrant/mcp-server-qdrant: An official Qdrant Model Context Protocol (MCP) server implementation ⭐ 1.4k

GitHub - doobidoo/mcp-memory-service: MCP server providing semantic memory and persistent storage capabilities for Claude using ChromaDB and sentence transformers. ⭐ 1.7k

Introducing OpenMemory MCP

Unlock Claude's Memory: Knowledge Graph MCP Server Tutorial - YouTube

Databases

Postgres

brew install postgresql
brew services start postgresql
brew services stop postgresql

psql postgres
psql pagila

createdb pagila
psql -d pagila -f pagila-schema.sql
psql -d pagila -f pagila-data.sql

psql -d pagila
\dt public.*;
SELECT table_name, COUNT(*) FROM information_schema.tables t JOIN pg_class c ON t.table_name = c.relname WHERE table_schema = 'public'GROUP BY table_name;

brew install postgres-mcp

brew services stop postgresql

pg_restore -d pagila data.dump

# nasdaq data
brew services start postgresql

# windows WSL/Ubuntu commands
# Update package list
sudo apt update

# Install PostgreSQL
sudo apt install -y postgresql postgresql-contrib

# Start the PostgreSQL service
sudo service postgresql start

# Check status
sudo service postgresql status

# Switch to the postgres user and open psql
sudo -u postgres psql

GitHub - crystaldba/postgres-mcp: Postgres MCP Pro provides configurable read/write access and performance analysis for you and your AI agents. ⭐ 2.6k

What are the rental patterns and lifetime value segments of customers, including their geographic clustering and seasonal preferences? answer the above question using the database

Read the data from PostgreSQL and share the summary of the data
⁠What are the top 5 most traded stocks by total volume?
⁠Which 5 stocks had the highest single-day gain?
⁠Which 5 stocks had the highest single-day loss?
Find the stocks that dropped more than 10% in a single day?

MySQL

"mysql": {
      "command": "npx",
      "args": [
        "-y",
        "@executeautomation/database-server",
        "--mysql",
        "--host", "your-host-name",
        "--database", "your-database-name",
        "--port", "3306",
        "--user", "your-username",
        "--password", "your-password"
      ]
    },
"mssql-server": {
      "command": "npx",
      "args": [
        "-y",
        "@executeautomation/database-server",
        "--sqlserver",
        "--server", "server-name",
        "--database", "database-name",
        "--user", "your-username",
        "--password", "your-password"
      ]
    },
claude mcp add mcp_server_mysql \
  -e MYSQL_HOST="127.0.0.1" \
  -e MYSQL_PORT="3306" \
  -e MYSQL_USER="user" \
  -e MYSQL_PASS="password" \
  -e MYSQL_DB="db_name" \
  -e ALLOW_INSERT_OPERATION="false" \
  -e ALLOW_UPDATE_OPERATION="false" \
  -e ALLOW_DELETE_OPERATION="false" \
  -- npx @benborla29/mcp-server-mysql

Others

Packages

OpenAI

Others

Elicitation

Elicitation is how AI agents gather the right pieces of information from you, step by step, in order to complete a task. Instead of needing everything upfront, the agent engages in a back-and-forth conversation—filling in gaps, confirming choices, and adjusting as needed. It’s what makes modern AI feel interactive, guided, and helpful.

How Does Elicitation Work? (Technical Flow)

Let’s break down the flow using our IT Support Ticket AI agent example:

  1. User initiates a ticket submission.
  2. Agent checks for missing/invalid fields.
  3. Agent sends an elicitation request for the missing field.
  4. Client prompts the user and collects the answer.
  5. Client sends the answer back to the agent.
  6. Agent validates and either continues or asks for more.
  7. Once all info is collected, the agent processes the request.

MCP Client with Elicitation Handler

import asyncio
from mcp.client.streamable_http import streamablehttp_client
from mcp.client.session import ClientSession
import mcp.types as types
from mcp.shared.context import RequestContext
import re
import signal
import sys

MCP_SERVER_URL = "http://localhost:8000/mcp"

def get_input(prompt, pattern=None, cast=str, allow_empty=False, choices=None, min_length=None):
    while True:
        try:
            value = input(prompt).strip()
            if allow_empty and not value:
                return value
            if choices and value not in choices:
                print(f"Please choose from: {', '.join(choices)}")
                continue
            if min_length and len(value) < min_length:
                print(f"Please enter at least {min_length} characters.")
                continue
            if pattern and not re.match(pattern, value):
                print("Invalid format.")
                continue
            return cast(value)
        except (ValueError, KeyboardInterrupt, EOFError):
            print("Cancelled.")
            raise KeyboardInterrupt

async def smart_elicitation_callback(context: RequestContext["ClientSession", None], params: types.ElicitRequestParams):
    msg = params.message.lower()
    try:
        if "type of issue" in msg:
            return types.ElicitResult(action="accept", content={"issue_type": get_input("Issue type (Network/Hardware/Software/Other): ", choices=["Network", "Hardware", "Software", "Other"] )})
        elif "describe your issue" in msg:
            return types.ElicitResult(action="accept", content={"description": get_input("Describe your issue: ", min_length=10)})
        elif "urgent" in msg:
            return types.ElicitResult(action="accept", content={"urgency": get_input("Urgency (Low/Medium/High): ", choices=["Low", "Medium", "High"] )})
        elif "submit ticket" in msg:
            confirm = input("Submit this ticket? (y/n): ").lower().strip() in ['y', 'yes', '1', 'true']
            notes = input("Any additional notes? (optional): ").strip() if confirm else ""
            return types.ElicitResult(action="accept", content={"confirm": confirm, "notes": notes})
        else:
            value = input("Your response: ").strip()
            return types.ElicitResult(action="accept", content={"response": value})
    except KeyboardInterrupt:
        return types.ElicitResult(action="cancel", content={})

async def run():
    try:
        async with streamablehttp_client(url=MCP_SERVER_URL) as (read_stream, write_stream, _):
            async with ClientSession(read_stream=read_stream, write_stream=write_stream, elicitation_callback=smart_elicitation_callback) as session:
                await session.initialize()
                tools = await session.list_tools()
                print(f"Available tools: {[tool.name for tool in tools.tools]}")
                print("\n--- Submit an IT Support Ticket ---")
                result = await session.call_tool(name="submit_ticket", arguments={})
                print(f"\nServer response:\n{result.content[0].text}")
    except KeyboardInterrupt:
        print("Demo cancelled.")

def signal_handler(signum, frame):
    print("\nShutting down...")
    sys.exit(0)

if __name__ == "__main__":
    signal.signal(signal.SIGINT, signal_handler)
    asyncio.run(run())

Elicitation in Modern AI Agents: How Smart Agents Ask the Right Questions - DEV Community

MCP Advanced Caching Strategies

  • Pattern 1: Data- Driven Cache policies
  • Pattern 2: Write behind caching for High — Throughput Operations
  • Pattern 3: Intelligent Cache Warming for Predictable performance
  • Pattern 4: Smarter Invalidation with Dependency Tracking
  • Pattern 5: Compliance-Ready Audit logging
  • Pattern 6: Performance monitoring with AI Recommendations

MCP: Advanced Caching strategies. The caching solution we built in our… | by Parichay Pothepalli | Medium

The Costs and Tradeoffs of Tool Use

That rapid growth, however, has surfaced real costs and risks that are important to understand.

The most significant is security. Every tool exposed to an LLM expands the system’s attack surface. In September 2025, this became concrete. A developer published an npm package that looked like an official email integration for MCP, mimicking the name and structure of a legitimate library from Postmark, a well-known email service. Hundreds of developers installed it. Later, it was found that a hidden code in the package was silently forwarding copies of every outgoing email to the attacker. This was a supply chain attack, where malicious code is hidden inside a dependency that looks trustworthy, and it was described as the first such attack targeting MCP servers.

Security challenges go beyond individual attacks. The protocol initially prioritized ease of adoption over robust security, and the authentication specifications went through multiple revisions as the community worked to close gaps. This is a familiar pattern in technology standards: interoperability and adoption come first, and security matures with time. The MCP specification continues to evolve, with recent revisions addressing authentication, server identity, and governance.

Beyond security, there is a subtler cost. Every tool definition exposed to the model consumes tokens in the context window. The name, description, and parameter schema of each tool all occupy space in the same finite context that holds the conversation history and task instructions. A handful of tools creates negligible overhead. Dozens or hundreds start crowding out the room the model needs to reason about the task. An agent with access to hundreds of tools sounds powerful in theory, but in practice, each additional tool slightly degrades the model’s ability to focus on the actual problem.

Tool use also does not make LLMs deterministic. The model can still hallucinate function names, pass malformed arguments, or chain tools in unexpected ways. Validation, error handling, and human approval steps are essential parts of any production system that gives an LLM access to real-world capabilities.

UCP

The Universal Commerce Protocol (UCP) is an open-source standard designed to power the next generation of agentic commerce. By establishing a common language and functional primitives, UCP enables seamless commerce journeys between consumer surfaces, businesses, and payment providers. It is built to work with existing retail infrastructure, and is compatible with Agent Payments Protocol (AP2) to provide secure agentic payments support. It also provides businesses flexible ways to integrate via APIs, Agent2Agent (A2A), and the Model Context Protocol (MCP).

Google Merchant Center Next

  • Add products from a file (Automatically updates)
    • Create a file that contains all your product details (title, description, price, and more). This method may require some technical knowledge.
  • Use Google Sheets (Automatically updates)
    • Add your product details (title, description, price, and more) using a Google Sheets spreadsheet.
  • Add products one by one (Requires manual updates)
    • Use this option if you want to add one or just a few products. Just fill in a form with all the details about your product. After you add your products, you can edit, delete or add more at any later time.
  • Add products using API (Scheduled updates)
    • Use the Merchant API to upload a large number of products or if you plan to make frequent changes to your product details. This method requires technical knowledge.

Tools

Resources

Others