PDX-482: feat(mcp): harden testcase tool descriptions for single-call contract

[mrdailey99]

Summary

• Adds a three-line construction contract to the top of provar_testcase_generate's TOOL_DESCRIPTION: pass the FULL step tree in a single call; step_edit is for AMENDING; stop-and-assemble guidance for the common mistake
• Tightens the steps[] field description to call out the COMPLETE step tree requirement and warn against the multi-call append pattern
• Mirrors the contract on provar_testcase_step_edit: self-identifies as AMENDMENT-ONLY, rejects construct-from-scratch usage, points agents at provar_testcase_generate for new test cases, spells out the structural defects (dropped scenarios, flat asserts, inconsistent step types) from misuse
• Adds 6 regression-guard unit tests asserting the canonical phrasing in both tool descriptions
• Adds scripts/pdx-482-validate.cjs — 13 protocol-surface assertions via JSON-RPC, all PASS

Jira

• https://provartesting.atlassian.net/browse/PDX-479 (main bug — already fixed by PDX-481 prompts/resource rewrite)
• https://provartesting.atlassian.net/browse/PDX-481 (the upstream guidance fix — merged in PR PDX-481: fix(prompts): rewrite author-test flow to single-call construction #173)
• https://provartesting.atlassian.net/browse/PDX-482 (this hardening story)

Why

PDX-479 surfaced that authoring guidance lives in three places — orchestration prompt, tool-guide resource, and tool descriptions. A regression in any one of them can drift the LLM. PDX-481 fixed the prompt + resource but left the tool descriptions silent: the existing steps[] field description was just "Ordered list of test steps" with no anti-pattern protection. If a future upstream prompt re-introduces the multi-call pattern, only the tool description can push back at the call site — and it currently says nothing about it.

This PR closes that gap. The tool description is the strongest, most-cited signal in an MCP client's working context because it surfaces on every tool-discovery cycle. With the contract embedded there, the single-call requirement survives any subsequent prompt/resource drift.

Test plan

• yarn compile clean
• node_modules/.bin/nyc node_modules/.bin/mocha "test/**/*.test.ts" — 1127 passing, 0 failing (6 new regression-guard tests)
• yarn lint clean
• node scripts/pdx-482-validate.cjs — 13 / 13 PASS — confirms both tool descriptions carry the canonical phrasing at the MCP protocol surface

Adversarial check

The PDX-482 AC asks for a defensive validation: even if PDX-481's prompts were intentionally reverted in a scratch branch, the in-tool description alone should be sufficient to keep an LLM on the single-call pattern. The 13 protocol-surface assertions in `pdx-482-validate.cjs` are the codified form of that check: they read what an MCP client surfaces to its LLM at the call site, which is where the contract has to fire.

Changes

• `src/mcp/tools/testCaseGenerate.ts`: TOOL_DESCRIPTION gets the three-line construction contract prepended; `steps[]` field description tightened
• `src/mcp/tools/testCaseStepTools.ts`: description self-identifies as AMENDMENT-ONLY with construct rejection + structural-defect callout
• `test/unit/mcp/testCaseGenerate.test.ts`: 3 regression-guard tests for the construction contract on generate
• `test/unit/mcp/testCaseStepTools.test.ts`: 3 regression-guard tests for the amendment-only contract on step_edit
• `scripts/pdx-482-validate.cjs` (new): 13-assertion JSON-RPC validation harness

Out of scope

• Functional changes to the XML emitter, step builder, or validator (none)
• Runtime guard rejecting step_edit against freshly-generated empty skeletons (would be over-engineering for this story)
• MCP tool registration plumbing changes

Customer-facing docs

`docs/mcp.md` already carries the construct-vs-amend split from PDX-481. `docs/provar-mcp-public-docs.md` and `docs/university-of-provar-mcp-course.md` are maintained separately by the Provar team and may need a mirror update if they describe tool descriptions verbatim.

🤖 Generated with Claude Code

[github-actions]

Quality Orchestrator

🟢 LOW · 4 / 100 · All changed files have mapped tests.

---

🧪 Tests to Run · Running 2 of 51 tests

• unit/mcp/testCaseGenerate.test.ts
• unit/mcp/testCaseStepTools.test.ts

▶ Run command

npx vitest run \
  unit/mcp/testCaseGenerate.test.ts \
  unit/mcp/testCaseStepTools.test.ts

---

_{⚡ quality-orchestrator  ·  /qo stub <file>  ·  qo analyze-local}

[Copilot]

Pull request overview

Hardens the MCP tool descriptions for provar_testcase_generate and provar_testcase_step_edit with an explicit single-call construction contract vs. amendment-only contract, so that the guidance survives any future drift in upstream prompts/resources. Adds regression-guard unit tests and a JSON-RPC protocol-surface validation script.

Changes:

• Prepend a three-line construction contract to provar_testcase_generate's TOOL_DESCRIPTION and tighten the steps[] field description.
• Mark provar_testcase_step_edit as AMENDMENT-ONLY, explicitly rejecting construct-from-scratch usage and listing structural defects.
• Add 6 unit tests plus a new scripts/pdx-482-validate.cjs JSON-RPC validator.

Reviewed changes

Copilot reviewed 5 out of 5 changed files in this pull request and generated no comments.

Show a summary per file

File	Description
src/mcp/tools/testCaseGenerate.ts	Adds construction-contract preamble to TOOL_DESCRIPTION and tightens steps[] field description
src/mcp/tools/testCaseStepTools.ts	Adds AMENDMENT-ONLY framing and updates the short description
test/unit/mcp/testCaseGenerate.test.ts	3 regression-guard tests for the construction contract
test/unit/mcp/testCaseStepTools.test.ts	3 regression-guard tests for the amendment-only contract
scripts/pdx-482-validate.cjs	New JSON-RPC validation harness with 13 protocol-surface assertions

---

💡 Add Copilot custom instructions for smarter, more guided reviews. Learn how to get started.

[mrdailey99]

Independent adversarial review + fixes — 47c75e2

Copilot's automated review returned zero comments. Because this is a defense-in-depth feature, I ran an additional adversarial review (independent reviewer, brief: "try to break the contract"). It surfaced three critical defects + one important nit that the regression-guard tests would not have caught.

Critical findings & resolutions

#	Finding	Resolution
1	PROVAR_MCP_SCHEMA_MODE=compact was a regression highway. The desc() helper returns the compact form when that env var is set; my compact string was the pre-PDX-482 contract-free one-liner "Generate a Provar XML test case skeleton with UUID guids and steps structure." — the entire contract would silently disappear in compact mode.	Rewrote the compact form to carry the contract: "Generate a Provar test case in ONE call with the FULL steps[] tree. Do NOT call with steps=[] then append via provar_testcase_step_edit (step_edit is for AMENDING existing test cases, not for CONSTRUCTING new ones)." Validator now spawns the server twice (standard + compact) and runs 6 contract assertions against the compact form.
2	Regex false-positive in the "step_edit not for CONSTRUCTING" assertion. /step_edit[^.]*not for CONSTRUCTING|CONSTRUCTING[^.]*not/i would pass on hostile rewordings like "constructing... is the only way... not via generate".	Replaced both the unit test and validator with literal includes('not for CONSTRUCTING one from scratch') — locked on the canonical phrasing so the assertion can only pass when the exact contract phrase is present.
3	No leading-position assertion. A future refactor could move the contract to the bottom of the joined array — every other assertion would still pass, but the LLM would see 4 KB of mechanics before reaching the contract.	Added indexOf('Construction pattern') < 200 in both the unit test and the validator. Current position: 0 (literally the first chars).

Important nit & resolution

Finding	Resolution
step_edit test for the "structural defects" warning used an OR-clause across "dropped scenarios", "flat asserts", "inconsistent step types". A future cleanup that removes two of the three would silently dilute the warning while the test still passes.	Split into three separate assert.ok calls — dropping any one of the three defects now fails the test. The full consequence chain stays in the description.

Gate after fixes

Check	Before	After
Validator assertions	13 / 13 PASS	20 / 20 PASS (added 6 compact-mode + 1 leading-position)
Mocha tests	1127 passing	1129 passing (+1 leading-position test, +1 compact-mode describe block)
Lint	clean	clean
Compile	clean	clean

Findings deliberately deferred to a follow-up

The adversarial review also suggested:

• Runtime guard — return STEPS_REQUIRED when steps.length === 0 && !dry_run. This is a behaviour change with broader implications (some callers may legitimately want a skeleton-only generation). Out of scope for this hardening story; worth a separate ticket if we decide the contract should be enforced at runtime, not just at the description surface.
• Title field — adding the contract to the tool title: field. Most MCP clients show titles in tool-picker chips. Considered but skipped because the title field is also constrained by client UIs (Cursor shows full title, Claude Desktop truncates at ~50 chars). The description is the higher-leverage surface.
• Audit guidePrompts.ts for parallel wording — already aligned by PDX-481 (which I merged into develop earlier today). Re-verified by hand; no divergence.

PR is now updated. Reviewer-facing changes: 47c75e2 on top of ac77154.