feat: native PHP MCP server via laravel/mcp

[jordanpartridge]

Summary

• Replaces the fragile Node.js knowledge-server.js wrapper with native laravel/mcp v0.6.0 integration
• 5 intent-based MCP tools: recall, remember, correct, context, stats
• Custom McpServiceProvider for Laravel Zero compatibility (no routing/validation deps)
• Stdio transport via Mcp::local() for Claude Code and Claude Desktop

Bugs fixed from initial testing

• RememberTool referenced undefined $validated['evidence'] — now uses $request->get('evidence')
• Category enums aligned across all tools (added patterns, decisions, gotchas)
• ContextTool empty results now show available_projects list to help users find the right namespace

Claude Desktop config

{
  "knowledge": {
    "command": "php",
    "args": ["/path/to/knowledge/know", "mcp:start", "knowledge"]
  }
}

Test plan

• MCP initialize handshake returns correct server info
• tools/list returns all 5 tools with schemas
• recall returns ranked results with confidence/freshness
• stats returns entry counts across all projects
• remember captures entries with git context and dedup
• 571 unit tests pass, 0 failures
• Sentinel Gate CI

🤖 Generated with Claude Code

Summary by CodeRabbit

• New Features
  • Launched a semantic knowledge base with commands to recall, remember, correct, view context, and see stats.
  • Project-aware knowledge organization with category/tag filtering, auto-detection of project context, and git context capture.
  • Intelligent retrieval: ranking by confidence and freshness, grouped context constrained to token budgets.
  • Recall supports global and per-project search; Remember includes duplicate detection and optional auto-tagging.
  • Added a stats endpoint reporting per-project and total entry counts.

[coderabbitai]

Caution

Review failed

The pull request is closed.

ℹ️ Recent review info

⚙️ Run configuration

Configuration used: defaults

Review profile: CHILL

Plan: Pro

Run ID: edabfdab-4dac-43e9-9a76-c8340d58feb3

📥 Commits

Reviewing files that changed from the base of the PR and between 6beb878 and b886bd7.

📒 Files selected for processing (5)

• tests/Unit/Mcp/Tools/ContextToolTest.php
• tests/Unit/Mcp/Tools/CorrectToolTest.php
• tests/Unit/Mcp/Tools/RecallToolTest.php
• tests/Unit/Mcp/Tools/RememberToolTest.php
• tests/Unit/Mcp/Tools/StatsToolTest.php

---

📝 Walkthrough

Walkthrough

Adds a new MCP KnowledgeServer and five MCP tools (Recall, Remember, Correct, Context, Stats), integrates a McpServiceProvider and route, registers laravel/mcp, and includes unit tests for each tool. Tools integrate with Qdrant, project detection, metadata, correction, write-gate, and enhancement services.

Changes

Cohort / File(s)	Summary
MCP Server Definition app/Mcp/Servers/KnowledgeServer.php	New KnowledgeServer class declared with attributes Name/Version/Instructions and configured tools list; empty resources/prompts prepared.
Tools — Context & Recall app/Mcp/Tools/ContextTool.php, app/Mcp/Tools/RecallTool.php	Added ContextTool (fetches, ranks, groups, token-truncates project entries) and RecallTool (tiered per-project and global semantic search, formatting and metadata augmentation).
Tools — Remember & Correct app/Mcp/Tools/RememberTool.php, app/Mcp/Tools/CorrectTool.php	Added RememberTool (capture/upsert with git context, write-gate, duplicate detection, enqueue enhancements) and CorrectTool (validate and apply corrections via CorrectionService).
Tool — Stats app/Mcp/Tools/StatsTool.php	Added StatsTool (read-only, idempotent) to enumerate collections and return per-project and total entry counts.
MCP Integration & Bootstrap app/Providers/McpServiceProvider.php, bootstrap/providers.php, routes/ai.php	New McpServiceProvider registered in bootstrap/providers.php; provider wires container callbacks, loads routes/ai.php and registers MCP console command; routes/ai.php binds KnowledgeServer locally.
Composer Dependency composer.json	Adds runtime dependency laravel/mcp: ^0.6.0.
Unit Tests tests/Unit/Mcp/Tools/ContextToolTest.php, tests/Unit/Mcp/Tools/CorrectToolTest.php, tests/Unit/Mcp/Tools/RecallToolTest.php, tests/Unit/Mcp/Tools/RememberToolTest.php, tests/Unit/Mcp/Tools/StatsToolTest.php	Adds unit tests covering validation, happy/error paths, project detection, Qdrant interactions, duplicate handling, and metadata augmentation for each tool.

Sequence Diagrams

sequenceDiagram
    participant Client
    participant RememberTool
    participant ProjectDetector
    participant GitContext
    participant WriteGate
    participant Qdrant
    participant EnhancementQueue

    Client->>RememberTool: handle(title, content, tags, category, ...)
    RememberTool->>RememberTool: validate inputs
    RememberTool->>ProjectDetector: detect project
    ProjectDetector-->>RememberTool: project
    RememberTool->>GitContext: fetch git metadata
    GitContext-->>RememberTool: git metadata
    RememberTool->>WriteGate: evaluate write permission
    WriteGate-->>RememberTool: allow/deny
    alt WriteGate Denied
        RememberTool-->>Client: error response
    else WriteGate Allowed
        RememberTool->>Qdrant: upsert entry (duplicate detection)
        alt Duplicate Detected
            Qdrant-->>RememberTool: duplicate exception / existing id
            RememberTool-->>Client: duplicate response
        else Entry Stored
            Qdrant-->>RememberTool: success
            RememberTool->>EnhancementQueue: enqueue for enhancements
            RememberTool-->>Client: success response
        end
    end

Loading

sequenceDiagram
    participant Client
    participant RecallTool
    participant ProjectDetector
    participant TieredSearch
    participant Qdrant
    participant EntryMetadata

    Client->>RecallTool: handle(query, project?, category?, tag?, limit, global?)
    RecallTool->>RecallTool: validate query
    RecallTool->>ProjectDetector: detect project (if needed)
    ProjectDetector-->>RecallTool: project
    alt Global Search
        RecallTool->>Qdrant: list/search all knowledge_* collections
        Qdrant-->>RecallTool: per-collection results
        RecallTool->>EntryMetadata: augment results
    else Per-Project Search
        RecallTool->>TieredSearch: perform tiered search with filters
        TieredSearch-->>RecallTool: ranked results
        RecallTool->>EntryMetadata: augment results
    end
    RecallTool-->>Client: formatted results + meta

Loading

sequenceDiagram
    participant Client
    participant ContextTool
    participant ProjectDetector
    participant Qdrant
    participant EntryMetadata

    Client->>ContextTool: handle(project?, categories?, max_tokens?)
    ContextTool->>ProjectDetector: detect project (if needed)
    ProjectDetector-->>ContextTool: project
    ContextTool->>Qdrant: fetch entries (by category or global, limit)
    Qdrant-->>ContextTool: entries
    alt No entries found
        ContextTool->>Qdrant: list collections -> available projects
        ContextTool-->>Client: empty entries + available_projects
    else Entries found
        ContextTool->>ContextTool: rank entries (usage + freshness)
        ContextTool->>ContextTool: group by category and truncate to token budget
        ContextTool->>EntryMetadata: format entries
        ContextTool-->>Client: categorized entries + counts
    end

Loading

Estimated code review effort

🎯 4 (Complex) | ⏱️ ~45 minutes

Possibly related PRs

• feat: Add git context integration and knowledge attribution (Closes #8) #16 — related to GitContextService used by RememberTool for auto-populating git metadata.
• feat: implement project-aware namespacing #109 — related to ProjectDetectorService and Qdrant collection/namespace functions used by multiple tools.
• feat: add background Ollama async auto-tagging #118 — related to EnhancementQueueService and Ollama-based enhancement worker used by RememberTool.

Poem

🐰 I nibbled on data, stitched facts from the hay,
Five little tools helped the knowledge hop play,
Recall finds the breadcrumbs, Remember keeps the note,
Correct smooths the errors, Context gives scope,
Stats counts our carrots — hooray! 🌿📚

🚥 Pre-merge checks | ✅ 2 | ❌ 1

❌ Failed checks (1 warning)

Check name	Status	Explanation	Resolution
Docstring Coverage	⚠️ Warning	Docstring coverage is 29.63% which is insufficient. The required threshold is 80.00%.	Write docstrings for the functions missing them to satisfy the coverage threshold.

✅ Passed checks (2 passed)

Check name	Status	Explanation
Description Check	✅ Passed	Check skipped - CodeRabbit’s high-level summary is enabled.
Title check	✅ Passed	The title clearly and concisely summarizes the main change: introducing a native PHP MCP server powered by the laravel/mcp package, replacing the Node.js wrapper.

_{✏️ Tip: You can configure your own custom pre-merge checks in the settings.}

✨ Finishing Touches

• 📝 Generate docstrings (stacked PR)
• 📝 Generate docstrings (commit on current branch)

🧪 Generate unit tests (beta)

• Create PR with unit tests
• Post copyable unit tests in a comment
• Commit unit tests in branch feat/native-mcp-server

---

Thanks for using CodeRabbit! It's free for OSS, and your support helps us grow. If you like it, consider giving us a shout-out.

❤️ Share

• X
• Mastodon
• Reddit
• LinkedIn

_{Comment @coderabbitai help to get the list of available commands and usage tips.}

[github-actions]

📊 Coverage Report

Metric	Coverage	Threshold	Status
Lines	97.8%	95%	✅

Files Below Threshold

File	Coverage	Uncovered Lines
app/Enums/ObservationType.php	0%	None
app/Exceptions/Qdrant/QdrantException.php	0%	None
app/Integrations/Qdrant/Requests/ScrollPoints.php	0%	None
app/Mcp/Servers/KnowledgeServer.php	0%	None
app/Services/AgentHealthService.php	0%	None
app/Mcp/Tools/RememberTool.php	66.7%	106, 107, 108, 109, 110... (+19 more)
app/Mcp/Tools/CorrectTool.php	70.4%	53, 54, 55, 56, 57... (+3 more)
app/Providers/McpServiceProvider.php	73.7%	44, 46, 48, 49, 50
app/Mcp/Tools/RecallTool.php	75.9%	81, 82, 83, 84, 85... (+15 more)
app/Commands/Concerns/ResolvesProject.php	80%	26

---

🏆 Synapse Sentinel Gate

[github-actions]

🔧 Synapse Sentinel: 1 check need attention

The following issues must be resolved before this PR can be merged:

---

All tests passed.---

Quick Reference:

• PHPStan errors → Fix type mismatches first, then missing types
• Test failures → Read the assertion message, trace expected vs actual
• Style issues → Run composer format to auto-fix

---

_{🤖 Generated by Synapse Sentinel - View Run}

[coderabbitai]

Actionable comments posted: 5

🤖 Prompt for all review comments with AI agents

Verify each finding against the current code and only fix it if needed.

Inline comments:
In `@app/Mcp/Tools/ContextTool.php`:
- Around line 47-50: The $categories, $maxTokens and $limit inputs must be
validated and normalized before any scroll() calls: ensure $categories is either
null or an array of non-empty strings (e.g., if
is_array($request->get('categories')) then filter/validate elements and set to
null when empty or any non-string entries removed) and use that sanitized
$categories when calling scroll(); ensure $maxTokens and $limit are numeric,
coerce/cast to int, enforce minimums of 1 and then apply the existing maxima
(min(...,16000) for $maxTokens and min(...,100) for $limit), and replace the
current is_int checks with this normalization so non-positive or non-numeric
values default to safe minimums; apply the same validation/normalization logic
wherever $categories/$maxTokens/$limit are set around the scroll() usage (the
block that populates and passes these to scroll()).

In `@app/Mcp/Tools/CorrectTool.php`:
- Around line 26-28: The ID validation in CorrectTool.php currently disallows
non-string IDs but CorrectionService::correct() accepts string|int; update the
check in the method that returns "Provide the ID..." to allow integers and
numeric strings (e.g., accept is_int($id) or (is_string($id) && $id !== '' ) or
use is_numeric for numeric strings), then ensure you pass a properly typed value
to CorrectionService::correct() (cast to int when numeric or to string
otherwise) so numeric entry IDs are accepted; reference the conditional that
currently calls Response::error and the call to CorrectionService::correct() to
locate where to change the validation and any necessary casting.

In `@app/Mcp/Tools/RecallTool.php`:
- Line 41: The current $limit assignment in RecallTool (the line setting $limit
from $request->get('limit')) allows 0 or negative values; change the logic to
coerce the request value to an integer, clamp it to the range 1..20, and fall
back to 5 when no valid value is provided—i.e., ensure $limit is an int, apply a
minimum of 1 and maximum of 20 before it is used in tiered search or aggregation
flows so no non-positive limits propagate.

In `@app/Mcp/Tools/RememberTool.php`:
- Line 56: Clamp the incoming confidence value to the 0–100 range before
storing: when building the array in RememberTool (the line that sets the
'confidence' key based on $request->get('confidence')), coerce to int then apply
min(max($value, 0), 100) so out-of-range values become 0 or 100; also apply the
same clamping where the schema/description is produced (the code around the
lines that describe the confidence field) to ensure stored and documented values
are consistent.
- Around line 46-60: The $entry payload contains nullable/mixed values that
break strict contracts consumed by upsert() and queue(); normalize every field
to expected non-null types before those calls: ensure 'tags' is always an array
of strings (cast/filter values), 'category' and 'evidence' are non-null strings
(use '' as default), 'priority' is a string with default 'medium', 'confidence'
is an int with default 50, and 'last_verified' is a string timestamp; update the
construction of $entry (the array built in RememberTool) so each key is
explicitly coerced/validated to the correct type before calling upsert() and
queue().

---

ℹ️ Review info

⚙️ Run configuration

Configuration used: defaults

Review profile: CHILL

Plan: Pro

Run ID: b75c95c0-e02f-43a5-a40a-de1d26ee21f1

📥 Commits

Reviewing files that changed from the base of the PR and between 326f84d and 6beb878.

⛔ Files ignored due to path filters (1)

• composer.lock is excluded by !**/*.lock

📒 Files selected for processing (10)

• app/Mcp/Servers/KnowledgeServer.php
• app/Mcp/Tools/ContextTool.php
• app/Mcp/Tools/CorrectTool.php
• app/Mcp/Tools/RecallTool.php
• app/Mcp/Tools/RememberTool.php
• app/Mcp/Tools/StatsTool.php
• app/Providers/McpServiceProvider.php
• bootstrap/providers.php
• composer.json
• routes/ai.php

[coderabbitai]

⚠️ Potential issue | 🟠 Major

Validate categories and enforce positive bounds before scroll() calls.

Line 47 currently permits mixed arrays; those values are forwarded as category filters on Line 111. Also, Line 48/49 allow non-positive max_tokens/limit.

Suggested fix

-        /** `@var` array<string>|null $categories */
-        $categories = is_array($request->get('categories')) ? $request->get('categories') : null;
-        $maxTokens = is_int($request->get('max_tokens')) ? min($request->get('max_tokens'), 16000) : 4000;
-        $limit = is_int($request->get('limit')) ? min($request->get('limit'), 100) : 50;
+        $rawCategories = $request->get('categories');
+        $categories = is_array($rawCategories)
+            ? array_values(array_filter(
+                $rawCategories,
+                static fn (mixed $category): bool => is_string($category) && $category !== ''
+            ))
+            : null;
+        $maxTokens = is_int($request->get('max_tokens'))
+            ? max(1, min($request->get('max_tokens'), 16000))
+            : 4000;
+        $limit = is_int($request->get('limit'))
+            ? max(1, min($request->get('limit'), 100))
+            : 50;

Also applies to: 105-114

🤖 Prompt for AI Agents

Verify each finding against the current code and only fix it if needed.

In `@app/Mcp/Tools/ContextTool.php` around lines 47 - 50, The $categories,
$maxTokens and $limit inputs must be validated and normalized before any
scroll() calls: ensure $categories is either null or an array of non-empty
strings (e.g., if is_array($request->get('categories')) then filter/validate
elements and set to null when empty or any non-string entries removed) and use
that sanitized $categories when calling scroll(); ensure $maxTokens and $limit
are numeric, coerce/cast to int, enforce minimums of 1 and then apply the
existing maxima (min(...,16000) for $maxTokens and min(...,100) for $limit), and
replace the current is_int checks with this normalization so non-positive or
non-numeric values default to safe minimums; apply the same
validation/normalization logic wherever $categories/$maxTokens/$limit are set
around the scroll() usage (the block that populates and passes these to
scroll()).

[coderabbitai]

⚠️ Potential issue | 🟡 Minor

Allow numeric IDs for correction requests.

Line 26 currently rejects non-string IDs, but CorrectionService::correct() accepts string|int. This blocks correction when entries use numeric IDs.

Suggested fix

-        if (! is_string($id) || $id === '') {
+        if ((! is_string($id) && ! is_int($id)) || (is_string($id) && $id === '')) {
             return Response::error('Provide the ID of the entry to correct.');
         }

🤖 Prompt for AI Agents

Verify each finding against the current code and only fix it if needed.

In `@app/Mcp/Tools/CorrectTool.php` around lines 26 - 28, The ID validation in
CorrectTool.php currently disallows non-string IDs but
CorrectionService::correct() accepts string|int; update the check in the method
that returns "Provide the ID..." to allow integers and numeric strings (e.g.,
accept is_int($id) or (is_string($id) && $id !== '' ) or use is_numeric for
numeric strings), then ensure you pass a properly typed value to
CorrectionService::correct() (cast to int when numeric or to string otherwise)
so numeric entry IDs are accepted; reference the conditional that currently
calls Response::error and the call to CorrectionService::correct() to locate
where to change the validation and any necessary casting.

[coderabbitai]

⚠️ Potential issue | 🟠 Major

Clamp limit to a positive range before querying.

Line 41 allows 0/negative values through. That can propagate invalid limits to tiered search and global aggregation flow.

Suggested fix

-        $limit = is_int($request->get('limit')) ? min($request->get('limit'), 20) : 5;
+        $limit = is_int($request->get('limit'))
+            ? max(1, min($request->get('limit'), 20))
+            : 5;

📝 Committable suggestion

‼️ IMPORTANT
Carefully review the code before committing. Ensure that it accurately replaces the highlighted code, contains no missing lines, and has no issues with indentation. Thoroughly test & benchmark the code to ensure it meets the requirements.

Suggested change

	$limit = is_int($request->get('limit')) ? min($request->get('limit'), 20) : 5;
	$limit = is_int($request->get('limit'))
	? max(1, min($request->get('limit'), 20))
	: 5;

🤖 Prompt for AI Agents

Verify each finding against the current code and only fix it if needed.

In `@app/Mcp/Tools/RecallTool.php` at line 41, The current $limit assignment in
RecallTool (the line setting $limit from $request->get('limit')) allows 0 or
negative values; change the logic to coerce the request value to an integer,
clamp it to the range 1..20, and fall back to 5 when no valid value is
provided—i.e., ensure $limit is an int, apply a minimum of 1 and maximum of 20
before it is used in tiered search or aggregation flows so no non-positive
limits propagate.

[coderabbitai]

⚠️ Potential issue | 🟠 Major

Normalize entry shape before upsert()/queue() to satisfy strict contracts.

Line 53/54 and Line 58 can produce nullable/mixed payload values that conflict with the required parameter shapes used at Line 79 and Line 91. PHPStan already flags this.

Suggested fix

-        /** `@var` array<string>|null $tags */
-        $tags = is_array($request->get('tags')) ? $request->get('tags') : [];
+        $rawTags = $request->get('tags');
+        $tags = is_array($rawTags)
+            ? array_values(array_filter(
+                $rawTags,
+                static fn (mixed $tag): bool => is_string($tag) && $tag !== ''
+            ))
+            : [];
+
+        $rawCategory = $request->get('category');
+        $category = is_string($rawCategory) && $rawCategory !== '' ? $rawCategory : null;
+        $rawEvidence = $request->get('evidence');

-        $entry = [
+        /** `@var` array{id: string, title: string, content: string, tags: array<string>, priority: string, confidence: int, status: string, last_verified: string, category?: string, evidence?: string} $entry */
+        $entry = [
             'id' => Str::uuid()->toString(),
             'title' => $title,
             'content' => $content,
-            'category' => is_string($request->get('category')) ? $request->get('category') : null,
             'tags' => $tags,
             'priority' => is_string($request->get('priority')) ? $request->get('priority') : 'medium',
             'confidence' => is_int($request->get('confidence')) ? $request->get('confidence') : 50,
             'status' => 'draft',
-            'evidence' => is_string($request->get('evidence')) ? $request->get('evidence') : null,
             'last_verified' => now()->toIso8601String(),
         ];
+
+        if ($category !== null) {
+            $entry['category'] = $category;
+        }
+
+        if (is_string($rawEvidence) && $rawEvidence !== '') {
+            $entry['evidence'] = $rawEvidence;
+        }

As per coding guidelines: "Adhere to PHPStan level 8 with strict rules for static analysis".

Also applies to: 79-91

🤖 Prompt for AI Agents

Verify each finding against the current code and only fix it if needed.

In `@app/Mcp/Tools/RememberTool.php` around lines 46 - 60, The $entry payload
contains nullable/mixed values that break strict contracts consumed by upsert()
and queue(); normalize every field to expected non-null types before those
calls: ensure 'tags' is always an array of strings (cast/filter values),
'category' and 'evidence' are non-null strings (use '' as default), 'priority'
is a string with default 'medium', 'confidence' is an int with default 50, and
'last_verified' is a string timestamp; update the construction of $entry (the
array built in RememberTool) so each key is explicitly coerced/validated to the
correct type before calling upsert() and queue().

[coderabbitai]

⚠️ Potential issue | 🟡 Minor

Clamp confidence to the documented 0–100 range.

Line 56 accepts any integer, but the schema description on Line 123 advertises 0–100. Clamp before storing to keep data consistent.

Suggested fix

-            'confidence' => is_int($request->get('confidence')) ? $request->get('confidence') : 50,
+            'confidence' => is_int($request->get('confidence'))
+                ? max(0, min($request->get('confidence'), 100))
+                : 50,

Also applies to: 122-124

🤖 Prompt for AI Agents

Verify each finding against the current code and only fix it if needed.

In `@app/Mcp/Tools/RememberTool.php` at line 56, Clamp the incoming confidence
value to the 0–100 range before storing: when building the array in RememberTool
(the line that sets the 'confidence' key based on $request->get('confidence')),
coerce to int then apply min(max($value, 0), 100) so out-of-range values become
0 or 100; also apply the same clamping where the schema/description is produced
(the code around the lines that describe the confidence field) to ensure stored
and documented values are consistent.

[github-actions]

🏆 Sentinel Certified

✅ Tests & Coverage: 0 tests passed
✅ Security Audit: No security vulnerabilities found
✅ Pest Syntax: All test files use describe/it syntax

---

Add this badge to your README:

[![Sentinel Certified](https://img.shields.io/github/actions/workflow/status/conduit-ui/knowledge/gate.yml?label=Sentinel%20Certified&style=flat-square)](https://github.com/conduit-ui/knowledge/actions/workflows/gate.yml)