charles/claude-hooks
1
0
Fork 0
Code Issues 10 Pull requests Projects Releases Packages 1 Wiki Activity Actions

FM-5 — cut over server-side mcp__forgejo__ references to mcp__forge__ #810

New issue
Closed
opened 2026-05-03 20:08:30 +00:00 by claude-desktop · 0 comments
claude-desktop commented 2026-05-03 20:08:30 +00:00
Collaborator
Copy link

As an operator, I want every server-side reference to the legacy mcp__forgejo__* tool namespace (in agent-prompt strings, security gates, hook keys, and hint text) rewritten to its mcp__forge__* equivalent, so that agents stop being instructed to call tools that no longer exist (the binary was deleted in FM-3) and instead use the working forge-mcp surface restored by FM-4.

Context

FM-3 (#687) deleted forgejo-mcp from the container image. Skills were cleaned (git grep mcp__forgejo__ skills/ returns zero), but server-side code that emits tool names into agent prompts, matches them in security gates, or keys hooks on them was missed. As long as these strings reference mcp__forgejo__*:

  • parent-pr.ts:221 instructs agents "open your PR via mcp__forgejo__create_pull_request" — agent attempts a tool that the SDK no longer mounts.
  • architect.ts:625, 674 security gates use startsWith("mcp__forgejo__") and === "mcp__forgejo__merge_pull_request" — these match nothing post-cutover, so the gate's intent (block PR-merge from non-session repos, log mid-flight forge access) is silently bypassed.
  • agent-runner.ts:263-277 token-budget first-touch hook keys on mcp__forgejo__* — never fires.
  • worker.ts:543 hint string about mcp__forgejo__*_file — points operators at the wrong namespace.

This story is a textual rename with security-gate verification — no behaviour changes beyond pointing at the correct tool names.

Depends on FM-4 landing first (otherwise the renamed names still don't resolve because the allowlist is wrong).

Acceptance criteria

Code rename

  • apps/server/src/domain/workflow/parent-pr.ts:221 instruction string uses mcp__forge__create_pull_request.
  • apps/server/src/domain/agent/architect.ts:625 security gate matches toolName.startsWith("mcp__forge__").
  • apps/server/src/domain/agent/architect.ts:674 matcher: toolName === "mcp__forge__merge_pull_request".
  • apps/server/src/domain/agent/agent-runner.ts:263-277 token-budget hook keys on mcp__forge__*.
  • apps/server/src/background/worker.ts:543 hint mentions mcp__forge__write_file (note: forge-mcp renamed update_filewrite_file).
  • apps/server/src/domain/ports/mcp-registry-port.ts:25, 99 doc-comment references updated to mcp__forge__*.
  • git grep -nE "mcp__forgejo__" apps/server/ returns only:
    • mcp-config.ts forgejoToolEntries block (removed in FM-6, not this story)
    • test fixtures explicitly verifying legacy-namespace handling (if any)
    • MEMORY.md / specs/ / docs/ (out of scope)

Tests

  • Existing architect.test.ts security-gate tests updated to use the new tool names.
  • Existing agent-runner.test.ts first-touch token-budget tests updated.
  • New / updated parent-pr.test.ts snapshot covers the renamed instruction.

Manual smoke

  • Dispatch a real review-loop ticket end-to-end (architect → code-lead → reviewer → merge). Confirm:
    • PR creation succeeds via mcp__forge__create_pull_request.
    • Reviewer's submit_review + merge_pull_request route through mcp__forge__*.
    • No "tool not found" warnings in the task transcript.
    • No curl-fallback warnings in worker logs.

Out of scope

  • Allowlist sync — see FM-4 (must land first).
  • Removing dualMount, forgejoMcpCommand, FORGEJO_TOOLS_ALLOWLIST constant, FORGEJO_MCP_TOOLS env wiring — see FM-6.
  • Renaming forgejo server entry name in mcpServers map (mcp-config.ts:139, default-mcp-registry.ts:130) — that lives in FM-6 along with the rest of the legacy mount.

References

  • Spec: specs/forge-mcp-cutover-followup.md §Pass 2.
  • forge-mcp tool name table: specs/forge-mcp-cutover-followup.md §Pass 1 (mapping table).
  • Original FM-3 PR: #687.
  • Depends on: FM-4.
As an operator, I want every server-side reference to the legacy `mcp__forgejo__*` tool namespace (in agent-prompt strings, security gates, hook keys, and hint text) rewritten to its `mcp__forge__*` equivalent, so that agents stop being instructed to call tools that no longer exist (the binary was deleted in FM-3) and instead use the working forge-mcp surface restored by **FM-4**. ## Context FM-3 (#687) deleted `forgejo-mcp` from the container image. Skills were cleaned (`git grep mcp__forgejo__ skills/` returns zero), but **server-side code** that emits tool names into agent prompts, matches them in security gates, or keys hooks on them was missed. As long as these strings reference `mcp__forgejo__*`: - `parent-pr.ts:221` instructs agents "open your PR via `mcp__forgejo__create_pull_request`" — agent attempts a tool that the SDK no longer mounts. - `architect.ts:625, 674` security gates use `startsWith("mcp__forgejo__")` and `=== "mcp__forgejo__merge_pull_request"` — these match nothing post-cutover, so the gate's intent (block PR-merge from non-session repos, log mid-flight forge access) is silently bypassed. - `agent-runner.ts:263-277` token-budget first-touch hook keys on `mcp__forgejo__*` — never fires. - `worker.ts:543` hint string about `mcp__forgejo__*_file` — points operators at the wrong namespace. This story is a **textual rename** with security-gate verification — no behaviour changes beyond pointing at the correct tool names. Depends on **FM-4** landing first (otherwise the renamed names still don't resolve because the allowlist is wrong). ## Acceptance criteria ### Code rename - [ ] `apps/server/src/domain/workflow/parent-pr.ts:221` instruction string uses `mcp__forge__create_pull_request`. - [ ] `apps/server/src/domain/agent/architect.ts:625` security gate matches `toolName.startsWith("mcp__forge__")`. - [ ] `apps/server/src/domain/agent/architect.ts:674` matcher: `toolName === "mcp__forge__merge_pull_request"`. - [ ] `apps/server/src/domain/agent/agent-runner.ts:263-277` token-budget hook keys on `mcp__forge__*`. - [ ] `apps/server/src/background/worker.ts:543` hint mentions `mcp__forge__write_file` (note: forge-mcp renamed `update_file` → `write_file`). - [ ] `apps/server/src/domain/ports/mcp-registry-port.ts:25, 99` doc-comment references updated to `mcp__forge__*`. - [ ] `git grep -nE "mcp__forgejo__" apps/server/` returns only: - `mcp-config.ts` `forgejoToolEntries` block (removed in FM-6, not this story) - test fixtures explicitly verifying legacy-namespace handling (if any) - `MEMORY.md` / `specs/` / `docs/` (out of scope) ### Tests - [ ] Existing `architect.test.ts` security-gate tests updated to use the new tool names. - [ ] Existing `agent-runner.test.ts` first-touch token-budget tests updated. - [ ] New / updated `parent-pr.test.ts` snapshot covers the renamed instruction. ### Manual smoke - [ ] Dispatch a real review-loop ticket end-to-end (architect → code-lead → reviewer → merge). Confirm: - PR creation succeeds via `mcp__forge__create_pull_request`. - Reviewer's `submit_review` + `merge_pull_request` route through `mcp__forge__*`. - No "tool not found" warnings in the task transcript. - No curl-fallback warnings in worker logs. ## Out of scope - Allowlist sync — see **FM-4** (must land first). - Removing `dualMount`, `forgejoMcpCommand`, `FORGEJO_TOOLS_ALLOWLIST` constant, `FORGEJO_MCP_TOOLS` env wiring — see **FM-6**. - Renaming `forgejo` server entry name in `mcpServers` map (`mcp-config.ts:139`, `default-mcp-registry.ts:130`) — that lives in FM-6 along with the rest of the legacy mount. ## References - Spec: `specs/forge-mcp-cutover-followup.md` §Pass 2. - forge-mcp tool name table: `specs/forge-mcp-cutover-followup.md` §Pass 1 (mapping table). - Original FM-3 PR: #687. - Depends on: **FM-4**.
Sign in to join this conversation.
No Branch/Tag specified
Branches Tags
main
chore/sync-pre-push-from-forge-base
fix/flows-yaml-dispatch-identity
feat/board-tap-to-assign
dev/1107
code-lead/1106
code-lead/1108
dev/1104
code-lead/1103
code-lead/1080
dev/1087
feat/flows-yaml-ci-events
chore/board-drop-stalled-and-density-controls
fix/flows-yaml-routes-always-register
flows-yaml/api-defaults
dev/1023
fix/event-log-history-bleed
fix/janitor-fix-ci-logs-and-cap
dev/1022
fix/board-card-provider
code-lead/1036
dev/1025
code-lead/1020
dev/1017
code-lead/1026
feat/web-shortcut-registry-1018
dev/1015
code-lead/1009
code-lead/1008
dev/975
dev/969
dev/973
dev/967
code-lead/968
code-lead/953
dev/970
dev/976
code-lead/966
code-lead/956
code-lead/951
dev/962
dev/963
dev/977
dev/955
dev/983
dev/961
dev/974
code-lead/950
code-lead/939
dev/941
dev/940
dev/937
dev/938
dev/936
dev/935
feat/web-i18n-fr-locale
feat/spec-editor-ui-polish
chore/drop-legacy-compat
fix/skills-drop-preview-pane
fix/882-skills-safety-rail
dev/911
dev/909
dev/923
dev/917
dev/915
feat/879-sr11-m2-drop-legacy-skill
code-lead/873
dev/881
code-lead/869
dev/867
code-lead/845
code-lead/843
code-lead/844
dev/837
dev/861
dev/849
code-lead/837
code-lead/842
fix/dedup-rebase-inflight
dev/838
code-lead/847
dev/833
code-lead/848
pr/838
code-lead/841
feat/settings-save-bar/836
code-lead/840
dev/846
code-lead/839
dev/832
fix/board-sse-stale-cache
dev/834
dev/835
feat/settings-breadcrumbs
feat/forge-oauth-credentials
refactor/service-config-consolidation
feat/agent-tokens-to-secrets
feat/gitlab-oauth-to-db
feat/authelia-rip-and-voice-fixes
fix/rebase-storm-and-dead-letter
code-lead/797
code-lead/796
dev/811
code-lead/798
dev/810
code-lead/795
dev/808
code-lead/794
dev/805
dev/802
dev/803
feat/avatar-menu-settings-entry
feat/per-agent-token-tracking
dev/793
dev/747
dev/752
code-lead/790
code-lead/759
dev/756
dev/760
dev/741
dev/767
dev/740
dev/709
dev/644
dev/637
boss/614
dev/600
dev/611
dev/585
fix/login-bonus-fixes
boss/544
dev/542
refactor/api-prefix-and-session-gate
dev/489
boss/531
boss/518
dev/499
boss/516
dev/530
dev/517
dev/519
dev/515
dev/522
dev/503
dev/471
boss/329
dev/417
dev/418
dev/402
boss/327
dev/334
dev/332
boss/326
boss/325
dev/331
boss/324
boss/323
boss/322
dev/294
test/s11-task-analytics
dev/262
boss/270
dev/268
foreman/ui-consolidation-spec
dev/234
boss/196
boss/176
boss/164
fix/124-session-persist-bind
boss/52
dev/87
boss/73
dev/77
dev/81
dev/82
boss/79
dev/42
dev/35
boss/7
No results found.
Labels
Clear labels   
area:agents
Agent types, pool scheduling, per-instance config

  
area:dashboard
Dashboard UI and observability surfaces

  
area:database
DB layer — schema, migrations, ORM, raw SQL

  
area:design
UI/UX mockup work — routes to designer agent

  
area:design-review
Design review dispatch — routes to design-reviewer agent

  
area:flows
Flow runner — YAML loader, executor, op registry, expression eval

  
area:infra
Deployment, isolation, containers, systemd units

  
area:meta
Tracking, scaffolding, project setup

  
area:security
Security — routes to reviewer-security (opus)

  
area:sessions
Session-id store, Claude SDK resume logic

  
area:webhook
Forgejo webhook routing and handlers

  
area:workdir
Clone cache, worktrees, git identity

  
security
Security-sensitive issue

  
type:bug
Bug

  
type:chore
Chore

  
type:meta
Tracking or decisions, not implementation work

  
type:user-story
User story

No labels
area:agents
area:dashboard
area:database
area:design
area:design-review
area:flows
area:infra
area:meta
area:security
area:sessions
area:webhook
area:workdir
security
type:bug
type:chore
type:meta
type:user-story
Milestone
Clear milestone
No items
Projects
Clear projects
No items
No project
Assignees
Clear assignees
No assignees
dev
1 participant
Notifications
Due date
The due date is invalid or out of range. Please use the format "yyyy-mm-dd".

No due date set.

Dependencies

No dependencies set.

Reference
charles/claude-hooks#810
No description provided.