CM-61986-remove-mcp-server-extraction

Author: RoniCycode

cycode/cli/apps/ai_guardrails/scan/claude_config.py

@@ -1,7 +1,7 @@
 """Reader for ~/.claude.json configuration file.
 
-Extracts user email and MCP server configuration from the Claude Code
-global config file for use in AI guardrails scan enrichment.
+Extracts user email from the Claude Code global config file
+for use in AI guardrails scan enrichment.
 """
 
 import json
@@ -14,11 +14,6 @@
 
 _CLAUDE_CONFIG_PATH = Path.home() / '.claude.json'
 
-_SERVER_TYPE_MAPPING = {
-    'stdio': 'Local',
-    'http': 'Remote',
-}
-
 
 def load_claude_config(config_path: Optional[Path] = None) -> Optional[dict]:
     """Load and parse ~/.claude.json.
@@ -47,40 +42,3 @@ def get_user_email(config: dict) -> Optional[str]:
     Reads oauthAccount.emailAddress from the config dict.
     """
     return config.get('oauthAccount', {}).get('emailAddress')
-
-
-def get_mcp_servers(config: dict) -> list[dict]:
-    """Extract top-level MCP servers from Claude config and map to backend DTO shape.
-
-    Reads the top-level mcpServers dict and transforms each entry to match
-    the McpServerPayloadDTO expected by ai-security-manager:
-        - name: server key name
-        - server_type: "Local" (stdio) or "Remote" (http)
-        - command: executable command (stdio servers)
-        - args: command arguments (stdio servers)
-        - url: server URL (http servers)
-
-    Returns:
-        List of dicts matching McpServerPayloadDTO shape. Empty list if none found.
-    """
-    mcp_servers = config.get('mcpServers', {})
-    if not isinstance(mcp_servers, dict):
-        return []
-
-    result = []
-    for name, server_config in mcp_servers.items():
-        if not isinstance(server_config, dict):
-            continue
-
-        raw_type = server_config.get('type', '')
-        server_type = _SERVER_TYPE_MAPPING.get(raw_type, raw_type)
-
-        result.append({
-            'name': name,
-            'server_type': server_type,
-            'command': server_config.get('command'),
-            'args': server_config.get('args'),
-            'url': server_config.get('url'),
-        })
-
-    return result

cycode/cli/apps/ai_guardrails/scan/scan_command.py

@@ -17,7 +17,6 @@
 import typer
 
 from cycode.cli.apps.ai_guardrails.consts import AIIDEType
-from cycode.cli.apps.ai_guardrails.scan.claude_config import get_mcp_servers, load_claude_config
 from cycode.cli.apps.ai_guardrails.scan.handlers import get_handler_for_event
 from cycode.cli.apps.ai_guardrails.scan.payload import AIHookPayload
 from cycode.cli.apps.ai_guardrails.scan.policy import load_policy
@@ -115,16 +114,6 @@ def scan_command(
     try:
         _initialize_clients(ctx)
 
-        if tool == AIIDEType.CLAUDE_CODE:
-            try:
-                claude_config = load_claude_config()
-                if claude_config:
-                    mcp_servers = get_mcp_servers(claude_config)
-                    ai_security_client = ctx.obj['ai_security_client']
-                    ai_security_client.report_mcp_servers(mcp_servers)
-            except Exception as e:
-                logger.debug('Failed to report MCP servers from Claude config', exc_info=e)
-
         handler = get_handler_for_event(event_name)
         if handler is None:
             logger.debug('Unknown hook event, allowing by default', extra={'event_name': event_name})

cycode/cyclient/ai_security_manager_client.py

@@ -17,7 +17,6 @@ class AISecurityManagerClient:
 
     _CONVERSATIONS_PATH = 'v4/ai-security/interactions/conversations'
     _EVENTS_PATH = 'v4/ai-security/interactions/events'
-    _MCP_SERVERS_PATH = 'v4/ai-security/mcp-servers'
 
     def __init__(self, client: CycodeClientBase, service_config: 'AISecurityManagerServiceConfigBase') -> None:
         self.client = client
@@ -55,22 +54,6 @@ def create_conversation(self, payload: 'AIHookPayload') -> Optional[str]:
 
         return conversation_id
 
-    def report_mcp_servers(self, mcp_servers: list[dict]) -> None:
-        """Report MCP servers discovered from IDE config.
-
-        Posts the list of MCP server configurations to the backend.
-        Failures are logged but do not block the hook flow.
-        """
-        if not mcp_servers:
-            return
-
-        body = {'mcp_servers': mcp_servers}
-
-        try:
-            self.client.post(self._build_endpoint_path(self._MCP_SERVERS_PATH), body=body)
-        except Exception as e:
-            logger.debug('Failed to report MCP servers', exc_info=e)
-
     def create_event(
         self,
         payload: 'AIHookPayload',

tests/cli/commands/ai_guardrails/scan/test_payload.py

@@ -322,6 +322,60 @@ def test_from_claude_code_payload_gets_latest_user_uuid(mocker: MockerFixture) -
     assert unified.generation_id == 'latest-user-uuid'
 
 
+# Claude Code email extraction tests
+
+
+def test_from_claude_code_payload_extracts_email_from_config(mocker: MockerFixture) -> None:
+    """Test that ide_user_email is populated from ~/.claude.json."""
+    mocker.patch(
+        'cycode.cli.apps.ai_guardrails.scan.payload.load_claude_config',
+        return_value={'oauthAccount': {'emailAddress': 'user@example.com'}},
+    )
+
+    claude_payload = {
+        'hook_event_name': 'UserPromptSubmit',
+        'session_id': 'session-123',
+        'prompt': 'test',
+    }
+
+    unified = AIHookPayload.from_claude_code_payload(claude_payload)
+    assert unified.ide_user_email == 'user@example.com'
+
+
+def test_from_claude_code_payload_email_none_when_config_missing(mocker: MockerFixture) -> None:
+    """Test that ide_user_email is None when ~/.claude.json is missing."""
+    mocker.patch(
+        'cycode.cli.apps.ai_guardrails.scan.payload.load_claude_config',
+        return_value=None,
+    )
+
+    claude_payload = {
+        'hook_event_name': 'UserPromptSubmit',
+        'session_id': 'session-123',
+        'prompt': 'test',
+    }
+
+    unified = AIHookPayload.from_claude_code_payload(claude_payload)
+    assert unified.ide_user_email is None
+
+
+def test_from_claude_code_payload_email_none_when_no_oauth(mocker: MockerFixture) -> None:
+    """Test that ide_user_email is None when oauthAccount is missing from config."""
+    mocker.patch(
+        'cycode.cli.apps.ai_guardrails.scan.payload.load_claude_config',
+        return_value={'someOtherKey': 'value'},
+    )
+
+    claude_payload = {
+        'hook_event_name': 'UserPromptSubmit',
+        'session_id': 'session-123',
+        'prompt': 'test',
+    }
+
+    unified = AIHookPayload.from_claude_code_payload(claude_payload)
+    assert unified.ide_user_email is None
+
+
 # IDE detection tests
 
 

tests/cli/commands/ai_guardrails/test_claude_config.py

@@ -5,7 +5,7 @@
 
 from pyfakefs.fake_filesystem import FakeFilesystem
 
-from cycode.cli.apps.ai_guardrails.scan.claude_config import get_mcp_servers, get_user_email, load_claude_config
+from cycode.cli.apps.ai_guardrails.scan.claude_config import get_user_email, load_claude_config
 
 
 def test_load_claude_config_valid(fs: FakeFilesystem) -> None:
@@ -52,68 +52,3 @@ def test_get_user_email_missing_email_address() -> None:
     """Test extracting email when oauthAccount exists but emailAddress is missing."""
     config = {'oauthAccount': {'someOtherField': 'value'}}
     assert get_user_email(config) is None
-
-
-def test_get_mcp_servers_stdio_and_http() -> None:
-    """Test extracting MCP servers with both stdio and http types."""
-    config = {
-        'mcpServers': {
-            'gitlab': {
-                'type': 'stdio',
-                'command': '/opt/homebrew/bin/gitlab-mcp',
-                'args': ['--verbose'],
-            },
-            'atlassian': {
-                'type': 'http',
-                'url': 'https://mcp.atlassian.com/v1/mcp',
-            },
-        },
-    }
-
-    result = get_mcp_servers(config)
-    assert len(result) == 2
-
-    gitlab = next(s for s in result if s['name'] == 'gitlab')
-    assert gitlab['server_type'] == 'Local'
-    assert gitlab['command'] == '/opt/homebrew/bin/gitlab-mcp'
-    assert gitlab['args'] == ['--verbose']
-    assert gitlab['url'] is None
-
-    atlassian = next(s for s in result if s['name'] == 'atlassian')
-    assert atlassian['server_type'] == 'Remote'
-    assert atlassian['command'] is None
-    assert atlassian['url'] == 'https://mcp.atlassian.com/v1/mcp'
-
-
-def test_get_mcp_servers_empty() -> None:
-    """Test extracting MCP servers when mcpServers is empty."""
-    config = {'mcpServers': {}}
-    assert get_mcp_servers(config) == []
-
-
-def test_get_mcp_servers_missing_key() -> None:
-    """Test extracting MCP servers when mcpServers key is missing."""
-    config = {'someOtherKey': 'value'}
-    assert get_mcp_servers(config) == []
-
-
-def test_get_mcp_servers_invalid_type() -> None:
-    """Test extracting MCP servers when mcpServers is not a dict."""
-    config = {'mcpServers': 'not a dict'}
-    assert get_mcp_servers(config) == []
-
-
-def test_get_mcp_servers_unknown_server_type() -> None:
-    """Test that unknown server types are passed through as-is."""
-    config = {
-        'mcpServers': {
-            'custom': {
-                'type': 'sse',
-                'url': 'https://example.com/sse',
-            },
-        },
-    }
-
-    result = get_mcp_servers(config)
-    assert len(result) == 1
-    assert result[0]['server_type'] == 'sse'