MCP server: use Haiku with Opus escalation, add file-based TraceLogger

- Risk analysis now uses Haiku first (faster, cheaper), escalates to Opus
  only if Haiku returns UNCERTAIN
- Added RiskLevel.Uncertain to allow models to signal uncertainty
- Added TraceLogger singleton that writes to %LOCALAPPDATA%\PostSharp\
  McpApprovalServer\logs\mcp-{timestamp}.log
- Replaced all Debug.WriteLine with TraceLogger calls
- All caught exceptions now logged as Error level before being swallowed
- Fixed window activation to move windows to current virtual desktop
- Made event firing async to avoid blocking HTTP/UI threads

Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>

Author: gfraiteur

src/PostSharp.Engineering.McpApprovalServer/App.xaml.cs

@@ -7,7 +7,6 @@
 using PostSharp.Engineering.McpApprovalServer.ViewModels;
 using PostSharp.Engineering.McpApprovalServer.Views;
 using System;
-using System.Threading.Tasks;
 using System.Windows;
 
 namespace PostSharp.Engineering.McpApprovalServer;
@@ -26,7 +25,7 @@ protected override async void OnStartup( StartupEventArgs e )
 
         // Build and configure the host
         this._host = Host.CreateDefaultBuilder()
-            .ConfigureServices( ( context, services ) =>
+            .ConfigureServices( ( _, services ) =>
             {
                 // Register services
                 services.AddSingleton<ApprovalRequestQueue>();
@@ -93,4 +92,4 @@ protected override async void OnExit( ExitEventArgs e )
 
         base.OnExit( e );
     }
-}
+}

src/PostSharp.Engineering.McpApprovalServer/Mcp/Models/CommandRecord.cs

@@ -19,6 +19,8 @@ public sealed class CommandRecord
 
     public required bool Approved { get; init; }
 
+    public string? GitBranch { get; init; }
+
     public int? ExitCode { get; init; }
 
     public string? Output { get; init; }

src/PostSharp.Engineering.McpApprovalServer/Mcp/Models/RiskAssessment.cs

@@ -12,7 +12,8 @@ public enum RiskLevel
     Low,
     Medium,
     High,
-    Critical
+    Critical,
+    Uncertain
 }
 
 /// <summary>
@@ -76,6 +77,7 @@ public static RiskAssessment Parse( string output )
                     "MEDIUM" => RiskLevel.Medium,
                     "HIGH" => RiskLevel.High,
                     "CRITICAL" => RiskLevel.Critical,
+                    "UNCERTAIN" => RiskLevel.Uncertain,
                     _ => RiskLevel.Medium
                 };
             }

src/PostSharp.Engineering.McpApprovalServer/Mcp/Services/CommandExecutor.cs

@@ -1,6 +1,7 @@
 // Copyright (c) SharpCrafters s.r.o. See the LICENSE.md file in the root directory of this repository root for details.
 
 using PostSharp.Engineering.McpApprovalServer.Mcp.Models;
+using PostSharp.Engineering.McpApprovalServer.Services;
 using System;
 using System.Diagnostics;
 using System.IO;
@@ -62,6 +63,8 @@ public async Task<CommandResult> ExecuteAsync(
         }
         catch ( Exception ex )
         {
+            TraceLogger.Logger.Error( "Command execution failed", ex );
+
             return CommandResult.Error( $"Execution error: {ex.Message}" );
         }
         finally
@@ -74,9 +77,9 @@ public async Task<CommandResult> ExecuteAsync(
                     File.Delete( tempFile );
                 }
             }
-            catch
+            catch ( Exception ex )
             {
-                // Ignore cleanup errors
+                TraceLogger.Logger.Error( $"Failed to delete temp file {tempFile}: {ex.Message}" );
             }
         }
     }

src/PostSharp.Engineering.McpApprovalServer/Mcp/Services/CommandHistoryService.cs

@@ -71,6 +71,7 @@ public void Record(
         string sessionId,
         string command,
         string workingDirectory,
+        string? branch,
         string claimedPurpose,
         bool approved,
         CommandResult result )
@@ -83,6 +84,7 @@ public void Record(
             ClaimedPurpose = claimedPurpose,
             Approved = approved,
             ExitCode = result.ExitCode,
+            GitBranch = branch,
             Output = TruncateOutput( result.Output )
         };
 
@@ -114,9 +116,9 @@ public bool WasPreviouslyApproved( string sessionId, string command, string work
         lock ( this._lock )
         {
             return this._history.Any( r =>
-                r.Approved &&
-                r.Command.Equals( command, StringComparison.Ordinal ) &&
-                r.WorkingDirectory.Equals( workingDirectory, StringComparison.OrdinalIgnoreCase ) );
+                                          r.Approved &&
+                                          r.Command.Equals( command, StringComparison.Ordinal ) &&
+                                          r.WorkingDirectory.Equals( workingDirectory, StringComparison.OrdinalIgnoreCase ) );
         }
     }
 
@@ -144,7 +146,7 @@ private void LoadHistory()
         catch ( Exception ex )
         {
             // Log but don't fail - history is not critical
-            System.Diagnostics.Debug.WriteLine( $"Failed to load command history: {ex.Message}" );
+            TraceLogger.Logger.Error( "Failed to load command history", ex );
         }
     }
 
@@ -161,15 +163,11 @@ private void SaveHistory()
         catch ( Exception ex )
         {
             // Log but don't fail - history is not critical
-            System.Diagnostics.Debug.WriteLine( $"Failed to save command history: {ex.Message}" );
+            TraceLogger.Logger.Error( "Failed to save command history", ex );
         }
     }
 
-    private static JsonSerializerOptions GetJsonOptions() => new()
-    {
-        WriteIndented = true,
-        PropertyNamingPolicy = JsonNamingPolicy.CamelCase
-    };
+    private static JsonSerializerOptions GetJsonOptions() => new() { WriteIndented = true, PropertyNamingPolicy = JsonNamingPolicy.CamelCase };
 
     private static string? TruncateOutput( string? output )
     {
@@ -195,8 +193,7 @@ private static void AppendToAuditTrail( CommandRecord record )
             var dateStr = DateTime.UtcNow.ToString( "yyyy-MM-dd", CultureInfo.InvariantCulture );
             var auditFilePath = Path.Combine( _auditDirectory, $"audit-{dateStr}.log" );
 
-            // Get git branch for the working directory
-            var gitBranch = GitHelper.GetBranch( record.WorkingDirectory );
+            var gitBranch = record.GitBranch;
 
             // Format: timestamp | approved/rejected | command | purpose | working_dir | branch | exit_code
             var status = record.Approved ? "APPROVED" : "REJECTED";
@@ -215,7 +212,7 @@ private static void AppendToAuditTrail( CommandRecord record )
         catch ( Exception ex )
         {
             // Log but don't fail - audit is not critical for operation
-            System.Diagnostics.Debug.WriteLine( $"Failed to append to audit trail: {ex.Message}" );
+            TraceLogger.Logger.Error( "Failed to append to audit trail", ex );
         }
     }
-}
+}

src/PostSharp.Engineering.McpApprovalServer/Mcp/Services/RegexRuleEngine.cs

@@ -1,6 +1,8 @@
 // Copyright (c) SharpCrafters s.r.o. See the LICENSE.md file in the root directory of this repository root for details.
 
 using PostSharp.Engineering.McpApprovalServer.Mcp.Models;
+using PostSharp.Engineering.McpApprovalServer.Services;
+using System;
 using System.Collections.Generic;
 using System.Diagnostics;
 using System.IO;
@@ -122,11 +124,12 @@ private static bool TryRunGitCommand( string workingDirectory, string arguments,
 
             return process.ExitCode == 0;
         }
-        catch
+        catch ( Exception ex )
         {
+            TraceLogger.Logger.Error( $"Git command failed: {ex.Message}" );
             output = string.Empty;
 
             return false;
         }
     }
-}
+}

src/PostSharp.Engineering.McpApprovalServer/Mcp/Services/RiskAnalyzer.cs

@@ -6,6 +6,7 @@
 using System.Collections.Generic;
 using System.Diagnostics;
 using System.Globalization;
+using static PostSharp.Engineering.McpApprovalServer.Services.TraceLogger;
 using System.Linq;
 using System.Text;
 using System.Text.RegularExpressions;
@@ -171,13 +172,46 @@ public async Task<RiskAssessment> AnalyzeAsync(
     {
         var prompt = await BuildAnalysisPromptAsync( command, claimedPurpose, workingDirectory, history, cancellationToken );
 
+        // First try with Haiku (fast and cheap)
+        Logger.Trace( "RiskAnalyzer", "Starting risk analysis with Haiku..." );
+        var assessment = await InvokeClaudeAsync( prompt, "haiku", cancellationToken );
+
+        // If Haiku is uncertain, escalate to Opus
+        if ( assessment.Level == RiskLevel.Uncertain )
+        {
+            Logger.Trace( "RiskAnalyzer", "Haiku returned UNCERTAIN, escalating to Opus..." );
+            assessment = await InvokeClaudeAsync( prompt, "opus", cancellationToken );
+
+            // If Opus is still uncertain, treat as medium risk requiring human review
+            if ( assessment.Level == RiskLevel.Uncertain )
+            {
+                Logger.Trace( "RiskAnalyzer", "Opus also returned UNCERTAIN, defaulting to medium risk" );
+
+                return new RiskAssessment
+                {
+                    Level = RiskLevel.Medium,
+                    Recommendation = Recommendation.Approve,
+                    Reason = assessment.Reason + " (escalated analysis was also uncertain)",
+                    Description = assessment.Description
+                };
+            }
+        }
+
+        return assessment;
+    }
+
+    private static async Task<RiskAssessment> InvokeClaudeAsync(
+        string prompt,
+        string model,
+        CancellationToken cancellationToken )
+    {
         try
         {
             using var timeoutCts = new CancellationTokenSource( TimeSpan.FromSeconds( 120 ) );
             using var linkedCts = CancellationTokenSource.CreateLinkedTokenSource( cancellationToken, timeoutCts.Token );
 
-            Debug.WriteLine( "Starting Claude CLI for risk analysis..." );
-            Debug.WriteLine( $"Prompt length: {prompt.Length} chars" );
+            Logger.Trace( "RiskAnalyzer", $"Starting Claude CLI with model {model}..." );
+            Logger.Trace( "RiskAnalyzer", $"Prompt length: {prompt.Length} chars" );
 
             // On Windows, npm installs create .cmd wrapper scripts, not .exe files.
             // Process.Start with UseShellExecute=false doesn't resolve .cmd files via PATH.
@@ -186,7 +220,7 @@ public async Task<RiskAssessment> AnalyzeAsync(
             var startInfo = new ProcessStartInfo
             {
                 FileName = "cmd",
-                Arguments = "/c claude",
+                Arguments = $"/c claude --model {model}",
                 RedirectStandardInput = true,
                 RedirectStandardOutput = true,
                 RedirectStandardError = true,
@@ -198,12 +232,12 @@ public async Task<RiskAssessment> AnalyzeAsync(
 
             if ( process == null )
             {
-                Debug.WriteLine( "Failed to start Claude CLI process" );
+                Logger.Trace( "RiskAnalyzer", "Failed to start Claude CLI process" );
 
                 return RiskAssessment.Default( "Failed to start Claude CLI for analysis" );
             }
 
-            Debug.WriteLine( $"Claude CLI started (PID: {process.Id})" );
+            Logger.Trace( "RiskAnalyzer", $"Claude CLI started (PID: {process.Id}, model: {model})" );
 
             // Write the prompt to stdin and close the stream
             await process.StandardInput.WriteAsync( prompt.AsMemory(), linkedCts.Token );
@@ -213,21 +247,21 @@ public async Task<RiskAssessment> AnalyzeAsync(
             var stderr = await process.StandardError.ReadToEndAsync( linkedCts.Token );
             await process.WaitForExitAsync( linkedCts.Token );
 
-            Debug.WriteLine( $"Claude CLI exited with code: {process.ExitCode}" );
+            Logger.Trace( "RiskAnalyzer", $"Claude CLI exited with code: {process.ExitCode} (model: {model})" );
 
             if ( !string.IsNullOrWhiteSpace( stderr ) )
             {
-                Debug.WriteLine( $"Claude CLI stderr: {stderr}" );
+                Logger.Trace( "RiskAnalyzer", $"Claude CLI stderr: {stderr}" );
             }
 
             if ( !string.IsNullOrWhiteSpace( output ) )
             {
-                Debug.WriteLine( $"Claude CLI output: {( output.Length > 500 ? output[..500] + "..." : output )}" );
+                Logger.Trace( "RiskAnalyzer", $"Claude CLI output: {(output.Length > 500 ? output[..500] + "..." : output)}" );
             }
 
             if ( process.ExitCode != 0 )
             {
-                Debug.WriteLine( $"Claude CLI failed with exit code {process.ExitCode}" );
+                Logger.Trace( "RiskAnalyzer", $"Claude CLI failed with exit code {process.ExitCode}" );
 
                 return RiskAssessment.Default( "Claude CLI analysis failed" );
             }
@@ -236,13 +270,13 @@ public async Task<RiskAssessment> AnalyzeAsync(
         }
         catch ( OperationCanceledException )
         {
-            Debug.WriteLine( "Claude CLI analysis timed out" );
+            Logger.Trace( "RiskAnalyzer", $"Claude CLI analysis timed out (model: {model})" );
 
             return RiskAssessment.Default( "Analysis timed out - human review required" );
         }
         catch ( Exception ex )
         {
-            Debug.WriteLine( $"Claude CLI error: {ex.Message}" );
+            Logger.Error( $"Claude CLI error (model: {model}): {ex.Message}" );
 
             return RiskAssessment.Default( $"Analysis error: {ex.Message}" );
         }
@@ -339,10 +373,16 @@ private static async Task<string> BuildAnalysisPromptAsync(
         sb.AppendLine( "Respond with EXACTLY these four lines (no additional text):" );
         sb.AppendLine( "```" );
         sb.AppendLine( "DESCRIPTION: <one concise sentence describing what the command does>" );
-        sb.AppendLine( "RISK: LOW|MEDIUM|HIGH|CRITICAL" );
+        sb.AppendLine( "RISK: LOW|MEDIUM|HIGH|CRITICAL|UNCERTAIN" );
         sb.AppendLine( "RECOMMEND: APPROVE|REJECT" );
         sb.AppendLine( "REASON: <one concise sentence explaining your risk assessment>" );
         sb.AppendLine( "```" );
+        sb.AppendLine();
+        sb.AppendLine( "Use RISK: UNCERTAIN only if you genuinely cannot determine the risk level due to:" );
+        sb.AppendLine( "- Complex multi-step attack patterns you're unsure about" );
+        sb.AppendLine( "- Obfuscated or encoded content you cannot fully analyze" );
+        sb.AppendLine( "- Unusual commands outside your training knowledge" );
+        sb.AppendLine( "Do NOT use UNCERTAIN for normal ambiguous cases - make your best judgment." );
 
         return sb.ToString();
     }
@@ -398,10 +438,11 @@ private static bool IsGitPushCommand( string command )
 
             return sb.ToString();
         }
-        catch
+        catch ( Exception ex )
         {
+            Logger.Error( $"Failed to get commit diff: {ex.Message}" );
+
             return null; // If we can't get diff, proceed without it
         }
     }
-
-}
+}

src/PostSharp.Engineering.McpApprovalServer/Mcp/Tools/ExecuteCommandTool.cs

@@ -3,6 +3,7 @@
 using ModelContextProtocol.Server;
 using PostSharp.Engineering.McpApprovalServer.Mcp.Models;
 using PostSharp.Engineering.McpApprovalServer.Mcp.Services;
+using PostSharp.Engineering.McpApprovalServer.Services;
 using System;
 using System.ComponentModel;
 using System.Threading;
@@ -53,14 +54,16 @@ public async Task<CommandResult> ExecuteCommand(
     {
         // Use a constant session ID for single session model
         const string sessionId = "default";
+        var branch = await GitHelper.GetBranchAsync( workingDirectory, cancellationToken );
 
         // Log incoming request
         this._logger?.LogSection( "Incoming Command Request" );
         this._logger?.LogInfo( $"Time: {DateTime.Now:yyyy-MM-dd HH:mm:ss}" );
         this._logger?.LogInfo( $"Command: {command}" );
         this._logger?.LogInfo( $"Working Directory: {workingDirectory}" );
         this._logger?.LogInfo( $"Purpose: {claimedPurpose}" );
-
+        this._logger?.LogInfo( $"Git Branch: {branch}" );
+        
         try
         {
             // 1. Check if this exact command was previously approved
@@ -74,7 +77,7 @@ public async Task<CommandResult> ExecuteCommand(
                 this._logger?.LogSection( "Request Completed" );
 
                 // Record in history
-                this._history.Record( sessionId, command, workingDirectory, claimedPurpose, approved: true, autoApprovedResult );
+                this._history.Record( sessionId, command, workingDirectory, branch, claimedPurpose, approved: true, autoApprovedResult );
 
                 return autoApprovedResult;
             }
@@ -134,7 +137,7 @@ public async Task<CommandResult> ExecuteCommand(
             }
 
             // 7. Record in history
-            this._history.Record( sessionId, command, workingDirectory, claimedPurpose, approved, result );
+            this._history.Record( sessionId, command, workingDirectory,  branch, claimedPurpose, approved, result );
 
             return result;
         }

src/PostSharp.Engineering.McpApprovalServer/Services/ApprovalRequest.cs

@@ -19,7 +19,7 @@ public sealed class ApprovalRequest
 
     public required string WorkingDirectory { get; init; }
 
-    public required string GitBranch { get; init; }
+    public required string? GitBranch { get; init; }
 
     public required RiskAssessment CombinedAssessment { get; init; }