NAME

Claude::Agent::MCP::SDKServer - Socket-based MCP server for SDK tools

DESCRIPTION

This module manages the IPC between the Perl SDK and the MCP server runner. It creates a Unix socket, spawns the runner as a stdio MCP server, and handles tool call requests from the runner by executing the local handlers.

SYNOPSIS

use Claude::Agent::MCP::SDKServer;

my $sdk_server = Claude::Agent::MCP::SDKServer->new(
    server => $mcp_server,  # Claude::Agent::MCP::Server object
    loop   => $loop,        # IO::Async::Loop
);

# Get the stdio config for the CLI
my $stdio_config = $sdk_server->to_stdio_config();

# Start listening for tool calls
$sdk_server->start();

socket_path

Returns the path to the Unix socket.

to_stdio_config

Returns a hashref suitable for use as a stdio MCP server config.

Security Note: The PERL5LIB environment variable is automatically filtered from @INC paths to include only known safe Perl library directories. However, symlinks within permitted directory prefixes are allowed by default.

============================================================================

SECURITY WARNING FOR PRODUCTION/MULTI-TENANT ENVIRONMENTS

============================================================================

In high-security or multi-tenant environments, symlinks within allowed directories (e.g., /Users/attacker/perl5/) could be exploited to inject malicious Perl libraries.

REQUIRED for production/multi-tenant: Set one of the following:

# Option 1: Enable strict symlink checking (RECOMMENDED):
$ENV{CLAUDE_AGENT_PERL5LIB_STRICT} = 1;

# Option 2: Set PERL5LIB explicitly to trusted paths only:
$ENV{PERL5LIB} = '/path/to/trusted/lib:/path/to/other/lib';

Setting CLAUDE_AGENT_PERL5LIB_STRICT=1 causes the module to reject any library paths that are symlinks, preventing potential library injection attacks. This is the recommended approach for any environment where untrusted users may have write access to directories within the allowed path prefixes.

start

Start listening on the Unix socket for tool call requests.

Concurrent Request Handling: When multiple connections send requests concurrently, responses may be interleaved and delivered in any order. Clients MUST correlate responses using the id field from each response, which matches the id from the corresponding request. Do not assume responses arrive in request order.

stop

Stop the listener and clean up.

AUTHOR

LNATION, <email at lnation.org>

LICENSE

This is free software, licensed under The Artistic License 2.0 (GPL Compatible).

To install Claude::Agent, copy and paste the appropriate command in to your terminal.

cpanm

cpanm Claude::Agent

CPAN shell

perl -MCPAN -e shell
install Claude::Agent

For more information on module installation, please visit the detailed CPAN module installation guide.

	Global
`s`	Focus search bar
`?`	Bring up this help dialog

	GitHub
`g` `p`	Go to pull requests
`g` `i`	go to github issues (only if github is preferred repository)

	POD
`g` `a`	Go to author
`g` `c`	Go to changes
`g` `i`	Go to issues
`g` `d`	Go to dist
`g` `r`	Go to repository/SCM
`g` `s`	Go to source
`g` `b`	Go to file browse

	Search terms
module: (e.g. module:Plugin)
distribution: (e.g. distribution:Dancer auth)
author: (e.g. author:SONGMU Redis)
version: (e.g. version:1.00)