outrig-cli 0.1.0

Command-line tool for running LLM agents with podman-isolated MCP servers.
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149

//! End-to-end dispatch through `McpToolAdapter` as a Rig `ToolDyn`. Gated
//! behind `--features e2e` because it shells out to a real `buildah` /
//! `podman` and runs the `@modelcontextprotocol/server-filesystem` MCP
//! server inside the container.
//!
//! Reuses the `tests/fixtures/mcp-fs/` Dockerfile already built for
//! `tests/mcp_handshake.rs`. Run with:
//!
//! ```sh
//! cargo test --features e2e --test rig_tool_dispatch -- --nocapture
//! ```
//!
//! The test exercises the same code path an `Agent` would run: it calls
//! `<McpToolAdapter as ToolDyn>::call(adapter, args_string).await` directly
//! rather than spinning up an LLM. The LLM stack lands in tasks 0012-0016;
//! once it's available, an Agent-shaped test can be added in 0019.

#![cfg(feature = "e2e")]

use std::collections::BTreeMap;
use std::path::{Path, PathBuf};
use std::sync::Arc;
use std::time::Duration;

use outrig::McpClient;
use outrig::config::{ImageConfig, McpServerSpec};
use outrig::container::{Container, ContainerLaunchSpec};
use outrig::image::{self, ImageTag};
use outrig_cli::rig_tool::McpToolAdapter;
use rig::tool::ToolDyn;

fn fixture_dir() -> PathBuf {
    Path::new(env!("CARGO_MANIFEST_DIR"))
        .parent()
        .expect("outrig-cli is under crates/")
        .join("outrig/tests/fixtures/mcp-fs")
}

fn init_tracing() {
    let _ = tracing_subscriber::fmt()
        .with_max_level(tracing::Level::INFO)
        .with_writer(std::io::stderr)
        .with_ansi(false)
        .try_init();
}

async fn ensure_fixture_image() -> ImageTag {
    let cfg = ImageConfig {
        image_name: None,
        dockerfile: Some("Dockerfile".into()),
        context: Some(".".into()),
        build_args: BTreeMap::new(),
        security: Default::default(),
        mcp: BTreeMap::new(),
    };
    image::ensure_image(&cfg, &fixture_dir(), false)
        .await
        .expect("ensure_image for mcp-fs fixture")
        .tag
}

async fn start_and_bootstrap(image: &ImageTag, host_ws: &Path) -> Container {
    let mut container = Container::start(
        image,
        ContainerLaunchSpec::workspace(host_ws, Path::new("/workspace")),
    )
    .await
    .expect("Container::start");
    container.bootstrap_user().await.expect("bootstrap_user");
    container
}

#[tokio::test]
async fn adapter_dispatches_tool_call_into_container() {
    init_tracing();

    let image = ensure_fixture_image().await;
    let host_ws = tempfile::tempdir().expect("tempdir host_ws");
    let session_dir = tempfile::tempdir().expect("tempdir session");
    let log_dir = session_dir.path().join("logs");

    let known_content = "rig-tool-dispatch e2e marker\n";
    std::fs::write(host_ws.path().join("HELLO.txt"), known_content).expect("write HELLO.txt");

    let container = start_and_bootstrap(&image, host_ws.path()).await;

    let spec = McpServerSpec::Short(vec![
        "mcp-server-filesystem".to_string(),
        "/workspace".to_string(),
    ]);
    let client =
        McpClient::connect_via_podman_exec(&container, &spec, "fs", &log_dir, &BTreeMap::new())
            .await
            .expect("connect_via_podman_exec");
    let client = Arc::new(client);

    let adapters = McpToolAdapter::from_client_tools(client.clone(), usize::MAX)
        .await
        .expect("from_client_tools");
    assert!(
        adapters.len() >= 3,
        "filesystem MCP should advertise at least 3 tools, got {}",
        adapters.len()
    );

    let read_file = adapters
        .iter()
        .find(|a| a.mcp_tool_name == "read_file" || a.mcp_tool_name == "read_text_file")
        .expect("filesystem MCP should expose a read_file (or read_text_file) tool");

    // Sanity-check the LLM-facing name. The filesystem MCP renamed
    // `read_file` to `read_text_file` in newer versions; both are acceptable
    // because the test image pulls the latest published server.
    assert!(
        read_file.openai_name == "fs__read_file" || read_file.openai_name == "fs__read_text_file",
        "unexpected sanitized name: {}",
        read_file.openai_name
    );

    // Happy path: dispatch through ToolDyn::call exactly as a Rig agent would.
    let args = serde_json::json!({ "path": "/workspace/HELLO.txt" }).to_string();
    let body = ToolDyn::call(read_file, args)
        .await
        .expect("ToolDyn::call should succeed for an existing file");
    assert!(
        body.contains("rig-tool-dispatch e2e marker"),
        "tool output should echo the file content, got: {body}"
    );

    // Error path: missing file -> filesystem MCP reports `is_error: true`,
    // which the adapter maps to ToolError::ToolCallError.
    let bad_args = serde_json::json!({ "path": "/workspace/does-not-exist.txt" }).to_string();
    let err = ToolDyn::call(read_file, bad_args)
        .await
        .expect_err("missing file should surface as a tool-call error");
    let msg = err.to_string();
    assert!(
        !msg.is_empty(),
        "tool error should carry a non-empty message"
    );

    // Adapters each hold an `Arc<McpClient>`; drop them so the underlying
    // client can be reclaimed by `Arc::try_unwrap` for graceful shutdown.
    drop(adapters);
    let client =
        Arc::try_unwrap(client).expect("client Arc should be unique once adapters are dropped");
    client.shutdown().await.expect("shutdown");
    container.stop(Duration::from_secs(2)).await.expect("stop");
}