Pre-install packages at build time for network isolation #1601
+271
−72
Conversation
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
JAORMX
force-pushed
the
fix-1597-preinstall-packages
branch
2 times, most recently
from
4b3a4bf to
8a4c34a
Compare
This commit modifies the container templates to pre-install packages at build time rather than runtime, enabling MCP servers to run in network-isolated environments. Changes: - Modified NPX template to use multi-stage build with npm install --save - Modified UVX template to use uv tool install for proper executable handling - Modified Go template to use multi-stage build with go install - Updated tests to match new multi-stage build structure All three package managers now support the --isolate-network flag, addressing security concerns and enabling MCP servers to run in restricted environments. Fixes #1597
Signed-off-by: Juan Antonio Osorio <ozz@stacklok.com>
JAORMX
force-pushed
the
fix-1597-preinstall-packages
branch
from
8a4c34a to
e817a16
Compare
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Summary
This PR fixes #1597 by modifying container templates to pre-install packages at build time rather than runtime, enabling MCP servers to run in network-isolated environments.
Problem
MCP servers currently require network access at runtime to download packages, which prevents them from running in network-isolated environments. This poses security concerns and limits deployment options in restricted environments.
Solution
Implemented multi-stage Docker builds for all three package managers (NPX, UVX, Go) to pre-install packages and their dependencies during the build phase.
Changes
NPX Template
FROM node:22-alpine AS buildernpm install --savein builder stagenpx --no-installto prevent network accessnode_modulesto runtime stageUVX Template
FROM python:3.13-slim AS builderuv tool installto properly install Python tools with their executablesGo Template
FROM golang:1.25-alpine AS buildergo installhandling version specifiersTests
templates_test.goto match new multi-stage build structureTesting
Tested all three templates with real MCP servers using the
--isolate-networkflag:@upstash/context7-mcpmcp-server-browser-usegithub.com/StacklokLabs/osv-mcp/cmd/serverAll servers started successfully and responded to MCP protocol messages without network access.
Impact
--isolate-networkflagChecklist