tcpipuk
diff --git a/‎README.md
+43-39 b/‎README.md
+43-39
diff --git a/‎docs/images/web-usage.png
88.1 KB b/‎docs/images/web-usage.png
88.1 KB
diff --git a/‎docs/python.md
+94-64 b/‎docs/python.md
+94-64
@@ -1,51 +1,56 @@
 # MCP Server
 
-This server offers tools that AI assistants can interact with safely to operate external tools and
-services using the Model Context Protocol (MCP). It pre-processes data to save tokens and make it
-easier for LLMs to understand, and provides informative errors when things go wrong.
+A server that lets AI assistants like Claude safely use external tools - like running Python code or
+accessing websites. It processes data to make it easier for AI to understand, and provides helpful
+error messages when things go wrong, so bots are more empowered to solve their own problems.
 
 1. [🛠️ What tools does this server offer?](#️-what-tools-does-this-server-offer)
 2. [🏎️ How can I run it?](#️-how-can-i-run-it)
-   1. [🐋 Docker Compose](#-docker-compose)
-   2. [💻 Local Development](#-local-development)
-3. [🔌 Which connection method should I use?](#-which-connection-method-should-i-use)
-4. [📚 Where can I read more about MCP?](#-where-can-i-read-more-about-mcp)
+   1. [🐋 Using Docker (recommended)](#-using-docker-recommended)
+   2. [💻 Running locally](#-running-locally)
+3. [🔌 How to connect](#-how-to-connect)
+4. [📚 Learn more about MCP](#-learn-more-about-mcp)
 5. [📄 License](#-license)
 
 ## 🛠️ What tools does this server offer?
 
-The server provides tools for web content retrieval and code execution:
+Once running, your AI assistant will be able to:
 
-| Tool | Description |
+| Tool | What it can do |
 |------|-------------|
-| [python](docs/python.md)| Executes or lints Python code in a resource-limited sandbox. Includes useful packages like numpy and pandas, with options to either run the code or check it with Ruff. |
-| [web](docs/web.md) | Accesses and processes content from a given URL. Depending on the mode ('markdown', 'raw', or 'links'), it can clean and format page content into markdown, return the raw unprocessed data, or extract internal links with their anchor text to facilitate further navigation. |
+| [Python](docs/python.md)| Run Python code safely in a sandbox. Includes popular packages like numpy and pandas for data analysis, and can either run code or check it for errors. |
+| [Web](docs/web.md) | Access websites and process their content. Can convert pages to markdown for easy reading, get the raw content, or extract links to help navigate through documentation. |
 
 ## 🏎️ How can I run it?
 
-### 🐋 Docker Compose
+### 🐋 Using Docker (recommended)
+
+1. [Install Docker](https://docs.docker.com/engine/install/) if you haven't already
+2. Create a file called `docker-compose.yml` with:
+
+   ```yaml:docker-compose.yml
+   services:
+   mcp-server:
+      environment:
+         - SSE_HOST=0.0.0.0
+         - SSE_PORT=8080
+         - USER_AGENT=CustomAgent/1.0
+      image: ghcr.io/tcpipuk/mcp-server:latest
+      restart: unless-stopped
+      stop_grace_period: 1s
+   ```
 
-[Install Docker](https://docs.docker.com/engine/install/) if you haven't already, then put this in
-a `docker-compose.yml` and run `docker compose up` to start it:
+3. Run `docker compose up` to start the server
 
-```yaml:docker-compose.yml
-services:
-  mcp-server:
-    environment:
-      - SSE_HOST=0.0.0.0
-      - SSE_PORT=8080
-      - USER_AGENT=CustomAgent/1.0
-    image: ghcr.io/tcpipuk/mcp-server:latest
-    restart: unless-stopped
-    stop_grace_period: 1s
-```
+> **Note**: The server will automatically use network mode (SSE) when you set `SSE_HOST` and
+> `SSE_PORT`. This is what you want for using it with LibreChat.
+
+Most people use this with either:
 
-> **Note**: If `SSE_HOST` and/or `SSE_PORT` environment variables are not set, the server will
-> automatically use `stdio` mode and listen on standard input/output.
+- [Claude Desktop](https://modelcontextprotocol.io/quickstart/user) - connects directly to your computer
+- [LibreChat](https://www.librechat.ai/docs/local) - connects over the network
 
-Normally you'd run this alongside [Claude Desktop](https://modelcontextprotocol.io/quickstart/user)
-(using stdio mode) or using [LibreChat](https://www.librechat.ai/docs/local) (using SSE mode), just
-putting something like this in your `librechat.yaml` to tell it how to talk to this MCP server:
+For LibreChat, add this to your `librechat.yaml` to connect:
 
 ```yaml:librechat.yaml
 mcpServers:
@@ -55,7 +60,7 @@ mcpServers:
     url: http://mcp-server:8080/sse
 ```
 
-### 💻 Local Development
+### 💻 Running locally
 
 1. Install `uv` (requires Python 3.13+):
 
@@ -100,17 +105,16 @@ Available arguments:
 > environment variables are not set) the server will automatically assume `stdio` mode and
 > listen on standard I/O.
 
-## 🔌 Which connection method should I use?
+## 🔌 How to connect
 
-You can run it using Docker, connect through standard input/output on the local machine, or use SSE
-over a network, which means it works directly with LibreChat and other MCP-compatible chat systems.
+You can connect to the server in two ways:
 
-| Method | Best for | Notes |
-|--------|----------|--------|
-| Standard I/O (stdio) | Local development and testing | Direct process communication. Not recommended for Docker as it requires sharing the Docker socket. |
-| Server-Sent Events (SSE) | Production deployment | Runs as a network service. Recommended for Docker and cloud environments. |
+| Method | What it means | When to use it |
+|--------|---------------|----------------|
+| Network connection (SSE) | The server runs as a service that other apps can connect to | Best for most users - especially with LibreChat |
+| Direct connection (stdio) | The server runs directly on your computer | Useful for testing or development |
 
-## 📚 Where can I read more about MCP?
+## 📚 Learn more about MCP
 
 Here are a few resources to get you started:
 
 
@@ -1,81 +1,88 @@
 # Python Tool
 
-1. [Tool Schema](#tool-schema)
-2. [Execution Mode](#execution-mode)
-   1. [Resource Limits](#resource-limits)
-   2. [Available Packages](#available-packages)
-3. [Linting Mode](#linting-mode)
-4. [Error Handling](#error-handling)
-
-The `python` tool provides code execution and linting capabilities to LLMs over MCP:
+1. [What can it do?](#what-can-it-do)
+2. [Available Packages](#available-packages)
+3. [Running Code](#running-code)
+4. [Safety and Limits](#safety-and-limits)
+5. [Error Handling](#error-handling)
+6. [Technical Details](#technical-details)
+   1. [Sandbox Environment](#sandbox-environment)
+   2. [Process Management](#process-management)
+   3. [Code Quality Tools](#code-quality-tools)
+   4. [Resource Management](#resource-management)
+
+A tool that lets AI assistants run Python code safely. It includes popular data science packages
+and can either run code or check it for errors:
 
 ![Screenshot of GPT asked to perform a complex calculation then estimating π using Monte Carlo simulation](./images/python-usage.png)
 
-It uses a dedicated virtual environment with pre-installed packages, running in a sandboxed
-environment with resource limits to ensure safe execution.
+## What can it do?
+
+When you ask the AI to use Python, it can:
 
-## Tool Schema
+- Run calculations and process data
+- Create visualisations and charts
+- Access the internet to fetch data
+- Check code for errors before running it
 
-The description of the tool provided to the LLM explains why it should use the tool:
+The tool can either run your code directly or lint it first to catch potential issues. Linting is
+particularly useful when debugging or when you want to ensure code quality before running.
 
-> Execute or lint Python code in a resource-limited sandbox. It has internet access, with aiodns,
-> aiohttp, bs4, numpy, pandas, and requests installed, so you can now test and solve a number of
-> problems without needing to directly calculate it yourself. Depending on your input parameters,
-> this tool either runs the code or lints with Ruff, so you can test code before running, or use
-> Ruff to help debugging if you get errors. The user can see the code you've submitted and the raw
-> returned response, but it's good etiquette to briefly summarise after using this tool what you
-> asked for and got back.
+## Available Packages
 
-The arguments it is allowed to provide are:
+The tool comes with these useful packages pre-installed:
 
-| Argument | Type | Required | Default | Description |
-|----------|------|----------|---------|-------------|
-| code | string | Yes | - | Python code to use |
-| timeout | integer | No | 10 | Timeout in seconds for execution (ignored when linting) |
-| lint | boolean | No | false | Lint the code using Ruff instead of executing it |
+| Package | What it's for |
+|---------|--------------|
+| `numpy`, `pandas` | Working with data - especially tables and calculations |
+| `requests`, `aiohttp` | Fetching data from the internet |
+| `bs4` (BeautifulSoup) | Processing web pages |
+| `ruff` | Checking code for errors |
 
-## Execution Mode
+All packages run in a dedicated virtual environment to ensure consistency and security.
 
-When `lint` is false, the tool executes the provided Python code in a sandboxed environment.
-The code runs in a dedicated virtual environment with pre-installed packages, isolated from the
-main application.
+## Running Code
 
-### Resource Limits
+The AI can run Python code by providing:
 
-The sandbox enforces the following limits:
+- The code to run (required)
+- How long to let it run for (optional, defaults to 10 seconds)
+- Whether to check the code for errors instead of running it (optional)
 
-- Memory: 2GB maximum
-- CPU Time: 600 seconds (10 minutes)
-- Process Creation: Limited to prevent fork bombs
-- File Size: 50MB maximum output
-- Core Dumps: Disabled
+The code runs in a temporary directory that's cleaned up afterwards, and only has access to a
+limited set of environment variables (`LANG`, `TZ`, `PYTHONPATH`, and a few others) for security.
 
-### Available Packages
+## Safety and Limits
 
-The sandbox provides these pre-installed packages:
+To keep things safe and fast, the tool enforces strict resource limits:
 
-- `aiodns`, `aiohttp` - Async network operations
-- `bs4` - HTML parsing
-- `numpy`, `pandas` - Data processing
-- `requests` - HTTP client
-- `ruff` - Python linter
+- Memory usage: Up to 2GB (via `RLIMIT_AS`)
+- CPU time: Up to 10 minutes (via `RLIMIT_CPU`)
+- Process creation: Limited to 50 processes (via `RLIMIT_NPROC`)
+- File operations: Up to 50MB (via `RLIMIT_FSIZE`)
+- Core dumps: Disabled (via `RLIMIT_CORE`)
 
-## Linting Mode
+These limits are enforced using Linux resource limits (`setrlimit`) and can't be bypassed by the
+running code.
 
-When `lint` is true:
+## Error Handling
 
-- Uses Ruff to check code quality
-- Returns JSON-formatted output of any issues found
-- Reports "No issues found!" when code passes all checks
-- Ignores the `timeout` parameter (linting isn't time-limited)
+The tool captures both stdout and stderr, providing detailed error messages when things go wrong:
 
-Example linting output:
+- Timeouts: `Execution terminated after {timeout} seconds`
+- Memory limits: `MemoryError: ...`
+- Import errors: `ImportError: No module named '...'`
+- Syntax errors: `SyntaxError: invalid syntax`
+- File system errors: `File system error: ...`
+- Process errors: `Process exited with code {code}`
+
+When using linting mode, errors are returned in a structured JSON format:
 
 ```json
 [
   {
     "code": "E101",
-    "message": "Indentation error: unexpected indent",
+    "message": "Indentation contains mixed spaces and tabs",
     "location": {
       "line": 2,
       "column": 3
@@ -84,22 +91,45 @@ Example linting output:
 ]
 ```
 
-## Error Handling
+## Technical Details
 
-The tool captures both stdout and stderr, returning them in the response. Common errors include:
+The tool uses several layers of protection to ensure safe code execution:
 
-```python
-# Timeout
-"Execution timed out"
+### Sandbox Environment
 
-# Resource limits
-"MemoryError: ..."
+- Runs in an isolated temporary directory
+- Uses a dedicated virtual environment
+- Cleans up all temporary files after execution
+- Restricts environment variables to a safe allowlist
 
-# Import errors
-"ImportError: No module named '...'"
+### Process Management
 
-# Syntax errors
-"SyntaxError: invalid syntax"
-```
+- Uses `asyncio` for non-blocking execution
+- Supports graceful timeout handling
+- Captures and formats both stdout and stderr
+- Returns structured error information
+
+### Code Quality Tools
+
+- Uses Ruff for linting with most rules enabled:
+  - All standard Python style checks
+  - Common error patterns
+  - Code complexity issues
+  - Type checking hints
+- Ignores specific rules that aren't relevant:
+  - `COM812`: Missing trailing comma
+  - `CPY`: Copyright notice
+  - `D100`: Missing docstring at the top of the file
+  - `D203`, `D213`: Docstring formatting
+  - `FBT`: Boolean arguments in function definitions
+  - `RUF029`: Async methods that don't use `await`
+
+### Resource Management
+
+- Uses Linux kernel resource limits
+- Prevents fork bombs and memory exhaustion
+- Handles cleanup even after crashes
+- Supports both synchronous and asynchronous execution
 
-Errors are always included in the output, whether from linting or execution, to help diagnose issues.
+The tool is designed to be both secure and helpful - it provides detailed error messages and
+linting suggestions while ensuring that code can't harm the system or use excessive resources.